Show Posts

This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.

Topics - dee_can

Pages: [1]
Analysis and Malware Removal / Malware or false alarm?
« on: January 12, 2013, 09:12:07 PM »
Hi, I'm back! :smiley: I found something in ‘History’ in MSE last night, and would like to know if it’s something to worry about, or if it’s a false alarm. Leading up to this (and maybe unrelated), I had a couple of problems updating Java two nights ago, and after I updated to the latest version, something strange happened. I restarted my computer as per java's update instructions, and Win Patrol seemed to disappear from my computer. This happened directly after 'Scotty' asked me if I wanted to allow an add-on from Java. I allowed it because I took this to mean it detected that I had updated Java, but I could have misunderstood.

Right after that, the Scotty icon disappeared from the taskbar. I tried to open Win Patrol from the 'All Programs' list just to see if I could open it that way, but it wouldn't open. Today, after doing a bit of research on the internet, I decided to uninstall Java and also uninstall Win Patrol (because it wouldn't open). I figured I could reinstall Win Patrol at some point again. I uninstalled Java mainly because I wasn't really sure if I need it. I figured if 'things' don't work well from this point on I would reinstall that, too, at some point.

So that is the history up until I looked into MSE after I got a Windows 'alert' (last night) on my taskbar telling me something with MSE went awry because of 'Telemetry' something or other : P - I got this once before, and it didn't turn out to be anything important. I opened up MSE and took a look in History, nothing was in Quarantine, btw. And just a note, I started this post last night and saved it to post today. Since then I saw ravencajun's post at GW about java, and then Corrine's blog about java, so I have no qualms about uninstalling java). Do you think I should just remove the trojan from the history and forget about it (seems it was already quarantined)? Here is a copy of it from MSE History (Thank you):

Security Software Programs / What does this symbol mean in WinPatrol?
« on: October 20, 2012, 06:37:36 PM »
Hi Corrine (:smiley:), I have another WinPatrol question for you. I updated Java 7 update 7 to Java 7 update 9 today. Afterwards, Scotty asked me if I wanted to add the latest Java add-on (can't remember the exact wording). I said 'yes'? I mean, YES. ha

When I looked into IE Helpers I saw that this add-on has an exclamation mark in a yellow shield. Does this mean something is wrong, is it some kind of warning? Just thought I'd check. I'll post 2 screenshots:

Security Software Programs / General WinPatrol user question
« on: August 27, 2012, 10:56:00 PM »
Since cleaning up my computer and adding the recommended security programs (Superantispyware, SpywareBlaster, MSE, Secunia, and WinPatrol) (I already had Malwarebytes), I find the only program I'm unsure about using to its' full potential (or just about any potential)  :grin: is WinPatrol.

It's obviously a very fine and intricate program, but I'm wondering if WinPatrol is for the more computer-savvy person who knows about the inner workings of computers. For instance, since installing WinPatrol, Scotty has given me 5 or 6 alerts; BUT, I don't know what the alerts are really about. A message pops up (I wish I had 'snipped' the messages so I could post them), and I remember the first one said something about a file extension had changed, and do I want to keep the change. Honestly, I had no idea. And another said some (inner-most-Windows-something-or-other file) was going to be changing, and do I want to do it? Again, I don't know if I want to or not. I had a few more alerts where I really didn't feel I had the knowledge to answer 'yes' or 'no'; so each time I just closed the window and let Scotty decide for me.  :wink:

I looked through the options and where it shows 'Recent' (activities), it shows programs I can remove (pertaining to recent malware attacks), and I can see the programs I wouldn't want to remove for sure, but there are programs that I'm unsure of. I could go on, but basically, I wonder if I have enough computer knowledge to use the program. I'm going to give it a chance, and try to learn more about it. And I hope I don't sound whiney, but I'm really wondering if WinPatrol is a program for the really advanced user, or do you think anyone can use it? Thanks... D.

Phishing, Spam and Hoaxes / Is this LzD Forum Security Alert Legitimate?
« on: August 11, 2012, 03:31:12 PM »
I just wanted to make sure this was legitimate. I was reading different posts at this forum about malware problems other people are having, and for the first time a 'Security Alert' msg popped up on the page. It said "You are about the view pages over a secure connection. Any information you exchange with this site cannot be viewed by anyone else on the (web) - (not sure if that was the word that was used, 'internet' or 'web'). Foolishly I clicked on 'OK', but the msg didn't disappear. That's why I thought I shouldn't have clicked it on. Lesson number one in 'how to get malware'?

Either this wasn't a real message, or I'm not supposed to be reading information about other people's computers?

Thanks. dee_can

Analysis and Malware Removal / Spyware (Zbot.OUT) found
« on: August 02, 2012, 03:57:09 PM »
Hi, I was directed to this website by raven at the computer forum on GardenWeb. I will repost my message from there to here. I'm not exactly a computer expert, but not totally illiterate either.  :)Thank you for any help.

I ran a scan yesterday with Malwarebytes, and for the first time it found something (in my Toshiba DVD Player of all things - huh? Any idea how I got this?). Coincidentally, my daily morning antivirus scan did not find it (I use AVG Free). I quarantined and deleted the file, and everything seems to be running fine. Is there anything else I need to do, ie. could my computer be infected still somehow? I'll post a copy of the log file. Thank you for looking.
Malwarebytes Anti-Malware

Database version: v2012.08.01.04

Windows Vista Service Pack 2 x64 NTFS
Internet Explorer 9.0.8112.16421
Owner :: OWNER-PC [administrator]

01/08/2012 10:24:30 AM
mbam-log-2012-08-01 (10-24-30).txt

Scan type: Full scan (C:\:)
Scan options enabled: Memory : Startup : Registry : File System : Heuristics/Extra : Heuristics/Shuriken : PUP : PUM
Scan options disabled: P2P
Objects scanned: 387129
Time elapsed: 1 hour(s), 5 minute(s), 26 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 1
C:\TOSAPINS\TOSHIBA-DVD-Player\DirectX\tdxinstall.exe (Spyware.Zbot.OUT) -> Quarantined and deleted successfully.


Pages: [1]