<div dir="ltr"><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">Time consuming pita Windows is.<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">1.) Boot n Nuke dodshort before each install, 2 hours.<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">2.) Fresh Windows install 1st and 2nd time Trojan re-appeared.<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)"> Third time switch out Router, = all clean ??<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">3.) Clonezilla PC after clean install.<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">4.) Clone pc again after updates<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">5.) Clone pc final time after install Complete, remove all other clones.<br><br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">6.) Re-flash Routers as per peacock thread.<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">30-30-30 does Not work will not turn off lights, so start with cord out pin in 30sec then 30-30-30.<br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)">I sure have some strange problems at my House.<br><br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)"><br></div><div class="gmail_default" style="font-family:arial,helvetica,sans-serif;color:rgb(0,0,255)"><br></div></div><div class="gmail_extra"><br clear="all"><div><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr"><img src="http://i923.photobucket.com/albums/ad79/candive/7d381ea0-1702-43dc-9185-0070677b1956_zpse48e93e2.png"><img src="http://i923.photobucket.com/albums/ad79/candive/PoweredbyLinuxEDITED_zps5856465c.jpg"><br></div></div></div>
<br><div class="gmail_quote">On 17 July 2016 at 17:01, Bob Jonkman <span dir="ltr"><<a href="mailto:bjonkman@sobac.com" target="_blank">bjonkman@sobac.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">-----BEGIN PGP SIGNED MESSAGE-----<br>
Hash: SHA1<br>
<br>
As a Linux user, I thought you might have booted the computer from a<br>
live Linux image, then used GNU/Linux tools to scan and clean the<br>
Windows drive. I've done that successfully...<br>
<br>
But in general, when the malware goes so deep into the OS as you<br>
describe, the best solution is to save the documents to an external<br>
drive, wipe the computer drive, re-install Windows, then restore the<br>
documents. And hope the malware isn't carried back to the computer in<br>
those restored documents!<br>
<br>
- --Bob.<br>
<span class=""><br>
<br>
On 2016-07-17 10:22 AM, LP wrote:<br>
> Hi all, My Wife's PC was acting different, first clue. Windows will<br>
> not update even after running MS fix it software for updates<br>
> issues, second clue. Her VPN keeps being turned off so I locked it<br>
> with Kill, Third clue. Ran Hit Man Pro found some tracking cookies,<br>
> was unable to remove even though Hit man said it was gone. PC set<br>
> to refuse cookies and or delete History "Never Remember" also ran<br>
> adwcleaner, JRT, & Malware Bytes, tracking cookies keep re<br>
> appearing. So I ran this Tutorial:<br>
> <a href="http://www.wintips.org/malware-removal-guide/" rel="noreferrer" target="_blank">http://www.wintips.org/malware-removal-guide/</a> Still cannot update<br>
> Windows & Hit Man keeps finding the Same tracking cookies. So... I<br>
> decided to download spybot search and destroy, BUT I could not<br>
> open <a href="http://safer-networking.org" rel="noreferrer" target="_blank">safer-networking.org</a>. I ran whois <a href="http://safer-networking.org" rel="noreferrer" target="_blank">safer-networking.org</a> =<br>
> <a href="https://www.virustotal.com/en/ip-address/69.172.201.153/information/" rel="noreferrer" target="_blank">https://www.virustotal.com/en/ip-address/69.172.201.153/information/</a><br>
><br>
><br>
I also found many pages stating that Spybot S&D Server at 69.172.201.153 is<br>
> pushing drive by Malware of just about everything you can name, and<br>
> that is why Avira would not allow me to connect. It all started<br>
> after my Daughter installed a very popular kids game "ROBLOX" not<br>
> sure if there is a connection. LP<br>
><br>
><br>
><br>
</span>> _______________________________________________ Group mailing list<br>
> <a href="mailto:Group@bglug.ca">Group@bglug.ca</a> <a href="http://bglug.ca/mailman/listinfo/group_bglug.ca" rel="noreferrer" target="_blank">http://bglug.ca/mailman/listinfo/group_bglug.ca</a><br>
><br>
<br>
- --<br>
<br>
<br>
- --<br>
Bob Jonkman <<a href="mailto:bjonkman@sobac.com">bjonkman@sobac.com</a>> Phone: <a href="tel:%2B1-519-635-9413" value="+15196359413">+1-519-635-9413</a><br>
SOBAC Microcomputer Services <a href="http://sobac.com/sobac/" rel="noreferrer" target="_blank">http://sobac.com/sobac/</a><br>
Software --- Office & Business Automation --- Consulting<br>
GnuPG Fngrprnt:04F7 742B 8F54 C40A E115 26C2 B912 89B0 D2CC E5EA<br>
<br>
<br>
<br>
-----BEGIN PGP SIGNATURE-----<br>
Version: GnuPG v2<br>
Comment: Ensure confidentiality, authenticity, non-repudiability<br>
<br>
iEYEARECAAYFAleL8hMACgkQuRKJsNLM5erIsgCgxloemSNIAnr4xBvHmIhQ69/G<br>
64EAoMXPBz/IchqSBWbwpdnPVPJBo15J<br>
=BV43<br>
-----END PGP SIGNATURE-----<br>
<br>
_______________________________________________<br>
Group mailing list<br>
<a href="mailto:Group@bglug.ca">Group@bglug.ca</a><br>
<a href="http://bglug.ca/mailman/listinfo/group_bglug.ca" rel="noreferrer" target="_blank">http://bglug.ca/mailman/listinfo/group_bglug.ca</a><br>
</blockquote></div><br></div>