The forums got hit by a spam attack 5-6 hours ago. I deleted roughly 20-25 spam posts across multiple threads, all posted within minutes of each other. I think I got them all, but if anyone finds any that I missed just PM me or reply to this thread. Thanks!!
Just noticed some in the comments on Eelco’s and Mikolaj’s presentations, linked from the main page.Here and here, at the bottom. Account is coolssbags. Edit: Also Larry Dane (top of comments on Mikolaj’s pres.)
Don’t know if you care about that stuff (in the comments), just FYI. There may be more, I didn’t check, but i’ve seen it in the blog comments before.
If you, or anyone you know gets hit, follow the link. You have to register, but it’s a free site. Follow the directions and it should clean up the mess. BTW, I already use ESET-NOD32, Spybot, Yahoo Shield and Avasti… I thing it got through as a Microsoft Security update.
If you can’t swim with the big fish, stick to the reef
I’ve had to remove this from 5 computers in the past few weeks. I use system restore in Safe Mode back to a couple of days before the first reported instance of the infection from the customer. The computers had AVG, Ad-Aware, Spybot Search and Destroy, and Windows Defender installed and running. I have had one relapse out of the five after a couple of weeks.
1. Start computer in safe mode by repeatedly hitting F8 key as soon as the “on” switch is hit and selecting “Safe Mode” from menu. Sometimes an OS boot menu will appear. If so, select C: and/or Windows XP.
2. Click on Administrator icon to log on, password is blank by default unless one has been added (this prevents your icons on your user desktop from being rearranged, you can use your own account).
3. When prompted, click “Yes” to use System Restore.
4. Click on “Next” to restore system to earlier date.
5. Select an earlier date prior to the infection.
6. System will begin restore, then automatically restart to finish restore, then notify user if restore was successful.
Don’t take it down before I get a chance to try that penis enlargement though.
Deleted them both, thanks for the spot. LOL your post cracked me up though!
On every computer I own I run a cocktail of Avira, Spybot – Search & Destroy, and Malwarebytes. Avira and Spybot both run in real-time mode and grab anything trying to get through…even infected websites. I use Malwarebytes to purge the small fraction of stuff that gets through.
The problem with those trojans is that you are actually installing something, so many times they get past the antivirus programs. Just don’t run any EXEs you don’t trust…or run them in a virtual machine first which is what I do.