SEARCH

The How-To Geek Forums Have Migrated to Discourse

How-To Geek Forums / Geek Stuff

superantispyware scans

(24 posts)
  • Started 6 years ago by 0zSpitt
  • Latest reply from whs
  • Topic Viewed 2576 times

0zSpitt
Posts: 1037

i ran a scan last week and it found 1072 infections. i don't download or surf out of my normal areas. the second scan showed nothing. being the anal retentive person i am, i erased the hard drive, reinstalled vista and my programs from a flash drive. i ran superantispyware and the exact same 1072 infections were detected again. last night i erased another hard drive, installed vista and this time installed just a few programs but i downloaded them from their web site. firefox, revo, ccleaner, etc. i scanned again with superantispyware and the infections showed up again. these are major infections like keyloggers, winantivirus2007, cleansweep, etc. eset didn't detect any of these either. i also used 2 different vista cd to reinstall. is superantispyware creating false positives to make you use their program? it's the only one that seems to find the exact same things on a fresh install.

Posted 6 years ago
Top
 
whs
Posts: 17584

Hmm, this is weird indeed. I have never had this experience with SuperAntiSpyware. Did you reboot after you ran it and quarantined the buggers? That is apparently a neccessary step. A complete clean sweep of your disk and a reinstallation from a Vista reinstallation disk should eliminate those buggers - unless they are already on your installation disk, which is conceivable if you burnt this installation disk yourself. Maybe you want to try with some other online scanners and see what they say http://www.jkwebtalks.com/2008.....nners.html If you want to check individual files, there is also Virus Total http://en.wikipedia.org/wiki/VirusTotal.com This is a very thorough check, but you have to upload the file in question.

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

yeah, i rebooted and rescanned. nothing showed up the second scan. one thing i thought of, could it be picking up spywareblasters files? the vista disks are an oem from dell and one i purchased 2 years ago. i've been running the same programs for a while, this all just started last week. at first i thought it was the new adobe flash player or screamer radio, those are the only two things new i installed last week but didn't reinstall.

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

i have it narrowed down to a wallpaper folder if anyone's reading this :P

Posted 6 years ago
Top
 
raphoenix
Posts: 14920

@0z,
I read most all the postings.
Hate to to give you the same old advice as I'm sure everyone is tired of hearing me "Harping". (LOL) (LOL)
1. Clean Install the machine from scratch.
2. Plan and know in advance the add-on programs you want to install and use.
3. Make a Ghost Back-up of the Absolute Clean Machine Partition so if something happens, you can just restore from the Ghost Image and Move On.
--------------------------------------
Have no idea where you guys are picking up all the infections.
I (don't) even run an AV in Real Time Mode and never find anything when I do nightly maintenance.
SuperAntiSpyware only finds some tracking cookies if I don't clean the caches hourly with CCleaner.
I do use passive SpywareBlaster in the Registry but that is just a preventive measure.
You sure you have all the unnecessary router and machine ports are closed / blocked ????

Kindest Regards,
Rick P.♦ :) :)

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

i got a fish ohio award for a carp!
usually if i get infected, i'll do it myself to see how my security programs react to it. this was never being picked up by any of them except on a full scan with superantispyware. i deleted the last wallpaper file i had, those were my newest ones. they were only on this computer and none of the others. the other two were coming up clean. i did put eset's firewall on interactive mode now and i'm always behind a configured router. grc says i don't exist. and i do have an absolute clean back up on an external hard drive.
actually i was just posting to see if superantispyware was putting out false positives from an update. apparently not...

Posted 6 years ago
Top
 
Lighthouse
Posts: 13598

Where did you get those wallpaper files from? Did they come in a .zip, or .exe file?

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

i just download them from different sites. i only saved them, i've never opened anything to get a picture. my computer wasn't infected, everything ran perfectly. i know what winantivirus does and nothing like that was going on. it was like they were all quarantined or waiting to be opened. since i deleted that file, nothing is showing up on any scans. i also remember seeing "drive cleaner" and something with the ".ink" suffix. i know about drive cleaner but what is the other? there was also a lot of the casino and adult sites listed. i have all of that blocked, it was just odd that it showed up out of nowhere

Posted 6 years ago
Top
 
whs
Posts: 17584

Oz, your story is interesting. About 3 times we had a similar case in the past. People had downloaded stuff from completely clean sites (one I remember was filehippo.com) and got infected. Those buggers must be "following" clean downloads like the submarines in WWII when they followed a ship to get thru the mine barriers in front of a harbor.

Posted 6 years ago
Top
 
raphoenix
Posts: 14920

Items like this are always good to click on !!!!


Items like this are always good to click on !!!!

Posted 6 years ago
Top
 
whs
Posts: 17584

Ya, that may be one of the sources.

Posted 6 years ago
Top
 
misdaroc
Posts: 110

why am i always so tempted to click on these stupid things.lol

Posted 6 years ago
Top
 
raphoenix
Posts: 14920

misdaroc,

As I was reminded by a friend last evening, folks clicking on stuff like above is what keeps AV Vendors in business.
(LOL) (LOL) (LOL)
Kindest Regards,
Rick P.♦ :)

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

if you go to google and click "images" then type in something like 3dwallpaper, some of the pictures make it difficult to go back to google. i think i stayed in and clicked on the site the picture came from and took several pictures from it. but out of about 1000 wallpapers, that was a first.
i pulled a fairly decent desk out from a dumpster the other day, lol. i actually turned around and went back to go dumpster diving. i just put an antique finish on it and finally have a place for my new build computer. now i can get it off my big glass desk.

Posted 6 years ago
Top
 
raphoenix
Posts: 14920

Any website that "traps one in the site" IS A SITE (NOT) TO BE TRUSTED.
Close one's Browser or Stop the Process using Task Manager, start over and move on.
Kindest Regards,
Rick P.♦ :)

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

here's what i have up to now on my new build. for some reason it's yellow.

http://s426.photobucket.com/al.....CF0034.jpg

rick, the task manager is my friend/ejection seat, lol

Posted 6 years ago
Top
 
raphoenix
Posts: 14920

@0z,

That is a BEAUTIFUL SETUP !!!!
The way the economy is going, I'm going to have to live out of my car, ride around looking for unsecured Wi-Fi sites so I can get on-line. (LOL) (LOL) (LOL)
---------------------------
Yeah, I'll "Dump" the whole system in a "skinny" minute to "Bail Out" of a bad situation.
---------------------------
Kindest Regards,
Rick P.♦ :)

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

i found it! the source of the infection was screamer radio. i reinstalled it last, then before i went to bed it showed up in the scan. finally...

Posted 6 years ago
Top
 
whs
Posts: 17584

Oz, that new setup looks very smart. But the glass table had given you more desk space. Now you need to pull another table from the dumpster for your printer and your papers - lol.

Posted 6 years ago
Top
 
0zSpitt
Posts: 1037

no more dumpster diving for me. i antiqued a tv tray i'll set the printer on.

i ran another scan today with superantispyware and those same 1072 infections showed up. i didn't delete or quarantine them. i just shut the program down and scanned with 2 online scanners, kaspersky and trend micro, nothing! i installed and scanned with a-squared free, malwarebytes, adaware and spyware doctor, again nothing! i scanned with nod32 and spysweeper, NOTHING! but still superantispyware shows them. i wonder if it's turning into rogue antispyware to make you buy their product ~~~> ?

Posted 6 years ago
Top
 



Topic Closed

This topic has been closed to new replies.