I have never seen a more infected computer in my life

By f0rk_b0mb
in Smart Home, Network & Security

 Share

Recommended Posts

Grand Master

f0rk_b0mb

Posted
  • Author
Posted

Personally if you don't know what to do and you have to question yourself you might not want to take someones personals things and do the work.

I do this all the time. It just with this laptop, it one thing after another. All the other computers before was just a simple malware bytes and it's gone. Again, I'll post some screenshots tonight or tomorrow of the infection.

Veteran

Shane Nokes

Posted
Posted

I do this all the time. It just with this laptop, it one thing after another. Again, I'll post some screenshots tonight or tomorrow of the infection.

I'm very interested to see what comes up. :)

  • f0rk_b0mb and Brandon H
  • Like 2
Grand Master

f0rk_b0mb

Posted
  • Author
Posted

What the fu** man. The "antivirus" program she was useing is this. I bet it works really well. /s I got past the FBI Screen tho. :)

http://www.2-viruses.com/remove-antivirus-protection-2012

http://support.kaspersky.com/viruses/rogue?qid=208286236

Grand Master

Astra.Xtreme

Posted
Posted

So saying that I'm baffled and stepping back because I don't want to **** people off is flipping out?

Man I'd hate to see what you'd call someone actually flipping out. ;)

You can try to tell me the same thing over and over again...and it doesn't change what I've been doing for years...without an issue.

The way I do things is the reason why I've worked for the government, and why places like MS have me consult on things and even contract my work at points.

I'm good at what I do, and security happens to be one of my specialties.

Well then perhaps the better label would have been "complaining". Logistics like that are beyond the point, so let's just let it go.

That's great that your method works for you and that's great that you have good work experiences, but that doesn't mean your method is the best method. And I'm not saying your method is wrong either. Just that many times it's not the most efficient.

Consulting is my side project and since I'm a nerdy engineer, I did time studies on the PCs I cleaned up when I started with my first client. As I already said, lack of updates and crapware were the worst problems on top of the malware/infections. Cleaning it up manually and running Windows updater took double or triple the time of simply backing up files and reinstalling with an up-to-date Windows USB stick. Windows 7 is a lot quicker to update, but XP takes hours and hours and hours to run through some of those updates on a slow PC. The timing wasn't even close. It wasn't that I didn't know what I was doing. It's that scans, cleaning, and updating takes a lot of time. If you claim otherwise, you're lying.

But for a third time, the context here is what matters. If somebody gives me a PC that is simply a little slow, then a virus scan and a little tidying up is all it takes. If the PC is super slow, the desktop is hijacked, the task manager is blocked, safe mode is blocked, the internet redirects to ads, etc, then it's probably not worth the time trying to reverse the damage. Killing the infection and running a Windows repair takes too long and it's still just a band-aid. With a clean install, there is zero chance of the customer coming back to you and claiming the problem isn't solved and demanding "warranty" work.

Grand Master

+Warwagon MVC

Posted
  • MVC
Posted

Unless you personally inspect the code of every file and registry key on the computer after it was infected, you can't be 100% sure. You can be as sure as it's possible to be, but not 100%.

100% means that you personally verified that state of all registry entries and code of every file on the system, and then were able to determine that the malware had not has not under any shadow of a doubt modified any of them. 100% also means that you restored the system to a known good state using known clean media, such as an image (after nuking partitions) or reinstalling off a known good clean installation media.

hose can still be cleaned...but for those who aren't certain they are 100% capable of doing so the best option is to back up and do a low-level format as those can be nasty.
You want to spend your time not learning how to properly clean an infection...cool.

^I'm quoting Shane Nokes on both

Dude, you just got done telling us that you keep logs of every infection.

I also keep a log of all infections. If (and it's rare) I get someone in soon after a repair I show them the log of what was found on the machine, and what is now on the machine. I check the date on the infected files found for when they were first put on the machine and compare it to the date of service.

If the date is after the service I performed I fix the machine, and charge the customer again.

Why would you do that if you weren't 100% sure you got it the first time.

Veteran

Shane Nokes

Posted
Posted

Unless you personally inspect the code of every file and registry key on the computer after it was infected, you can't be 100% sure. You can be as sure as it's possible to be, but not 100%.

100% means that you personally verified that state of all registry entries and code of every file on the system, and then were able to determine that the malware had not has not under any shadow of a doubt modified any of them. 100% also means that you restored the system to a known good state using known clean media, such as an image (after nuking partitions) or reinstalling off a known good clean installation media.

Dude, you just got done telling us that you keep logs of every infection. Why would you do that if you weren't 100% sure you got it the first time.

I explained why I kept the logs. I kept the logs there for the folks that would try to come in and claim that I didn't clean the machines.

Sometimes I wonder why I bother actually typing out actual full posts since it seems people skim them for about 30% or less of the actual content... *sighs*

Also if you want to go that route...then you can't trust any machine that you do not sit in front of 24 hours a day, 7 days a week, 365 days a year...without any breaks.

After all when you walk away someone could sneak in your window, infect the machine, and then sneak back out...all without you knowing...

I mean come on...do we really have to go down the route of stupidity here?

You don't have to inspect the code of every single file...once you know what is infected you clean it up...then run the system file checker...it can tell you if any files do not match the values that are supposed to match.

Any changes in code would be picked up immediately.

Do folks really keep intending to argue with me on this? I mean it's fairly worthless to keep arguing with me on this...you won't win.

Yeah...not replying to anyone but the OP from here on out...the rest of the posts are just wasting my time... *sighs*

Grand Master

f0rk_b0mb

Posted
  • Author
Posted

Also if you want to go that route...then you can't trust any machine that you do not sit in front of 24 hours a day, 7 days a week, 365 days a year...without any breaks.

After all when you walk away someone could sneak in your window, infect the machine, and then sneak back out...all without you knowing...

You know, you could just set a password, encrypt your disk, close your windows, and lock your doors. :p

Veteran

Shane Nokes

Posted
Posted

You know, you could just set a password, encrypt your disk, close your windows, and lock your doors. :p

I couldn't be 100% certain that someone wasn't spying on me seeing what I typed or what the backup encryption code was that was spit out by Bitlocker.

They could all be watching right now :shiftyninja:

;)

Grand Master

+Warwagon MVC

Posted
  • MVC
Posted

If the date is after the service I performed I fix the machine, and charge the customer again.

I think you meant to say "When" instead of "IF", if is second guessing yourself. :)

This topic is now closed to further replies.
 Share
Go to topic listing

  • Posts

    • The Trump administration doesn't want you to use OpenAI's GPT-5.6 without its approval

      By excalpius · Posted

      Ignoring the fact that this "colony" kicked the empire of King George's arse during those early years... You are confusing the First Industrial Revolution (which was clearly pulled out of some butt-hurt Brit historian's arse after the fact) with the Second Industrial Revolution (aka now called the Technological Revolution, undoubtedly by that same butt-hurt Brit), which transitioned the world from the UK/UPS Empire to the USA as the world's only superpower. https://en.wikipedia.org/wiki/Industrial_Revolution I hope you realize that I am having big fun here.
    • OpenAI announces GPT‑5.6 Sol, its next-generation flagship model beating Claude Mythos 5

      By pradeepviswav · Posted

      OpenAI announces GPT‑5.6 Sol, its next-generation flagship model beating Claude Mythos 5 by Pradeep Viswanathan Credit: OpenAI OpenAI today announced a limited preview of its new GPT-5.6 model series, which includes the Sol, Terra, and Luna models targeting different price points. GPT-5.6 Sol is the flagship model targeted at demanding reasoning and agentic workloads. GPT-5.6 Terra is positioned as a balanced model for everyday work, featuring performance competitive with GPT-5.5 while being half the cost. GPT-5.6 Luna is the fastest and most affordable model, delivering strong capability at a lower price point. Unlike previous model releases from OpenAI, GPT-5.6 is starting with a limited preview for a small group of trusted partners due to U.S. government restrictions. As expected, OpenAI previewed its plans and the models' capabilities to the U.S. government ahead of launch, and the government asked OpenAI to limit the first wave of access to select partners. OpenAI also mentioned in the official announcement blog post that it does not believe this type of government access process should become the long-term default. OpenAI highlighted that GPT-5.6 Sol comes with a robust safety stack featuring improved protections for higher-risk activity, sensitive cyber requests, and repeated misuse. The company also spent several weeks pressure-testing the system and hardening it against real-world attacks. On the capability side, as expected, GPT-5.6 Sol is OpenAI’s strongest model yet. It delivers better results in agentic performance across coding, biology, and cybersecurity. On the Terminal-Bench 2.1 benchmark, which tests command-line workflows requiring planning, iteration, and tool coordination, GPT-5.6 Sol sets a new record with a score of 91.9%, beating Anthropic's Claude Mythos 5. Additionally, GPT-5.6 introduces a new "max" reasoning effort for even deeper reasoning. The new "ultra" mode uses subagents to accelerate complex work beyond what a single agent can handle. Pricing starts at $5 per million input tokens and $30 per million output tokens for Sol. Terra costs $2.50 for input and $15 for output, while Luna costs $1 for input and $6 for output. GPT-5.6 comes with more predictable prompt caching, including support for explicit cache breakpoints and a 30-minute minimum cache life. Sol will also launch on Cerebras in July at speeds up to 750 tokens per second for select customers. OpenAI plans to make GPT-5.6 Sol, Terra, and Luna broadly available in ChatGPT, Codex, and the API in the coming weeks.
    • The Trump administration doesn't want you to use OpenAI's GPT-5.6 without its approval

      By monterxz · Posted

      I'm not sure if you are trolling because I saw people saying this with the straight face, but there were no United States of America when industrial revolution started, just United Colonies 🤣 p.s. I'm not British, so I'm not offended.
    • Firefox 152.0.3

      By James W. · Posted

      Glad I uninstalled this incredibly buggy browser. Looking at that changelog, they clearly don't test their updates at all.
    • UniGetUI 2026.2.2

      By Copernic · Posted

      UniGetUI 2026.2.2 by Razvan Serea UniGetUI is an application whose main goal is to create an intuitive GUI for the most common CLI package managers for Windows 10 and Windows 11, such as Winget, Scoop and Chocolatey. With UniGetUI, you'll be able to download, install, update and uninstall any software that's published on the supported package managers — and so much more. UniGetUI features Install, update and remove software from your system easily at one click: UniGetUI combines the packages from the most used package managers for windows: WinGet, Chocolatey, Scoop, Pip, Npm and .NET Tool. Discover new packages and filter them to easily find the package you want. View detailed metadata about any package before installing it. Get the direct download URL or the name of the publisher, as well as the size of the download. Easily bulk-install, update or uninstall multiple packages at once selecting multiple packages before performing an operation Automatically update packages, or be notified when updates become available. Skip versions or completely ignore updates in a per-package basis. Manage your available updates at the touch of a button from the Widgets pane or from Dev Home pane with UniGetUI Widgets. The system tray icon will also show the available updates and installed package, to efficiently update a program or remove a package from your system. Easily customize how and where packages are installed. Select different installation options and switches for each package. Install an older version or force to install a 32bit architecture. [But don't worry, those options will be saved for future updates for this package] Share packages with your friends to show them off that program you found. Here is an example: Hey @friend, Check out this program! Export custom lists of packages to then import them to another machine and install those packages with previously-specified, custom installation parameters. Setting up machines or configuring a specific software setup has never been easier. Backup your packages to a local file to easily recover your setup in a matter of seconds when migrating to a new machine Devolutions UniGetUI 2026.2.2 changelog: This release marks the completion of UniGetUI's migration from WinUI to Avalonia. With the remaining WinUI components and dependencies now removed, UniGetUI is fully powered by Avalonia. This update also brings Windows 11 Snap Layouts support, refined styling throughout the application, improved log viewing, new illustrations, and significantly smaller release packages. Highlights Further refined the Avalonia user interface to better match WinUI styling and behavior across package lists, navigation elements, dialogs, and controls. Added support for Windows 11 Snap Layouts when hovering the maximize button, matching the behavior of native Windows applications. Added illustrations for empty and loading package list states, improving visual feedback throughout the application. Improved the operation log window so automatic scrolling no longer interrupts users when reviewing previous log entries. Reduced installer and application package sizes, resulting in smaller downloads and a significantly leaner Windows distribution. User Interface Improvements Improved package list styling, column headers, backgrounds, hover states, and selection indicators for a more polished and consistent experience. Refined sidebar navigation and segmented controls to better align with modern Windows design patterns. Improved package tag badges and icon presentation throughout the application. Updated several labels, placeholders, and interface elements for improved clarity and consistency. Removed the remaining WinUI-specific styling dependencies, further consolidating the application around Avalonia. Windows Improvements Added native Windows 11 Snap Layouts integration for the maximize button. Improved maximize button hover and pressed visual states to more closely match native Windows behavior. Performance & Reliability Reduced the size of Windows release packages by removing unnecessary runtime dependencies and optimizing published builds. Reduced installer size through improved compression settings. Simplified application dependencies and reduced overall maintenance complexity. Fixes Fixed log output auto-scrolling behavior when manually reviewing previous entries. Resolved various UI inconsistencies and styling issues across the Avalonia interface. Addressed several minor issues and edge cases throughout the application. Other Changes Dependency cleanup and project maintenance. Internal code refactoring and infrastructure improvements. Additional test coverage and build pipeline optimizations. Download: UniGetUI 64-bit | Portable | ~90.0 MB (Open Source) Download: UniGetUI ARM64 | Portable Links: UniGetUI Home Page | GitHub | Screenshot Get alerted to all of our Software updates on Twitter at @NeowinSoftware

  • Recent Achievements

    • One Year In
      bernmeister earned a badge
      One Year In
    • Week One Done
      Scoobystu earned a badge
      Week One Done
    • Week One Done
      tuben earned a badge
      Week One Done
    • First Post
      OffsetAbs earned a badge
      First Post
    • Reacting Well
      OffsetAbs earned a badge
      Reacting Well

  • Popular Contributors

    1. 1
      +primortal
      441
    2. 2
      +Edouard
      197
    3. 3
      PsYcHoKiLLa
      154
    4. 4
      FloatingFatMan
      71
    5. 5
      Steven P.
      67
    Show More

  • Tell a friend

    Love Neowin? Tell a friend!