Check Out Your Machines

Was playing a game in single player mode not online hadn't even set my machine up to run online and weird stuff started happening in the game and at first it seemed unusual but I passed it off as possibly corrupted patch for the game.

Later on I was in a section where I was being shot through a concrete wall as the layout of the game at this point is a concrete wall, I thought then if this is a corrupted patch this is too corrupted to even play, I have a broadband connection online all the time, so for the heck of it pulled the ethernet cable, and the problems disappeared.

Which scared the crap out of me cause I realized someone had hacked my machine somehow, so begins the searching and scanning for problems, Adaware reports nothing, NAV reports nothing, but I knew something was wrong and couldn't pin it down.

Well something was wrong, I don't have the time to fully explain just cut to the chase and give you all some advice, the new thing is to get programs on your machine that disable programs like Adaware and NAV, making them completely useless, Scared Yet? Well you outa be!

Check your machines guys, if you think you're perfectly safe its possibly an illusion, NAV was reporting a clean machine, I installed F-Prot and it found a virus when NAV was giving me a clean bill of health, but the problem with NAV was a disabler attached to it.

Adaware gave an all clear, however my machine wasn't clean at all, the last time I had done a reinstallation I'd forgotten to install SpyBot Search and Destroy, so thinking I was OK from Adawares report but still feeling something was wrong I downloaded and Installed SpyBot. Jackpot!

SpyBot found 4 firewall disablers/bypasses and the Adaware and NAV disablers, I guess the programs were target specific, and not ready for SpyBot but thankfully it managed to irradicate everything and the other programs are functioning normally now.

I'm passing this on to you so you can be aware the new thing is disabling your AV and Spyware detecting programs so even if you think your AV program is the best in the world, some little hacker has found its weakness, slap yourself another free trial version of some Anti-Virus or Spyware Killer and run fresh scans and make sure of whether that sense of security is real or not.

Trust me it can happen to anyone of you, Check your machines, Better Safe than Sorry! Ryan

F-Prot has a 30 day free trial Windows version of the AV, F-Prot can also be put on a Floppy and run in DOS mode [completely free for personal use] but says it is not reccommended for the NTFS file system in the DOS form, but I've used it on NTFS partitions and it worked just fine.

The key is to install fresh and hit this thing from a different angle and hopefully surprise it and get rid of it, you may not have anything on your machine at all, but its better to be safe than sorry.

I'm pretty sure it came from the FarCry64 patch that allowed the 64 addition to be played on the 32bit OP/SYS, but I'm not exactly sure that was it or not.

I had played that patch in the past and had no trouble with it, but downloaded it fresh the other day and maybe thats how it got corrupted? Or it could've been picked up somewhere else, I'm just glad SpyBot took care of it.

RE Ryan:

Ok. This does frighten me. It's this kind of shite that freaks me out. Even with Tom's help, I'm still worried about this kind of stuff. I need to get serious about learning about pc security.

I don't really know where to begin though.

That is a very serious hack though, right? Am I right? I mean, what is the likelihood of a disabling trojan like that being implemented on your pc? Slim?

Did you have to download and then execute a file for that shite to go on your pc? You mentioned that it may have been through a game patch; is that right?

All viruses are downloaded from gay porn sites. There is no other way to get infected. It's because god hates fags. [/that should start some kind of fight]

That's not an excuse, that's an explanation.

Give me all the details and I'll have a crack at an explanation for you.[/ for fcuks sake what have I done]

I dream about slipping my manhood between her trout lips and thrusting deeply. I reach down to finger her ladygarden and I discover meat and two veg. This makes me cum violently, blasting her skull apart. Stepping back, this makes her a lot more attractive. I ram my head down her gaping torn throat and discover a lake of giraffe semen in her belly. I feast greedily.

And then the really perverted stuff starts.

Such is the nature of a Wingding.

Shiny....where?....

Since it didn't show up until I was playing the FarCry AMD64 game package, I just assumed it had tagged along with that download, that package was released about a year ago and I played it when it was first released with no problems, this time when I went to replay it, I downloaded a fresh copy and the trouble began.

SpyBot recognized it and removed it but if I had been running SpyBot all along I don't know if it wouldn't have been hurt right along with Adaware and NAV, it caught the little bastage by surprise being freshly installed I guess, seems somehow this type program can get in your machine and disable certain functions, like Anti-Virus, Spyware Killers, so the programs seem like they're functioning properly when you scan your machine, when in actuality its not.

Whoever these people are that write these virus and malware type crap are finding ways around the security in place, so we're in a new era of attacks, its best to run multiple programs to scan for these problems, which is inconvenient but effective in stopping the intrusion.

It would be great if there was one product that would do it all, but if it got disabled with one of these little buggers it would be useless too.

You may not have anything wrong with your machine at all, try a spyware killer or virus killer you've never used before and see if it finds anything, if it doesn't find anything then don't worry about it.

Here's my guess... Beastie gets on your PC and gets its nasty little fingers into AV / SPyware program. Said vendors later find out about it and add it to the "Kill it now" parts of the updates. Trouble is, you've already got it, and it don't want to go away. Since it's already intertwined (think Wingy & Oprah), AV / Spyware program, it won't let itself be seen. When you install something new, the new program is fresh and clean, and so it hasn't been "blinded" by the nasty beastie.

So I don't think there will ever be one "kill all" program, and I think it's always good to get a "second opinion".

That said, also remember that many AV / Spyware programs only scan "active" files, so if you saved a virus to your HDD, then installed 38 different AV programs, but never ran a full system scan, it wouldn't ever pick up on the virus. Chances are, however, that when the old virus fired, it would be stopped.

I also found that interesting.

What is "decent" when it comes to rootkit detection?

That tattooed tart I was rooting has stopped coming around for them, so I hope you don't mind if I snigger with you, L-man. lol

Ok, mate. Thanks.

On a side note: I'm one of these fock-heads who has a double "t" on the end of my Bre.

I was named after a Scottish sea captain who was known for running aground a prized vessel; and yes, the prick was bombed at the wheel. lol

Good on ya, mum. lol

Mate, absolutely not an issue. Cheers!

Thought it would be remiss of me not to mention it. The old girl would be appalled if I was walking around with only one t. lol. Convict suffices nicely as an alternative, I'm sure you would agree. lol

LMAO Jef.

I don't know. What kind of fairy are you looking for?

Start with Riser, he may be your type.

Hey, let's grab the llama and dye him pink, then call Riser.

*diplomatic silence*

llama_man == riser with hooves.

So now what?

"ptui", probably.

Wow. Way to seduce a Wingding...

...*mounts*...