SaiyanGoku
kamehameha!!
^ Agreed. I would've taken a backup of non-executables using HBCD or Live linux usb and then re-installed windows using a drive which hasn't been plugged into the infected OS.
HEUR.Trojan script miner gen malware
- Thread starter andy_65_in
- Start date
meetdilip
Computer Addict
Hiren's Boot CD ? Is it still around ?
SaiyanGoku
kamehameha!!
Yes, and x64 version is maintained by community/fans
Hiren's BootCD PE
Sometimes the original developer abandons a project but community/fans keep it updated,you can say it is "officially abandoned" but not "practically abandoned".
pkkumarcool
Game & anime Lover
If i use live cd for backup from hdd to external hdd can i still get infected?
Sent from my iPhone using Tapatalk
Sent from my iPhone using Tapatalk
OP
andy_65_in
Padawan
i have the OEM windows keys with me..after formatting...will i go back to the original win 8 or the later freely updated win 10
cute.bandar
Cyborg Agent
I did a bit of digging and it turns out.
- I stand corrected. The reset method isn't indeed 100% safe.. the Windows reset image itself can itself be infected by sophisticated virus. But many say that reset is safe for almost all cases.
- If you are concerned with the reset. Use Windows refresh. A fresh windows .wim image is downloaded, so equivalent to a format, only much much simpler. See here: *superuser.com/a/1151479
Notes:
Many here are very trusting of antivirus. But its fairly easy to make virus undetectable with crypters, and packers.
See here Malware Crypters - the Deceptive First Layer - Malwarebytes Labs
The above is an analysis of a basic publically available for non-technical a**hole-malware-spreading-people . It even has a gui.
There are also crypter 'services' . upload virus -> get undetectable package.
Hiren's BootCD and similar tools are useful, but terrible from a security point of view! Lots of binaries from unknown sources, many propreitary
- I stand corrected. The reset method isn't indeed 100% safe.. the Windows reset image itself can itself be infected by sophisticated virus. But many say that reset is safe for almost all cases.
- If you are concerned with the reset. Use Windows refresh. A fresh windows .wim image is downloaded, so equivalent to a format, only much much simpler. See here: *superuser.com/a/1151479
Notes:
Many here are very trusting of antivirus. But its fairly easy to make virus undetectable with crypters, and packers.
See here Malware Crypters - the Deceptive First Layer - Malwarebytes Labs
The above is an analysis of a basic publically available for non-technical a**hole-malware-spreading-people . It even has a gui.
There are also crypter 'services' . upload virus -> get undetectable package.
Hiren's BootCD and similar tools are useful, but terrible from a security point of view! Lots of binaries from unknown sources, many propreitary
If you also copy infected files to external hdd & then run those files later then yes.
Win 10 activation remembers a system's hardware unique ID code that it generates during activation & this info is saved on MS activation servers.As long as hardware remains the same you need not enter any key & system will be automatically activated after going online.
Those crypters/packers can avoid old traditional signature based detection,not the latest ones like sandboxing/behaviour analysis etc.This is also why nowadays an av effectiveness depends a lot on internet connection as much processing is done online at AV company's end to analyse a file behaviour compared to relying on stored virus signatures in user pc. Tools like hiren boot cd are also customizable so one can make their own cd/dvd by using scripts(available on major tech forums) & own source programs.
OP
andy_65_in
Padawan
In formatting...i keep my files or remove evrything...also remove my files or remove and clean my drive ...which options to choose in my case
Last edited:
cute.bandar
Cyborg Agent
I don't know the exact purpose of crypters. If they only change the signature then yeah they will be limited. But the heuristics game is a cat and mouse game. antivirus come with methods to detect, malware dev come with methods to bypass them.. there is no clear winner yet. Point is many new virus released are FUD - full undetectable . And 100,000 are released everyday.
Sure, if the software is obtained from open source trusted places. but most download random iso
I agree it is a cat & mouse game but you have to be either very unlucky(in which case nothing will save you anyway) or very careless while being online(again nothing will save you in this case either) to encounter such "sophisticated malware". e.g.nowadays it only takes mere hours from the first appearance of such sophisticated malware to their detection added to cloud technology of av companies. Of course this is applicable only to typical home user & not corporate/institutions which need professional help if they really care about their security.
cute.bandar
Cyborg Agent
Not sure how difficult it is to make FUD malware. Some crypter services, whatever they do, they run them through virustotal like services, so several/many/most would be FUD. Also the criminals here are very organized.
Again not sure how long it takes such malware to be detected and added to the database. Considering the prevalance of ransomware it may not be that true me think. But if what you say is true, then windows defender should be the most capable av, and no other av should be required, since its present and enabled in almost every PC.
btw whitestar you sound very knowledgeable in this. I am curious about the source of your knowledge. Any pro experience? NOT trying to diss. Just curious.
Mine is a long time curious nerd, all over the internet.
Again not sure how long it takes such malware to be detected and added to the database. Considering the prevalance of ransomware it may not be that true me think. But if what you say is true, then windows defender should be the most capable av, and no other av should be required, since its present and enabled in almost every PC.
btw whitestar you sound very knowledgeable in this. I am curious about the source of your knowledge. Any pro experience? NOT trying to diss. Just curious.
Mine is a long time curious nerd, all over the internet.
bssunilreddy
Chosen of the Omnissiah
NORTON ANTI-VIRUS CLASS ACTION
Toronto law firm Investigation Counsel Professional Corporation has launched a proposed class action against Symantec Corporation. Those affected are all Ontario residents who purchased Norton branded security and antivirus software anytime between July 2010 through July 2016.
This case arises out of recent news reports that, for at least seven years, there were critical vulnerabilities in a large number of Norton security and antivirus software products. Not only did these longstanding and serious vulnerabilities make the protection and security features of Norton antivirus software products less effective, they also allegedly made users of those products more susceptible to security breaches due to hacking, malware, and computer viruses. Investigation Counsel believes that Ontario residents who purchased these allegedly defective Norton security and antivirus software products may be entitled to compensation.
If you purchased a Norton security or antivirus software product, please contact John Archibald at 416-637-3152 , by email at jarchibald@investigationcounsel.com or by filling out the form below.
Source:NORTON ANTI-VIRUS CLASS ACTION | Fraud Recovery Lawyers | Investigation Counsel PC
This is some of the things corporate firms do to remain in business.
Toronto law firm Investigation Counsel Professional Corporation has launched a proposed class action against Symantec Corporation. Those affected are all Ontario residents who purchased Norton branded security and antivirus software anytime between July 2010 through July 2016.
This case arises out of recent news reports that, for at least seven years, there were critical vulnerabilities in a large number of Norton security and antivirus software products. Not only did these longstanding and serious vulnerabilities make the protection and security features of Norton antivirus software products less effective, they also allegedly made users of those products more susceptible to security breaches due to hacking, malware, and computer viruses. Investigation Counsel believes that Ontario residents who purchased these allegedly defective Norton security and antivirus software products may be entitled to compensation.
If you purchased a Norton security or antivirus software product, please contact John Archibald at 416-637-3152 , by email at jarchibald@investigationcounsel.com or by filling out the form below.
Source:NORTON ANTI-VIRUS CLASS ACTION | Fraud Recovery Lawyers | Investigation Counsel PC
This is some of the things corporate firms do to remain in business.
pkkumarcool
Game & anime Lover
I would still recommend to take backup of other than c drive using live cd and then format everything.Dont take chances software viruses and malware have become smart.Also would like to say use a proper av windows defender is only good for people who are smart enough and dont click any stuff I personally use avast it gives me warning notification before openinf url whenever i click bad stuff.
Sent from my iPhone using Tapatalk
Sent from my iPhone using Tapatalk
bssunilreddy
Chosen of the Omnissiah
Just format the PC and then recover C Drive using Easus Recovery software. After formatting any virus will disappear and then you can easily recover.
pkkumarcool
Game & anime Lover
bssunilreddy
Chosen of the Omnissiah
Even with this a certain amount of storage can be recovered and one can buy it rather wasting time over what to do with an infected PC.