| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 91271 | 2008-07-01 22:30:00 | re-infection | NZHawk (4093) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 684376 | 2008-07-01 22:30:00 | computer was infected w/trojans ran avast ran ccleaner installed, updated scanned BitDefender 2 times (once in safe modem, once in normal): came up clean returned to customer customer plugs in & is getting warnings from Spybot residential shield & BitDefender of infections. The computer is connected to two other computers but neither of the other computers were on. How is this infection happening when I returned the computer clean? |
NZHawk (4093) | ||
| 684377 | 2008-07-01 22:43:00 | Did you disable system restore before you scanned Hawk? If not, the trojan is possibly resurrecting itself from there. Also, is the customer reconnecting an external drive etc that could have the source of the infection on it? |
nofam (9009) | ||
| 684378 | 2008-07-02 00:02:00 | Yes the system restore was disabled. No there is not any external hard drive. |
NZHawk (4093) | ||
| 684379 | 2008-07-02 00:18:00 | The programs used looks like they have missed cleaning out the Trojans - the ones listed are not enough these days, you need several to get a PC completely clean. Download all the antispyware programs from my sig install/update and run, as well as one Pctek uses - Spyware terminator (www.spywareterminator.com/) <---- been using that myself lately, and its damn good. You can also install Spyware Doctor Starter (http:) - It has a habit of changing to the paid one after a while, but it still usually works after the first update as the free one and removes spyware it catches. look for speedys sig as well , and get Trojan remover - run it. |
wainuitech (129) | ||
| 684380 | 2008-07-02 00:21:00 | Thank you. Will do and report back. |
NZHawk (4093) | ||
| 684381 | 2008-07-02 00:26:00 | Pctek uses - Spyware terminator (http://www.spywareterminator.com/) Pctek uses Counterspy among others. Pctek installs Spybot, Superantispyware and Spyware Terminator on customer PCs, unless they ask for something specific. They get 3 unless they are on dialup in which case they get 2. Some get more. I also leave in a folder on their PC - all my other checkers and fixes, inc HJT. |
pctek (84) | ||
| 684382 | 2008-07-02 00:33:00 | Wouldn't hurt to post a Hijackthis log here either for Speedy to cast an eagle eye over!! | nofam (9009) | ||
| 684383 | 2008-07-02 00:33:00 | PcTech: thankyou - excellent suggestion - I will follow suit. Hawk |
NZHawk (4093) | ||
| 684384 | 2008-07-02 00:43:00 | I'll have to hold off on Hijackthis log as the customer has the computer. | NZHawk (4093) | ||
| 684385 | 2008-07-02 01:11:00 | Why dont you get your customer to post here on a one to one rather than through a third person ? | Pancake (6359) | ||
| 1 2 | |||||