Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

What's the source of infection? Feeling like my pants are always d


  • Please log in to reply

#1
dfeller

dfeller

    Member

  • Member
  • PipPip
  • 65 posts
I do the IT (volunteer) for my Church and recently there has been a rash of malware.
3 cases of TDSS - Google redirect
4 Cases of fake antivirus -

I've been able to remove them all quickly with a combination of Malwarebytes and manual removal, but that's not the problem.
I'm running the latest AVG (including safesearch/browsing, weekly Malwarebytes scans, and running spywareblaster. And all the Windows 7 installations are up to date:
These folks are generally not on porn sites, do not download anything from peer-to-peer and are all completely paranoid about opening attachments - not to mention that I have ALL their emails and even browsing history and I've gone back to what I think the date of infection of each is and cannot find any source.

My question - specifically on the fake antivirus malware, what is the mechanism of infection? I just flat can't seem to find a way to "plug the hole". Has anyone ever done the equivalent of forensic analysis to figure out how different malware originally infected a computer?

dfeller
  • 0

Advertisements







Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP