I meant Read-only attribute.
Back to top
#152
Posted 11 July 2017 - 04:40 PM
selohu
-
- Member
-
- 6 posts
New Member
Hola, buenas:
Me gustaría aprender a manejar este fantástico software, que me aconsejarían para aprender primero con este sofware?. Como podría empezar a aprender a manejarlo?. Gracias
#154
Posted 12 July 2017 - 04:17 AM
Alduin
-
- Banned
-
- 55 posts
Banned
Hola, buenas:
Me gustaría aprender a manejar este fantástico software, que me aconsejarían para aprender primero con este sofware?. Como podría empezar a aprender a manejarlo?. Gracias
Learn more about Windows and Malware & FRST and RESEARCHING (very important) and you will have a good understanding by checking logs and creating fixlists. It might sound simple but it's not ive been doing malware removal for 4 years and took me quite a while to get hang of it. Also one good thing is if you don't find any information about a file/driver/service analyze it in vm to see what it is and what it does and where it comes from. Usually i see Malware Removal experts remove legtimate files because they don't find any info about it and one of those files can actually be legitimate files from microsoft. Everything you see infront of your eyes on the logs is there for a reason and not bunch of random stuff, Use it and search propley. I could explain what more to look for and remove and keep on going but this is atleast most of the important things you need to learn.
#155
Posted 12 July 2017 - 05:18 PM
DonnaB
-
- GeekU Moderator
-
- 8,529 posts
Miss Congeniality
Hi selohu,
Welcome to GeeksToGo!
Google Translator:
¿Habla usted Inglés? El inglés fluido se requiere para aplicar a la universidad de Geek aquí en el programa de entrenamiento de la eliminación del malware de GeeksToGo.
Donna
Welcome to GeeksToGo!
Google Translator:
¿Habla usted Inglés? El inglés fluido se requiere para aplicar a la universidad de Geek aquí en el programa de entrenamiento de la eliminación del malware de GeeksToGo.
Donna
#156
Posted 12 July 2017 - 05:31 PM
selohu
-
- Member
-
- 6 posts
New Member
Me gustaría, pero el inglés no es lo mío. Gracias traductor google.
Edited by selohu, 12 July 2017 - 05:32 PM.
#157
Posted 12 July 2017 - 05:42 PM
DonnaB
-
- GeekU Moderator
-
- 8,529 posts
Miss Congeniality
De acuerdo. No soy fluido en español por lo que google tendrá que hacer por el momento. Comprobaré alrededor para ver si alguno de mis asociados sabe de un programa de entrenamiento que se enseña en español.
#158
Posted 14 July 2017 - 11:41 AM
Herman_Salim
-
- Member
-
- 36 posts
Member
Maybe Farbar can add a new Directive or Operator, so we can to leave a Note Or Comment in fixlist.txt that will not be prosess and just Print it again to fixlog.txt.
Thank you..
#159
Posted 14 July 2017 - 12:19 PM
picasso
-
- Malware Removal
-
- 205 posts
Trusted Helper
I don't know why you need that. In my opinion "Fix" script is not a place for "notes", it should stay as clean / short as possible showing only what was included/processed, to not distract analysing.
#160
Posted 14 July 2017 - 09:42 PM
Alduin
-
- Banned
-
- 55 posts
Banned
Is it possible for Farbar that when you run FRST each time, the name of the MainWindowTitle changes every time to random words and numbers?
Edited by Alduin, 14 July 2017 - 10:23 PM.
#161
Posted 14 July 2017 - 11:08 PM
Herman_Salim
-
- Member
-
- 36 posts
Member
I don't know why you need that. In my opinion "Fix" script is not a place for "notes", it should stay as clean / short as possible showing only what was included/processed, to not distract analysing.
If there are may line of fixlist, sometime we can skip any important line (human mistake). So, if we add a comment "Don't skip this", it will appear also in fixlog, so we can't skip it anymor.
#162
Posted 15 July 2017 - 04:00 AM
farbar
-
- Expert
-
- 503 posts
Developer
Is it possible for Farbar that when you run FRST each time, the name of the MainWindowTitle changes every time to random words and numbers?
This is not something I'm willing to do regardless of the purpose of which I guess might be hiding FRST from malware tools. I have not seen such a malware yet, but if it existed, we can always think of a temporary tool and keep the main tool as it is.
I don't know why you need that. In my opinion "Fix" script is not a place for "notes", it should stay as clean / short as possible showing only what was included/processed, to not distract analysing.
If there are may line of fixlist, sometime we can skip any important line (human mistake). So, if we add a comment "Don't skip this", it will appear also in fixlog, so we can't skip it anymor.
I'm sorry. We can't cover the human mistakes fully.
#163
Posted 15 July 2017 - 08:44 AM
Herman_Salim
-
- Member
-
- 36 posts
Member
@farbar: It's ok, thank you for the Response..
#164
Posted 15 July 2017 - 11:05 AM
Alduin
-
- Banned
-
- 55 posts
Banned
I would be glad if you can create that "temporary tool" since iv'e seen one malware doing it. And that malware also boots in safe mode trough shell explorer and is also listed on loaded modules. it uses MainWindowTitle to block programs such as AV/AM and some windows files. So i mean it would be very nice if u could do it.
#165
Posted 15 July 2017 - 04:38 PM
farbar
-
- Expert
-
- 503 posts
Developer
Please give me a reference to the topic or any source explaining the malware. In case you have access to a sample it will be great to have it.
Also tagged with one or more of these keywords: FRST, farbar, tutorial
![Help w/FRST logs...NEWBIE [Closed] - last post by DR M](https://www.geekstogo.com/forum/uploads/profile/photo-418842.gif?_r=1578338641)
![Infected with EneTechIo - Have Done Farbar Scan Logs Below [Closed] - last post by icotonev](https://www.geekstogo.com/forum/uploads/profile/photo-thumb-324986.jpg?_r=1553332826)
![anyone able to read farbar files and make sense of them [Closed] - last post by iMacg3](https://www.geekstogo.com/forum/uploads/profile/photo-thumb-423723.jpg?_r=1581638836)
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
As Featured On:
Sign In
Create Account
