Go Back   Technibble Forums > Technical Discussions > Security, Viruses and Trojans

  Technibble Sponsor

Reply
 
Thread Tools Display Modes
  #1  
Old 10-20-2010, 07:15 PM
callthatgirl's Avatar
callthatgirl callthatgirl is offline
VIP
 
Join Date: Jan 2010
Location: Minnesota
Posts: 3,339
callthatgirl is a jewel in the roughcallthatgirl is a jewel in the roughcallthatgirl is a jewel in the rough
Default Think Point Virus

wow, badass!

Anyone else getting it? I got 2 today and repaired 'em both remotely.
Reply With Quote
  #2  
Old 10-20-2010, 07:22 PM
trapped's Avatar
trapped trapped is offline
 
Join Date: Sep 2009
Location: Elk Grove, CA
Posts: 350
trapped is an unknown quantity at this point
Send a message via MSN to trapped Send a message via Yahoo to trapped
Default

Haven't seen it yet. The virus of the week for me is Smart Engine.
__________________


Get a Geek. Get it Done.

Computer, Networking, and Home Theater installation, service and repair in the Greater Sacramento, CA Region.

http://www.thecomputergeeks.com
Reply With Quote
  #3  
Old 10-20-2010, 07:51 PM
callthatgirl's Avatar
callthatgirl callthatgirl is offline
VIP
 
Join Date: Jan 2010
Location: Minnesota
Posts: 3,339
callthatgirl is a jewel in the roughcallthatgirl is a jewel in the roughcallthatgirl is a jewel in the rough
Default

I think it's coming from MSN.com
Reply With Quote
  #4  
Old 10-20-2010, 09:34 PM
Lone99star Lone99star is offline
 
Join Date: Jul 2010
Location: Texas
Posts: 288
Lone99star is on a distinguished road
Default

Just got a call on Think Point, customer on the way to me now.
Says it wont boot, stuck on think point screen.

I havent had this one yet, I will time myself.

Lone99star
Reply With Quote
  #5  
Old 10-20-2010, 09:59 PM
MobileTechie's Avatar
MobileTechie MobileTechie is online now
 
Join Date: Oct 2009
Location: UK
Posts: 4,266
MobileTechie has a spectacular aura aboutMobileTechie has a spectacular aura about
Default

So CTG - what are your tactics for virus removal remotely? I guess what mean is how you get control of the PC when the virus is stopping the installation of LMI or Teamviewer or whatever? Are you relying on rkill or safe mode w. networking?

Just I'm finding rkill not to be 100% effective.
Reply With Quote
  #6  
Old 10-20-2010, 10:44 PM
trapped's Avatar
trapped trapped is offline
 
Join Date: Sep 2009
Location: Elk Grove, CA
Posts: 350
trapped is an unknown quantity at this point
Send a message via MSN to trapped Send a message via Yahoo to trapped
Default

Personally I find that the viruses do not block the download and launch of the teamviewer quick support client. That is assuming that they can get on the Internet.
__________________


Get a Geek. Get it Done.

Computer, Networking, and Home Theater installation, service and repair in the Greater Sacramento, CA Region.

http://www.thecomputergeeks.com
Reply With Quote
  #7  
Old 10-20-2010, 10:44 PM
callthatgirl's Avatar
callthatgirl callthatgirl is offline
VIP
 
Join Date: Jan 2010
Location: Minnesota
Posts: 3,339
callthatgirl is a jewel in the roughcallthatgirl is a jewel in the roughcallthatgirl is a jewel in the rough
Default

Mobiletechie, I have a few ways I get in a system (turn off proxies, safe mode with networking or msconfig/disable start up/reboot, task manager), I talk the client through a series of attempts until one gets me the "OMG, the internet works!"...then off I go with my repairs. Some manual/some scan.

This one wouldn't allow any scan tools but SAS. MBAM is getting hit bad lately with the virus, I am going to guess that MBAM without license may be soon not too good. Only because the new viruses are not allowing updates from MBAM, so off to finding alternatives.

I am now an affiliate with SAS, we'll see how that product does with a pro license. I need to test it a bit more.

Edited to add, the Think Point can be released by killing hotfix.exe. Then you can have at it.
Reply With Quote
  #8  
Old 10-20-2010, 10:55 PM
Lone99star Lone99star is offline
 
Join Date: Jul 2010
Location: Texas
Posts: 288
Lone99star is on a distinguished road
Default

I started tm while thinkpoint was doing the startup scan, stopped hotfix.exe.
Removed it manually and I,m cleaning up behind it now.

Lone99star
Reply With Quote
  #9  
Old 10-20-2010, 11:22 PM
n4cer's Avatar
n4cer n4cer is offline
 
Join Date: Jan 2008
Location: Tallassee,Al
Posts: 17
n4cer is an unknown quantity at this point
Default Had no problem removing

I had no problem removing Thinkpoint from 4 machines so far this week with malwarebytes.
Used this: http://www.myantispyware.com/2010/10...ons/#more-5470.
Reply With Quote
  #10  
Old 10-20-2010, 11:48 PM
NeutronTech's Avatar
NeutronTech NeutronTech is offline
 
Join Date: Apr 2010
Location: Grayling, Michigan
Posts: 1,355
NeutronTech will become famous soon enough
Send a message via Yahoo to NeutronTech
Default

Quote:
Originally Posted by callthatgirl View Post
Only because the new viruses are not allowing updates from MBAM.
I'm finding this more and more lately. Which, in a way, is good for us because the quick fix tools that work so well, aren't working. Which means, the DIY guy will be lost and bring their computers in.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT. The time now is 09:59 PM.


Powered by vBulletin®
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Technibble.com is based out of MELBOURNE, AUSTRALIA.