Page 3 of 4 FirstFirst ... 234 LastLast
Results 31 to 45 of 54
  1. #31

    Default

    Quote Originally Posted by Gloomrender View Post
    Wtf? It was on. You're positive It's supposed to be OFF by default? I sure as fuck never put that on, and I'm the only one in my house with access to my PC. Fuck microsoft if it came in the box that way.

    Are you familiar with WOT (web of trust)? It's a community/add on that categorizes sites by a rating, and auto blocks your entry into sites with the red rating. I practically never override it to go into a red site. The only exceptions are pornotube sites which are red just bc they have porn content ( I make sure that viruses aren't also listed). Do you think this add on can be overcome by a nasty enough website? There has been a time or two where there were attempted redirects which got blocked by WOT. If WOT had failed, I might have gotten a virus there. But I thought it blocks any entry into the site. Am I wrong?

    Here's my tasks by the way:

    http://img39.imageshack.us/img39/2502/tasksi.jpg

    The erased portions are my user name, didn't want to share.
    Your processes look clean, and it also looks like you formatted recently, or just don't install much. Im not familiar with Web of Trust but it seems pretty basic if it just rates sites by color and blocks entry. Most of the common viruses are installed upon entry into a site. I'm guessing you went to a site that wasn't rated by WOT and didnt block entry. Web shields and anti virus are good but they never block 100 percent of malware/viruses. You should probably get Avast instead of WOT for web/virus protection, it usually catches trojans as the site tries to install them, instead of just blocking known sites.

    Also im pretty sure remote desktop is off by default. I could be wrong but the last versions (3) of windows 7 ive had installed have all had them off. Chances are if someone did remote desktop your PC then they knew a username/password combination that you lent them, and they turned remote desktop on (or it was on by default, but im pretty sure its off by default). But since your the only one with acess to your PC then i guess it was on by default. Then all someone would need is an IP adress ( not hard ) and a username /password.
    Last edited by ZeroCool; 01-24-2011 at 08:35.
    Astinus Darksoul - Scourge

    Anti-Grind Coalition
    http://forums.darkfallonline.com/group.php?groupid=109
    Save Darkfalls population today.

  2. #32

    Default

    Quote Originally Posted by ZeroCool View Post
    Your processes look clean, and it also looks like you formatted recently, or just don't install much. Im not familiar with Web of Trust but it seems pretty basic if it just rates sites by color and blocks entry. Most of the common viruses are installed upon entry into a site. I'm guessing you went to a site that wasn't rated by WOT and didnt block entry. Web shields and anti virus are good but they never block 100 percent of malware/viruses. You should probably get Avast instead of WOT for web/virus protection, it usually catches trojans as the site tries to install them, instead of just blocking known sites.

    Also im pretty sure remote desktop is off by default. I could be wrong but the last versions (3) of windows 7 ive had installed have all had them off. Chances are if someone did remote desktop your PC then they knew a username/password combination that you lent them, and they turned remote desktop on (or it was on by default, but im pretty sure its off by default). But since your the only one with acess to your PC then i guess it was on by default. Then all someone would need is an IP adress ( not hard ) and a username /password.
    It looks like I formatted because everything was erased =/. I had a lot of programs and data that are gone now (I'm still on the PC now).

    I have Avast now, but didn't at the time of the incident, had Avira Antivir.

    I suppose you're right that it would have been hard to hack the user/password. Maybe I did somehow get directed to a non-rated-by-WOT site. I still would have had Adblock plus and noscript at that point though. But I suppose those could fail me as well. What do you make of the "backdoor" I found? Path was 'C:\Windows\SysWOW64\WinFLdrv.sys'
    Last edited by Gloomrender; 01-24-2011 at 09:02.

    Quote Originally Posted by Branwulf View Post
    Criminals will always get their weapons, it's the fucking lunatics that you should be worried about Colonist.
    Quote Originally Posted by United States Department of Education
    Give us the child for 8 years and it will be a Bolshevik forever.

  3. #33

    Default

    Quote Originally Posted by Gloomrender View Post
    It looks like I formatted because everything was erased =/. I had a lot of programs and data that are gone now (I'm still on the PC now).

    I have Avast now, but didn't at the time of the incident, had Avira Antivir.

    I suppose you're right that it would have been hard to hack the user/password. Maybe I did somehow get directed to a non-rated-by-WOT site. I still would have had Adblock plus and noscript at that point though. But I suppose those could fail me as well. What do you make of the "backdoor" I found? Path was 'C:\Windows\SysWOW64\WinFLdrv.sys'
    Its a windows system file on a 64 bit windows thats used to support 32 bit applications. The really nasty trojans infect your system files and are a royal pain in the ass to fix. The backdoor is just a generic term for a number of viruses, but you shouldn't be worried that someone is remotely accessing your computer, especially if you just visited a website that gave it to you and especially if you didn't personally install a remote utility program.
    Astinus Darksoul - Scourge

    Anti-Grind Coalition
    http://forums.darkfallonline.com/group.php?groupid=109
    Save Darkfalls population today.

  4. #34

    Default

    Quote Originally Posted by ZeroCool View Post
    Its a windows system file on a 64 bit windows thats used to support 32 bit applications. The really nasty trojans infect your system files and are a royal pain in the ass to fix. The backdoor is just a generic term for a number of viruses, but you shouldn't be worried that someone is remotely accessing your computer, especially if you just visited a website that gave it to you and especially if you didn't personally install a remote utility program.
    Wait, that's not a virus then?

    Quote Originally Posted by Branwulf View Post
    Criminals will always get their weapons, it's the fucking lunatics that you should be worried about Colonist.
    Quote Originally Posted by United States Department of Education
    Give us the child for 8 years and it will be a Bolshevik forever.

  5. #35

    Default

    Quote Originally Posted by Gloomrender View Post
    Wait, that's not a virus then?
    Eh no and yes. The nasty viruses infect and re-write your system files. The only option then is usually a format and reinstall of windows. There is a way to replace system files manually though I haven't used it, and i don't mind formatting since I usually keep little on my system HDD.

    If I were you I would just format, if thats not an option do some goggling on how to replace system files, from the sound of the location of the infected file, it seems much more benign then if it were in the sys32 folder. Also that infected file might not of been what caused data loss, because again anti virus programs don't catch all the nasty ones. Last month I caught a virus that went to town on my system 32 folder (wininit.exe), I did everything I knew to do (ive caught and deleted tons of viruses for myself and peers) nothing would work but a format.
    Astinus Darksoul - Scourge

    Anti-Grind Coalition
    http://forums.darkfallonline.com/group.php?groupid=109
    Save Darkfalls population today.

  6. #36

    Default

    Quote Originally Posted by ZeroCool View Post
    Eh no and yes. The nasty viruses infect and re-write your system files. The only option then is usually a format and reinstall of windows. There is a way to replace system files manually though I haven't used it, and i don't mind formatting since I usually keep little on my system HDD.

    If I were you I would just format, if thats not an option do some goggling on how to replace system files, from the sound of the location of the infected file, it seems much more benign then if it were in the sys32 folder. Also that infected file might not of been what caused data loss, because again anti virus programs don't catch all the nasty ones. Last month I caught a virus that went to town on my system 32 folder (wininit.exe), I did everything I knew to do (ive caught and deleted tons of viruses for myself and peers) nothing would work but a format.
    I've heard that viruses can still be there even after a format, is that true?

    Quote Originally Posted by Branwulf View Post
    Criminals will always get their weapons, it's the fucking lunatics that you should be worried about Colonist.
    Quote Originally Posted by United States Department of Education
    Give us the child for 8 years and it will be a Bolshevik forever.

  7. #37

    Default

    By the way, I figured you meant by saying "no yes" to mean it is a virus, but a weak one?

    Quote Originally Posted by Branwulf View Post
    Criminals will always get their weapons, it's the fucking lunatics that you should be worried about Colonist.
    Quote Originally Posted by United States Department of Education
    Give us the child for 8 years and it will be a Bolshevik forever.

  8. #38
    Normal User
    Join Date
    Aug 2008
    Location
    England
    Posts
    906

    Default

    This always warms my heart when random uneducated denizens of the intertubes claim they've been HAXXORED by some srs over the wire hacker. As has been said before do you HONESTLY, and I mean honestly believe that you, "gloomrender" were the unfortunate victim of one of these very complex and almost impossible attacks? Are you sure that you're not possibly blowing what is obviously a simple trojan attack way out of proportion?

    I often wonder how these anti-virus companies and firewall companies stay in business with their ridiculously overpriced pieces of software and then realise it's people like Gloomrender who fork out hundreds of quid on them and still end up with a virus anyway.

    http://images.whatport80.com/images/..._7_Proxies.jpg
    Last edited by Aerias; 01-24-2011 at 14:15.
    Blood Of Kings

  9. #39

    Default

    Quote Originally Posted by Aerias View Post
    This always warms my heart when random uneducated denizens of the intertubes claim they've been HAXXORED by some srs over the wire hacker. As has been said before do you HONESTLY, and I mean honestly believe that you, "gloomrender" were the unfortunate victim of one of these very complex and almost impossible attacks? Are you sure that you're not possibly blowing what is obviously a simple trojan attack way out of proportion?

    I often wonder how these anti-virus companies and firewall companies stay in business with their ridiculously overpriced pieces of software and then realise it's people like Gloomrender who fork out hundreds of quid on them and still end up with a virus anyway.

    http://images.whatport80.com/images/..._7_Proxies.jpg
    Troll, read thread. I haven't spent a dime on virus protection in all of my life. The programs I've used were freeware. I suppose you are going to now be a hypocrite to your position and mock that fact? Have fun with the muslims.

    Quote Originally Posted by Branwulf View Post
    Criminals will always get their weapons, it's the fucking lunatics that you should be worried about Colonist.
    Quote Originally Posted by United States Department of Education
    Give us the child for 8 years and it will be a Bolshevik forever.

  10. #40
    Normal User
    Join Date
    Aug 2008
    Location
    England
    Posts
    906

    Default

    Quote Originally Posted by Gloomrender View Post
    Troll, read thread. I haven't spent a dime on virus protection in all of my life. The programs I've used were freeware. I suppose you are going to now be a hypocrite to your position and mock that fact? Have fun with the muslims.
    It was all going well up until the "have fun with the muslims" part. Anyway, you should get behind 7 proxies that'll help you, honest.
    Blood Of Kings

  11. #41

    Default

    Quote Originally Posted by Gloomrender View Post
    I've heard that viruses can still be there even after a format, is that true?
    "KINDA" there are a couple kickass (gotta give respect) keyloggers that sit in your keyboard buffer but believe a cold boot+format clears them.

    To be honest, you will find most real security software makers will tell you no network/pc is safe if they really target you.

    A safer option would be to just to use a hotswap HD with a disk image of your system, back up every few days and leave it unplug'd from your PC.
    http://www.youtube.com/watch?v=U6MxDh0lMSo

    First company to put Chivarly Medieval Warfare melee system in a MMORPG wins the intertubes.

  12. #42

    Default

    Quote Originally Posted by Gloomrender View Post
    I've heard that viruses can still be there even after a format, is that true?
    Its possible but the virus would be wiped off of the formatted HDD, it would have to infect another HDD you have connected. Though I've never had a virus that survived a format, or went to my other HDD's. You should be safe after a format.

    To your second question, the no "yes" mean that, yes it is a virus, but its a virus that infected a clean system file thats usually required to run windows properly. Those nasty viruses are almost like aids, your left with a few options but it usually leaves you screwed. Whether its benign or not depends on which system file it infected and what its doing to your PC, but a format is usually the safes and best option (unless you want to replace system files, but again ive never done this).
    Last edited by ZeroCool; 01-24-2011 at 22:23.
    Astinus Darksoul - Scourge

    Anti-Grind Coalition
    http://forums.darkfallonline.com/group.php?groupid=109
    Save Darkfalls population today.

  13. #43
    5000+
    Join Date
    Jul 2007
    Location
    USA, Minnesota
    Posts
    5,999

    Default

    Quote Originally Posted by Gloomrender View Post
    If you are gonna troll, at least read the whole post.
    His name is ZeroCool, haven't you ever seen hackers? this guy is a pro yo.
    Frumpy Lump's rage
    Quote Originally Posted by Silverhandorder View Post
    He said consumers make jobs appear. Let him explain how that happens.
    Quote Originally Posted by Death's Chill View Post
    I've done shit you probably would faint from even thinking
    Quote Originally Posted by Death's Chill View Post
    At least I get to fuck.
    http://www.twitch.tv/makestro

  14. #44
    19,000+
    Join Date
    Jul 2005
    Location
    South Africa
    Posts
    19,392

    Default

    Some rootkits can infect your BIOS and survive a hard drive format.

    At that point you should probably perform exorcism on your computer, that might help.

  15. #45

    Default

    Quote Originally Posted by Viluin View Post
    Some rootkits can infect your BIOS and survive a hard drive format.

    At that point you should probably perform exorcism on your computer, that might help.
    can't you just download the support files for your BIOs from you motherboard's manufacture website and act like your updating your BIOs to clear and reinstall?

    or maybe i misunderstand how complex that is..
    Last edited by shock223; 01-25-2011 at 19:08. Reason: spelling errors.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •