Jump to content

[MBAM found 3500+] threats on a device I was fixing....


Blackchildcx

Recommended Posts

Blackchildcx

OMFG...This was something.

yesterday a friend calls me and asked for help...

I should fix a non working Laptop...

I checked some things and soon it was clear..HIGHLY infected...

I choosed MBAM fom nsanedown FP and started to scan this zombie laptop... ^_^

after 3500 + threats detected :o first BSOD... :angry:

with the sidekick chameleon I was able to remove bout 90% of the threats B) facing many many many BS... :o

Now the device is working but I scanned with almost every scanner I know...emsisoft, Dr.Web,MBAM,HitmanPro..........

i grabed my 50 bucks and left......I told him he needs a clean windows instalation and should format C:....

I made a picture of this disaster and Im going to upload it later....

I cant remember a system that was so screwed like this one....The guy spend 6 month in india without any AV on his system.... :wtf:

:lol:

Edited by Blackchildcx
Link to comment
Share on other sites


Blackchildcx

Cool story bro !

after lunch I go there again...I upload the picure when I come back...Thats so crazy.. :lol:

Link to comment
Share on other sites


I am more than sure that you have yet need to go there! There are certainly huge junk files and faulty registry keys number.

And much more. But the damage is, that they do not provide lunch for You there!

Link to comment
Share on other sites


But the damage is, that they do not provide lunch for You there!

:P :lol: :lol: Well Said , This Why I Like Kalju :P

Link to comment
Share on other sites


Blackchildcx

Thats it...I gave up the fight..

O.K. it´s not possible to fix somehing similar without re-seting up the whole OS..Cause its still screwed up, like

Kalju

sayd....

I told him that I´ve got to do so and that this would take the whole weekend...(Of course hes not able to setup easy things like browsers,skype,drivers......)

I sayd the deal is 50€ more and the device is ready @ monday....

He thinks its all good now and hes able to surf and work with this device..so its not longer my proplem...

The best thing is he owns a little store and use the laptop for paying bills and stuff...

All I could do for him was giving him MBAM Premium...AVG IS 2014 and do a sfc/scannow (what was unable to fix damage...of course ;)

i will upload the picture within next 20 min...

thanx for reading this crazy story...

Link to comment
Share on other sites


Blackchildcx

OMFG, I have never seen such a screwed system... :wtf:

before....;)

Link to comment
Share on other sites


after 3500 + threats detected :o

Is he trying to place himself in to the Guniess World Records or "Most Infectious" on the planet. :o

Edited by Rok
Link to comment
Share on other sites


Blackchildcx

proof....sry the picture quality is bad but You can see thats a 4 digit number...

I remember it was 3500 +

fasten seat belts first...than click.... ;)

fd625f35ce.jpg

7e2d5e9770.jpg

Edited by Blackchildcx
Link to comment
Share on other sites


Blackchildcx

after 3500 + threats detected :o

Is he trying to him in to the Guniess World Records or "Most Infectious" on the planet. :o

I dont know whats wrong with him...I talked with him and he told me his son is using the device too...i checked the temp file folder and there where hunderts of web site entries like ...

Porntube ,Red tube ...and so on..

This with no AV and a not activated Win 7...Has never seen a update since years!!! :lol: ...thats what happens..

Thanx to windows loader DAZ its now hacktivated and he gets upadtes for the system...

anyway...his screwed! ^_^

But a big should out to MBAM which is realy a little fighter kickin malewares butt....(as good as he can..)

Edited by Blackchildcx
Link to comment
Share on other sites


I was handed a laptop recently from a relatively young user (i say 24 years old), which is young to me :P, where it had something along the same lines in qty of infections. The laptop took literally 40 mins to boot due to the types of malware all fighting for cpu cycles.

If only schools educated people on IT security like they do religion, it would solve half the issues IT techs have.

@OP, good effort giving it a clean, but like you say, it's always best to just format the HD and start again. (Stick the HD in a VM first to recover anything essential!)

Edited by Dodel
Link to comment
Share on other sites


I've seen it when malware testing software lots of times.

The thing is most of the results all belong to the same malicious program. It's not like 3k different pieces of malware :lol:

Link to comment
Share on other sites


after 3500 + threats detected :o

Is he trying to him in to the Guniess World Records or "Most Infectious" on the planet. :o

.i checked the temp file folder and there where hunderts of web site entries like ...

Porntube ,Red tube ...and so on..

This with no AV and a not activated Win 7...Has never seen a update since years!!! :lol: ...thats what happens..

May God bless him. A Windows system, with no updates, no firewall, no Antivirus / Spyware and it is always connected to internet......and a HUB of porn. Wow, 3500+ is just nothing. It should have been more. How can anyone on the earth run a barebone Windows system. These days, you cann't even imagine to run an Mac like this.

@Blackchildcx, charge him $10 per malware / spyware / pornware / etc. etc............who knows, what else is there in that pandora.

Link to comment
Share on other sites


Blackchildcx

after 3500 + threats detected :o

Is he trying to him in to the Guniess World Records or "Most Infectious" on the planet. :o

.i checked the temp file folder and there where hunderts of web site entries like ...

Porntube ,Red tube ...and so on..

This with no AV and a not activated Win 7...Has never seen a update since years!!! :lol: ...thats what happens..

May God bless him. A Windows system, with no updates, no firewall, no Antivirus / Spyware and it is always connected to internet......and a HUB of porn. Wow, 3500+ is just nothing. It should have been more. How can anyone on the earth run a barebone Windows system. These days, you cann't even imagine to run an Mac like this.

@Blackchildcx, charge him $10 per malware / spyware / pornware / etc. etc............who knows, what else is there in that pandora.

The thing is that he is 100% unable to handle a Pc..He do not a remember a single password for e-mails and all that kind of stuff..Hes afraid to start again so hes happy with the device right know...

And Im glad that this laptop even boot up again after removing all this garbage...I have got 50€ more and he some virus less....

thats it for me...I collected a few samples but I was not able to transfer to PC without danger...I guess I purge them..

We have maleware domains...so why should I keep them?

Link to comment
Share on other sites


Blackchildcx

I was handed a laptop recently from a relatively young user (i say 24 years old), which is young to me :P, where it had something along the same lines in qty of infections. The laptop took literally 40 mins to boot due to the types of malware all fighting for cpu cycles.

If only schools educated people on IT security like they do religion, it would solve half the issues IT techs have.

@OP, good effort giving it a clean, but like you say, it's always best to just format the HD and start again. (Stick the HD in a VM first to recover anything essential!)

for me this kind of mess was new...Yes I too did some crazy tests with VMWare and maleware domains...

but a REAL device that was messed up like this was new...He had up to 286 processes running and he put some fXXkin cooling pads from the fridge on the laptop cause it was so GXd dame hot...(Im laughing tears while writing this lines...)this was an awsome day :lol:

Edited by Blackchildcx
Link to comment
Share on other sites


DarkSlayer

LOL, the PCs I usually desinfect with KAV and MBAM have around 300 or 400 infected files.

You got one that was screwed way over any other. It was a fu@#% miracle that this "thing" still botted up and loaded Windows... :wtf:

Link to comment
Share on other sites


well 6-7 years ago when i didn't used kaspersky on my system, and was using norton, i started taking interest in hacking stuff, so i used to download keyloggers and all those malicious files disabling norton, what it did to my system was that one day norton was blocked by some nasty virus, so i somehow installed kaspersky on that, what it found was more than 30,000 viruses the moment i scanned my system, but there weren't actually 30,000 viruses, it was one worm which infected every exe on my system available, and couple of trojans in the system, so not more than a handful of different viruses.. :rolleyes:

Your seems to be the similar case, unless there are actually 3500+ different viruses, it's not that extreme case.. B)

Link to comment
Share on other sites


Have also such people here.

Can make a PC with a Core I7 4770 CPU, with 8 GB RAM and fast WDC Black harddisk for them.

After 3 months, the computer slowly crawls instead of running.

15 toolsbars, 30 programs in system tray at startup, full of adware and other crap.

And never there fault. the newer click on or install crap.

Can clean this all and after few months same story.

Best solution is format and reinstall, but everything on the computer is extremly important (but not important enough for a backup by them).

And they want program x, y and z and they don't have the install files or license.

I ask between 75 and 100 euro now for reinstalling a PC.

In the past I asked also a lot less but then you get people with no respect and for the very low price they start to demand things like must be ready tommorow and so on.

When you ask a normal price, you get only people that know that you have to spend days to fix their PC and show graditude for it.

I have no respect afterwards when I'm days busy installing everything.

They think that reinstalling Windows takes 5 minutes, the rest of the works is done by leprecons at night.

Seen a lot of computers with the same disease, not activated O.S or Microsoft Office. with 0 updates installed, crappy free anti-virus, most of the drivers not installed or the stock ones from Windows.

several remains from other past anti-virus.

All installed by self proclaimed computer experts.

Malwarebytes, Hitman, Spybot Search And Destroy, Emisoft Antimalware, Herdprotec, Combofix, Junkware Removal Tool and ADW Cleaner are the best malware removal tools.

And I mostly remove their harddisk and scan them on my system with Kaspersky and install Eset NOD32 on their systems.

too_many_toolbars.jpg

Edited by Ragdd
Link to comment
Share on other sites


too_many_toolbars.jpg

Must be going back some, the image looks like it's Win 2k, even has DAP insatlled lol.

Edited by Dodel
Link to comment
Share on other sites


Blackchildcx

LOL, the PCs I usually desinfect with KAV and MBAM have around 300 or 400 infected files.

You got one that was screwed way over any other. It was a fu@#% miracle that this "thing" still botted up and loaded Windows... :wtf:

I was wondering that the pc booted up again after the removal process....I guess that there where up to some viruses that was showing as 3500 of course..

But if You have seen what Ive seen there would be no answer that this PC was hijacked as hell...

I mean spend 6 month in India without AV and surf on bollywood sites to watch stuff.....No question....

Link to comment
Share on other sites


LOL, the PCs I usually desinfect with KAV and MBAM have around 300 or 400 infected files.

You got one that was screwed way over any other. It was a fu@#% miracle that this "thing" still botted up and loaded Windows... :wtf:

I was wondering that the pc booted up again after the removal process....I guess that there where up to some viruses that was showing as 3500 of course..

But if You have seen what Ive seen there would be no answer that this PC was hijacked as hell...

I mean spend 6 month in India without AV and surf on bollywood sites to watch stuff.....No question....

@Blackchildcx, after reading this thread and commenting on it, I'm still wondering, "what is the point of him getting so much work done on this pandora, because in anyways sooner or later he will again act the same way...and will very soon fill it with all craps."

Link to comment
Share on other sites


That why you should charge more, otherwise they will come back every week.

When you ask a normal price, they will think twice before installing crap, if they don't then you made nice pocketmoney instead of a handout.

LOL, the PCs I usually desinfect with KAV and MBAM have around 300 or 400 infected files.

You got one that was screwed way over any other. It was a fu@#% miracle that this "thing" still botted up and loaded Windows... :wtf:

I was wondering that the pc booted up again after the removal process....I guess that there where up to some viruses that was showing as 3500 of course..

But if You have seen what Ive seen there would be no answer that this PC was hijacked as hell...

I mean spend 6 month in India without AV and surf on bollywood sites to watch stuff.....No question....

@Blackchildcx, after reading this thread and commenting on it, I'm still wondering, "what is the point of him getting so much work done on this pandora, because in anyways sooner or later he will again act the same way...and will very soon fill it with all craps."

Link to comment
Share on other sites


too_many_toolbars.jpg

buuuahahahahahahahgkkrufhahahahahahah new OS in the wild, OS Toolbar LOL

Edited by Zarko
Link to comment
Share on other sites


OMFG...This was something.

yesterday a friend calls me and asked for help...

I should fix a non working Laptop...

I checked some things and soon it was clear..HIGHLY infected...

I choosed MBAM fom nsanedown FP and started to scan this zombie laptop... ^_^

after 3500 + threats detected :o first BSOD... :angry:

with the sidekick chameleon I was able to remove bout 90% of the threats B) facing many many many BS... :o

Now the device is working but I scanned with almost every scanner I know...emsisoft, Dr.Web,MBAM,HitmanPro..........

i grabed my 50 bucks and left......I told him he needs a clean windows instalation and should format C:....

I made a picture of this disaster and Im going to upload it later....

I cant remember a system that was so screwed like this one....The guy spend 6 month in india without any AV on his system.... :wtf:

:lol:

Its always the AV's fault, or lack of having one :rolleyes: ....never the dim-witted end-user :lol: :sarcasm: ...Ive seen systems with all kinds af "protection" installed and still they get infected. Ive also seen systems without a stitch of realtime protection installed and never get infected.

after 3500 + threats detected :o

Is he trying to him in to the Guniess World Records or "Most Infectious" on the planet. :o

.i checked the temp file folder and there where hunderts of web site entries like ...

Porntube ,Red tube ...and so on..

This with no AV and a not activated Win 7...Has never seen a update since years!!! :lol: ...thats what happens..

May God bless him. A Windows system, with no updates, no firewall, no Antivirus / Spyware and it is always connected to internet......and a HUB of porn. Wow, 3500+ is just nothing. It should have been more. How can anyone on the earth run a barebone Windows system. These days, you cann't even imagine to run an Mac like this.

@Blackchildcx, charge him $10 per malware / spyware / pornware / etc. etc............who knows, what else is there in that pandora.

By barebones, if you mean no realtime AV protection BS installed while at the same time NOT being compromised by malware either, Its done alot by many! g/l

Edited by loco.Joe
Link to comment
Share on other sites


Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...