UGN Security Forums
My ProfileMember DirectoryLogin
Search our ForumsView our FAQView our Site Rules
View our CalendarView our Active TopicsGo to our Main Page

UGN Security Store
 

Network Sites UGN Security, The GoNix Initiative, Elite Web Gamers, Back of the Web, EveryDay Helper, VNC Web Design & Development
Sponsored Links
Latest Postings
Latest Reviews
Topic Options
Rate This Topic
#49700 - 11/15/09 08:25 AM hidden files and microsoft websites
Artic Warrior Offline
UGN Member

Registered: 11/12/03
Posts: 478
Loc: My room
2 new things that I am having to deal with.

I can not show hidden files. The option in view, advanced settings are there but it reverts back to "Do not show...".

Second thing is that I can't access any Microsoft websites. I only noticed that when I was trying to upgrade MS livecam software. All other websites work.

In conclusion: I really need to format and upgrade to WIN7. Which I will do as soon as a service pack is made available.
Until then I am still on XP SP2.

There are a few fixes for these problems out there.
I am not willing to go into the registry and change values, (one of the fixes) as that usually creates more problems but it seems like the easiest one.

As for unable to access the MS website and extensions. Meh.

I downloaded NOD32 anti virus and it is slow as.

Regmech, Spybot S&D, I have used and they do not fix these 2 problems. I have a feeling Spybot isn't working that well these days.

Can send you a HJT log if you are interested.
_________________________

Top
Sponsored Links
      
#49707 - 11/17/09 04:04 AM Re: hidden files and microsoft websites [Re: Artic Warrior]
Gremelin Offline

Community Owner
*****

Registered: 02/28/02
Posts: 7193
Loc: Portland, OR; USA
I was about to say, it sounds like you have some sort of malware installed that won't allow you to visit M$ websites (as live update is one of them and would usually fix an issue).

I'm thinking that whatever it is likely overwrote your hosts file blocking M$ sites as well as some others as well.

You should get Ad Aware, Spybot, and Avast ASAP.
_________________________
Donate to UGN Security here.
UGN Security, Back of the Web, Elite Web Gamers & VNC Web Design Owner

Top
#49798 - 12/04/09 01:38 AM Re: hidden files and microsoft websites [Re: Artic Warrior]
ninjaneo Offline
UGN Security Staff

Registered: 03/06/02
Posts: 256
Loc: CA, USA
Yeah, def sounds like you're infected. I would use only 3rd party browsers, Microsoft Internet Explorer is easily exploited. I've had better luck with Mozilla Firefox. As a temporary solution try going to Start -> Run, "msconfig" [ok]. (Keyboard shortcut Windows+R). Msconfig will have a "startup" column, thats one of the more common ways a virus will start itself up. I would just use the "disable all" nothing in their is needed and if there was something that you notice you were accustomed to that is no longer starting up, it would be easier to find... Don't believe anything that claims to be a "Microsoft" program. There is a company SysInternals, which is now owned by Microsoft... They make a utility called AutoRuns, and it is much more in-depth -- if msconfig doesn't cut it, try that. Really though, unless you disassemble the virus after locating it and having confidence that you know what it did, I'd backup your data and re-format.

Top
#49952 - 12/26/09 08:04 PM Re: hidden files and microsoft websites [Re: ninjaneo]
roguex404 Offline
UGN Newbie

Registered: 12/26/09
Posts: 4
Loc: ANYTOWN,USA
Boot from Linux and try visiting the same Microsoft websites? I have done a lot of de-virus for food money (college kid) but have never seen a virus that prohibits visiting Microsoft websites. I just spent about 6 months doing research on bot nets and virus payloads, one of the sub topics was AV effectiveness, Trend Micro did the best for its price (we only tested the personal usage ones). If you know the processes your computer runs pretty well you could go threw the bitch of manually disabling each one until you hit the one that usually isn't there (I believe mean dormancy on viruses was around 4 months to avoid detection) which probably wont allow you to disable it, download an app and go from there. If you send me a zip of the log files I can probably take a look of them in a few hours (I am stuck on the comp any way, motor cycle accident). Anyway first post, hope I can help.

O personal note, would shy away from multiple AV's, they tend to bog down system resources as you stated and the companies have a tendency to dislike competing software and do not try their hardest to allow for harmonious coding.

Least you don't have Vista

Top
#49961 - 12/28/09 06:33 PM Re: hidden files and microsoft websites [Re: roguex404]
ninjaneo Offline
UGN Security Staff

Registered: 03/06/02
Posts: 256
Loc: CA, USA
As for blocked websites, check the "hosts" file.

By default it is located in: %SystemRoot%\System32\drivers\etc %SystemRoot% is an environment variable, often C:\windows

But it is possible that a virus could change the registry value that tcpip.sys uses to locate the host file... HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\DataBasePath

In there you will see lines such as this:
Code:
127.0.0.1	localhost


The system by default is configured to check this hosts file before bothering to resort to DNS. This has many useful applications, but in your case they've used it to prevent you from updating your system... Which makes me think the virus exploited your unpatched windows machine. Remember to keep up to date. Remove the suspect lines, other than the line I listed this file should be pretty much empty if you haven't applied some "Ad Block"ing software.

Top
#50158 - 01/19/10 04:38 PM Re: hidden files and microsoft websites [Re: ninjaneo]
Artic Warrior Offline
UGN Member

Registered: 11/12/03
Posts: 478
Loc: My room
thanks for the help. fixed both problems.

though the hidden files thing sometimes reoccurs. I do note that multiple AV programs slows the sys down. But then again I've always known and still do it.
They even tell you.
_________________________

Top
#50194 - 01/22/10 10:49 PM Re: hidden files and microsoft websites [Re: Artic Warrior]
ninjaneo Offline
UGN Security Staff

Registered: 03/06/02
Posts: 256
Loc: CA, USA
If the problem is still recurring it sounds like your still infected. I usually end up reinstalling windows, you don't need to necessarily reformat, though if backing up your data isn't a problem I recommend it because it is "cleaner". You can install windows on a drive that has windows installed already, it will just change the path of the windows folder. Then when you login as administrator under the new setup you can go find your old files or try using the file and settings transfer wizard tool available from Microsoft. Anti Virus really works best for prevention. Don't use your computer for "sensitive" things like logging in to websites. They could be watching what you type =p. Edit "C:\boot.ini" to remove your old windows install from the boot list and you wont have to wait 30 seconds or press enter.

Top
#50350 - 02/16/10 06:54 PM Re: hidden files and microsoft websites [Re: ninjaneo]
Artic Warrior Offline
UGN Member

Registered: 11/12/03
Posts: 478
Loc: My room
thanks ninjaneo. I'm definitely reinstalling windows soon. I think she actually has the conflickter worm as well lol. It is so infected. Not only that, they (virus) find their way on all my flash drives and I have a feeling it's also on my seagate portable HDD.

Im going to explode if once im done reinstalling xp, the seagate freeagent infects it again (while i transfer my backup-ed files).
_________________________

Top

Featured Member
Registered: 08/22/14
Posts: 1
Forum Stats
2148 Members
46 Forums
35207 Topics
70377 Posts

Max Online: 1567 @ 04/25/10 05:20 AM
Top Posters
UGN Security 28369
Gremelin 7193
§intå× 3255
SilentRage 1273
Ice 1146
pergesu 1136
Infinite 1041
jonconley 955
Girlie 908
unreal 860
Newest Members
Tim050, Gecko666, defghi795767, Devo60, ali
2148 Registered Users
Who's Online
0 registered (), 434 Guests and 275 Spiders online.
Key: Admin, Global Mod, Mod
Latest News


Donate
  Get Firefox!
Get FireFox!