Smitfraud

Boys love the Toys ... Discuss the latest toys, technologies, Virus Alerts, Help others with Home Improvements or fixin the car, etc.

Moderator: Referees

BBBob
Hall of Famer
Posts: 9041
Joined: Sat Nov 30, 2002 9:17 am

Post by BBBob » Sat Oct 06, 2007 2:41 pm

If I understand what you are saying correctly Catssuck, you used a restore point from after having re-installing XP and before importing the infected address book - I agree that there should be no problem there.

I find that after a machine is infected (with something more destructive than simple spyware) that the restore points are useless and I dump them. It is pretty common in the industry to not trust XP system restore points after a major infection.

I hope that I've understood what you said correctly pal!

phpbb_!

User avatar
ArgoDave
Legend
Posts: 19472
Joined: Sat Dec 07, 2002 8:04 am
Favourite Team: Toronto Argonauts
Location: Sitting in my chair, being a swell guy loved by all...
Contact:

Post by ArgoDave » Sat Oct 06, 2007 7:13 pm

Catssuck wrote: Having said that I prefer to use Ghost 2003 to create back-ups of images but this was an older IBM box that only had a 30 gig HD - not enough space to partition and back-up Ghost images.
I use Acronis to back up a perfect copy of a fresh OS install, updated, tweaked and other essential software installed (AV, AS, Firewall, DirectX9, WMP etc., updated to that point in time and defragged (with Thunderbird mailer Address Book and FireFox Browser Bookmarks) all on a set of CD's. In theory I can be up and running Net ready with a clean fresh install in minutes. Never had to try it out yet, but the hope is there that it would save me hours of tedious work redoing a setup. After losing 2 HD's one year I learned my lesson.
Gord for Mayor of Swaggerville!

User avatar
Stampman
Superstar
Posts: 1868
Joined: Fri Dec 10, 2004 8:54 pm
Location: In front of my computer
Contact:

Post by Stampman » Tue Oct 09, 2007 4:16 pm

I haven't been able to get trendmicro to work.
Sometimes the site works, sometmes not--and if I get onto it the scan always freezes before it's over.
As for restore points--well, I don't think I have any--I checked and system restore shows as off.

As for the HJT logs, shall I post them here or elsewhere?

Thanks, again.
Real men don't wear green...

User avatar
Catssuck
Champion
Posts: 3850
Joined: Tue Nov 23, 2004 1:19 pm
Favourite Team: Toronto Argonauts
Location: Oakville(Home)/Chandos Lake(Cottage)
Contact:

Post by Catssuck » Tue Oct 09, 2007 4:40 pm

On July 13th 2007 Cossack wrote: I agree with the Argo fan.
Thanks for finally coming around Terry - the Ticats do suck.

User avatar
Stampman
Superstar
Posts: 1868
Joined: Fri Dec 10, 2004 8:54 pm
Location: In front of my computer
Contact:

Post by Stampman » Tue Oct 09, 2007 4:49 pm

Add another site that isn't working for me...
I'll try it again later.
Real men don't wear green...

BBBob
Hall of Famer
Posts: 9041
Joined: Sat Nov 30, 2002 9:17 am

Post by BBBob » Tue Oct 09, 2007 4:52 pm

Stampman wrote:
Add another site that isn't working for me...
I'll try it again later.
Are you using [blech] Internet Explorer? If so, it is highjacked, so use Firefox to do a http://www.trendmicro.com scan and use Catssuck's link.

Best of luck and keep us posted. :cross:

User avatar
BigRedMachine
Champion
Posts: 3934
Joined: Sun Aug 17, 2003 11:39 am
Favourite Team: Calgary Stampeders
Location: Calgary

Post by BigRedMachine » Wed Oct 10, 2007 12:30 pm

Any recommendations for Virus control on a Windows 2003 Server? I find that as soon as Symantec sees someone running a server the dollar signs just light up in their eyes...
"It is people like GreyCupGarry who make the CFL our league, Canada’s league."

-- Jaime Stein, CFL.ca

User avatar
Catssuck
Champion
Posts: 3850
Joined: Tue Nov 23, 2004 1:19 pm
Favourite Team: Toronto Argonauts
Location: Oakville(Home)/Chandos Lake(Cottage)
Contact:

Post by Catssuck » Wed Oct 10, 2007 12:42 pm

I have heard good things about Avast
http://www.avast.com/index.html
for AV on Windows 2K3 Server
On July 13th 2007 Cossack wrote: I agree with the Argo fan.
Thanks for finally coming around Terry - the Ticats do suck.

User avatar
BigRedMachine
Champion
Posts: 3934
Joined: Sun Aug 17, 2003 11:39 am
Favourite Team: Calgary Stampeders
Location: Calgary

Post by BigRedMachine » Wed Oct 10, 2007 3:43 pm

Thanks Catssuck, I'll check them out...
"It is people like GreyCupGarry who make the CFL our league, Canada’s league."

-- Jaime Stein, CFL.ca

User avatar
Stampman
Superstar
Posts: 1868
Joined: Fri Dec 10, 2004 8:54 pm
Location: In front of my computer
Contact:

Post by Stampman » Sun Oct 14, 2007 1:10 pm

BBBob wrote:
Stampman wrote:
Add another site that isn't working for me...
I'll try it again later.
Are you using [blech] Internet Explorer? If so, it is highjacked, so use Firefox to do a http://www.trendmicro.com scan and use Catssuck's link.

Best of luck and keep us posted. :cross:
Trendmicro & the other link are not working with Mozilla either.
(I would've answered sooner, but I was out of town this weekend.)
Real men don't wear green...

User avatar
Soundy
Playground Hero
Posts: 36
Joined: Sun Oct 14, 2007 1:44 pm
Location: Lion Country

Post by Soundy » Sun Oct 14, 2007 2:08 pm

Avast works well, but a lot of these exploits block known antivirus and antispyware sites.

Take a look at your HOSTS file in c:\windows\system32\drivers\etc - one way websites can be blocked is by entering hostnames and pointing them to non-existent IPs, usually the loopback address 127.0.0.1. Check to see if any of these sites you're trying to reach are listed there.

It's possible that the URL for that smitfraudfix.exe is blocked as well - you could try grabbing it from another site. I've put a copy on my webserver for you, if you want to try it from there.

If you need Avast, I've also put it here.

User avatar
Stampman
Superstar
Posts: 1868
Joined: Fri Dec 10, 2004 8:54 pm
Location: In front of my computer
Contact:

Post by Stampman » Sun Oct 14, 2007 4:25 pm

Thanks, I'll try it.
Real men don't wear green...

Post Reply

Who is online

Users browsing this forum: No registered users and 1 guest