once you think your security itself is infected? What then?

March 26, 2013 at 03:30:28
Specs: Windows 7
is it a possible for security measures (TrendMicro WFBS)can be 'hacked' and controlled? The process of staying current requires online connectivity, are there common issues with potential risks in going online to update until the updates are in place and working? I mean, if updates even daily protect against the latest en the latest threats; and there are vulnerabilities for attack without these in place; Then by going online to get them, with outdated definitions exposes you to risks; wouldn't such risks include the download of the updates as well?

Additionally, once malicious control infects the system, can the efforts to clean out completely be overruled or undone by the same infection, or via one of its undetected self made and no doubt exponential redundant copies?

If so... then what?

See More: once you think your security itself is infected? What then?

Report •

March 26, 2013 at 03:42:21
Pretty well Yes to everything.

"If so... then what?"

Please copy & paste instructions into a text file, print steps & info. You will need them, as they are hard to remember, for when you are offline.

Note: Is your important stuff backed up, including your emails & address book. Anything can happen, during the clean up.

The badies are always ahead of the goodies, be aware, this can be a very long process, involving many different tools to clean up an infected comp.

As we dismantle the infection bit by bit, that may allow the repeat use of programs, which may in turn pick up more.
Removal of infected parts of the system, may cause other parts to stop working, such as your Internet connection or Services. These we then, have to repair later.

If any program won't run ( due to the infection ) let me know.

Copy & Paste the contents of the log/logs after running each program.

Lets have a look with some specialized software.

1: Download & run Unhide
A introduction as to what this program does.
For those of you who no longer have the %Temp%\Smtmp folder, you will not be able to use Unhide to restore your Start Menu items. With this in mind, I have created some scripts to restore the default Start Menu for specific versions of Windows that I have access to. You can view the available versions below. I will be adding more as time goes on.
Once the program has been downloaded, double-click on the Unhide.exe icon on your desktop and allow the program to run, it does take some time, be patient. This program will remove the +H, or hidden, attribute from all the files on your hard drives. If there are any files that were purposely hidden by you, you will need to hide them again after this tool is run.
When Unhide is complete, it will create a logfile on the Windows Desktop called Unhide.txt. Let me know if it dosn't produce a log please.

2: Reboot

3: Run Hitman Pro, then Copy & Paste the contents of the log please.
Unlimited free scanning and free 30-day version to remove detected malware.
Download now (32-bit)
Download now (64-bit)

Report •

March 26, 2013 at 06:32:37
The only way to be absolutely sure that there is no virus on you computer is the scorched earth method. Format the drive and re-install, but there is no fun in that, nor will you learn anything in the process.

So, it is up to you. Re-install or surgically remove?

Report •

March 26, 2013 at 18:02:12
In principle what you say is true. In the real world unless MS Update website itself gets hacked then you are pretty safe. I don't think MS Update has been hacked yet. The way you get viruses usually requires more than getting updates or visiting Trend Micro. If you are concerned about that sort of vague possibility of infection then best bet is to unplug the computer from line and never use the Internet. Any website can be hacked.

Always pop back and let us know the outcome - thanks

Report •
Related Solutions

Ask Question