re: Temporarily Disable Real Time Monitoring Programs

By gillianbrown
Dec 26, 2008
Post New Reply
  1. Hi Kimsland, just a quick couple of points.

    In the UPDATED 8-step Viruses/Spyware/Malware Preliminary Removal Instructions I believe it's important to tell users to rename HijackThis.exe to Crusty.exe or some other such name. This is because some malware can actually hide from the HijackThis.exe filename.

    Also, you may not be aware, but the CastleCops website is no more and therefore the link for instructions to disable real time monitoring programmes no longer works.

    Feel free to add these instructions if you wish.

    I hope this proves useful. ;)

    Sorry for posting this here, but I couldn't send it via a pm due to length restrictions. I also couldn't post in the main thread as it is closed.
  2. kimsland

    kimsland Ex-TechSpotter Posts: 14,525

    Re: UPDATED 8-step Viruses/Spyware/Malware Preliminary Removal Instructions
    Thanks gillianbrown
    There's a cached page here:
    But it's not ideal ie internal links broken
    Actually I'll move these posts to the meeting spot to discuss it further ;)

    I'm going to post link to the Norton Removal Tool (seeming I quote it nearly everyday!)

    May as well provide the AVG Removal Tool, whilst I'm at it: (seeming that generally corrupts under virus infection too)
  3. Bobbye

    Bobbye Helper on the Fringe Posts: 16,340   +36

    Thanks for posting the full programs disable instructions. As you may have seen, I mentioned the Castlecops closing on a thread and printed out the instructions for Teatimer, which was all we were dealing with at the time.

    Any news on the Castlecops closing? Is it a permanent thing? I even set up a tab for that site on Firefox to have it handy when checking logs. Can't imagine what we'll do without that fine site to help out.
  4. gillianbrown

    gillianbrown Banned Topic Starter Posts: 141

    As far as I'm aware, the closing of CastleCops is permanent, though I wouldn't be surprised if it resurfaced at some point in the future.
  5. Bobbye

    Bobbye Helper on the Fringe Posts: 16,340   +36

    CastleCops was a great asset. I don't know of any other site that had the search abilities found there. BleepingComputer has some features, but not all.

    Maybe someone will pick it up again. Robert Graham wrote "Firewall Forensics- What am I seeing" that is THE information for firewalls- much like the Black Viper site is for Services. When Graham left the site, it was frequently quoted and the information was available from other sites with credits to Mr. Graham.

    Same for BV. When he left the site for a while, it was frequently referred to and the information was available, I hope this works for CastleCops. But the thing is that the nature of the information calls for frequent updating, so someone would have to support the site for updates.
  6. gillianbrown

    gillianbrown Banned Topic Starter Posts: 141

    Apparently, the CastleCops database was copied over to SystemLookup sometime ago, so the resources are still there.
  7. Bobbye

    Bobbye Helper on the Fringe Posts: 16,340   +36

    Thanks! I have now replaced the CastleCops tab with SystemLookup.
  8. Blind Dragon

    Blind Dragon TS Evangelist Posts: 3,908

    Why doesn't somebody just write our own comprehensive guide to disabling real time monitoring - we could update it constantly with the latest instructions.

    I have on my other computer, saved canns for 15 - 20 different programs in detail. How to disable, uninstall, update, ect.

    If I have time I will contribute to the guide.
  9. kimsland

    kimsland Ex-TechSpotter Posts: 14,525

    As Howard I mean gillianbrown has now been banned (same user - how strange!)
    I'll try to organize a "comprehensive guide" but I'd prefer you do it Blind Dragon, I really think it's your area, possibly Bobbye would be best suited to creating a guide too.
    Really I'm not the best for this.
    I'm hoping one of you will reply saying you will create one...
  10. Blind Dragon

    Blind Dragon TS Evangelist Posts: 3,908

    that's unfortunate - I knew it was him from his posting style but wasn't going to say anything. Guess it's back to watching the newbies give bad advice.
  11. kimsland

    kimsland Ex-TechSpotter Posts: 14,525

    Yes he was pretty verbally abusive, without cause
    Anyway, I PMd Julio (who agreed to the ban), and in the process of banning, I went... hang on!... Ooohh it's you.
    I wish I had known this, even before banning him, but oh well. Hey he was quick too, no wonder. It all seems clear now.

Similar Topics

Create an account or login to comment

You need to be a member in order to leave a comment
TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...

Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.