§traight X Edge
__________
Gender : Posts : 363 Rep : 7 Age : 31 Location : New York, United States
| Subject: Rogue Spywares Tue May 18, 2010 10:49 pm | |
| So somehow my computer managed to install a rogue spyware into my computer called "Anti-Spyware Soft" today. It claimed a list of infections has invaded my computer and urged me to purchase it. At that time I didn't know the software was a rogue so I decided to scan my computer with Norton 360 and see if those infections really did exist. Upon further research I found out the software was a fraud so I installed Malware Bytes and removed it via Safe Mode with Networking.
Just a heads up for anyone who encounters a software called "Anti-Spyware Soft". This software is a rogue and will release infections into your computer and pop ads up for you to purchase it. It won't stop until you do purchase this. The first destinations it will target is your Windows Task Manager (so you can't end the process) and msconfig (so you can't disable it at startup). Procedures to remove this software or possibly any rogue anti-spyware are listed below.
1- Reboot your computer and start into "Safe Mode with Networking". To do this restart your computer and press the F8 key rapidly. The approximate time to do it is between the POST and the boot.ini but seriously who's reaction is that quick? So keep pressing F8 or the designated key for Advanced Boot Options and start your computer in "Safe Mode with Networking".
2- When the desktop loads up go into google and type in "Malware Bytes". Download and install this program and update it. Let it scan your machine (it took a few minutes for me) and it should find the rogue spyware. Remove it.
Note: If you have an anti-virus program the rogue spy-ware will not be detected because it's considered a "legit" program. I recommend Malware Bytes for this remedy. |
|
MärvïN
__________
Gender : Posts : 437 Rep : 11 Age : 35 Location : Clinton Twp, Michigan
| Subject: Re: Rogue Spywares Tue May 18, 2010 11:05 pm | |
| HijackThis is the best for scanning your processes of the task manager. This is a crucial piece of software during such attacks as; Trojans, Worms, etc. Ones that disable your ability to do much, as long as you can weave your browser over to their site, you are set.
HijackThis http://free.antivirus.com/hijackthis/
Spybot: Search & Destroy - Is a very good scanner that goes in deep (over 750k entries) of spyware and malware, along with viruses. It will even run at startup before any processes start and scan. It is a very useful tool, that everybody should have.
Spybot. http://www.safer-networking.org/en/download/index.html
Thee most important of all the tools,
WIRESHARK.
This is an advanced tool, useful only to the Network Technician or Administrator. If you have trouble with simple windows options or software, then please stay away from this.
Wireshark, scans your entire network connection, for every single piece of data being sent. Every packet, all routes used, and a ton of other options. It is very handy if you believe somebody is entering your network without your permission, as you can observe them connecting. It displays every single inquiry from your Network, HTTP connections, IP addresses, routing traffic, etc. Even going to Google, will bring up 20+ lines of log in this program.
It even highlights and seperates traffic for you, along with filters, so that you can see the connection in progress.
(As you can see clearly in this picture, the packet dropping.) https://i.servimg.com/u/f65/14/25/81/65/wiresh11.jpg
If you are a Tech noob, this tool won't help you too much, as you will get confused until you learn to use filters and know what you are looking at. This tool is vital to any aspiring admin...
Wireshark
http://www.wireshark.org/download.html |
|
§traight X Edge
__________
Gender : Posts : 363 Rep : 7 Age : 31 Location : New York, United States
| Subject: Re: Rogue Spywares Wed May 19, 2010 6:28 am | |
| Well I used Malware Bytes because it removed it for free. I actually used Dr. Spyware first but it went "BUY BUY BUY!" so I said, "Screw it." |
|
C13INTZ
__________
Gender : Posts : 840 Rep : 17 Age : 54 Location : Il.
| Subject: Re: Rogue Spywares Wed May 19, 2010 4:37 pm | |
| I Malware Bytes |
|
§traight X Edge
__________
Gender : Posts : 363 Rep : 7 Age : 31 Location : New York, United States
| Subject: Re: Rogue Spywares Wed May 19, 2010 5:11 pm | |
| Same here. :p |
|
Sponsored content
| Subject: Re: Rogue Spywares | |
|
|
|