Is it safe to use my computer again, after it was compromised?

It happens. A computer store gave me a free ISP program and the nightmare began. My computer kept resetting the computer registry. I called Microsoft and they helped a little. I spent two years trying to figure it out. A tech told me sometimes you have to pull everything apart and put it back together. CMOS was the reason my computer kept resetting itself and then my programs would be uninstalled. A computer store even helped me along the way but they only took my money and snooped to boot.

You have to ground yourself to the case.
You have to pull out the coin cell battery.
If your battery doesn't have enough of a charge, it won't start up.
It isn't fun to do. My mouse wasn't working right for a few minutes after I did that. You have to figure out how to get it working again.

I've had clients who were so badly compromised, that they had a re-flashed malicious bios, PCI card, and firmware on the hard drive! Fortunately they didn't really have anything worth stealing, so I re-flashed all the firmware, and ran a diagnostic repair on the hard drive using the OEM tools. This after replacing the firmware with the newest version of course. Low level formatting no longer works(in the traditional sense) on modern hard drives, but the diagnostic un-hides any sectors marked as damaged where malware re-installation packages can be hiding. Then I do something like the gutmann wipe, but for modern hard drives, i.e. Darik's Boot and Nuke.

If you do a thorough job scanning the hard drive with Malewarebytes Anti-malware Anti-Rootkit in normal mode, you can usually breath a sigh of relief - but if you have anything to lose, that isn't good enough. Always assume you are compromised and use kernel level solutions like a good HIPs - Comodo Defense +, Trusteer's Rapport, and Avast - where the kernel level characteristics of these solutions resist tampering by any left over malware. Also a good password manager can be golden, where encryption is used; this should also be rated as a good kernel level tool. Of course these solutions have to be already on the computer before the compromise, or you cannot trust the installation process will be successful!


After a wipe and reinstall, I still do a PE scan of the hard drive using DVD rescue disks by several solutions, like Kaspersky's Rescue 10 and Avast, and then just for good measure an MBAM safe mode scan with MBAR as previously mentioned.

Even if you don't have anything to lose, it can still pay to do that same scan without a wipe an reinstall. invariably I've found more rootkits, backdoors, or other APTs(Advanced Persistent Threats). It is a good idea to wait 24 hours before doing this, and keep the unit offline, before and during scanning, so any zero day threats have a chance of being found. Also it prevents the malware from calling their minions to change the characteristics of the malware in preventing detection.
The really good question is how much can you lose, and is it really worth the time, effort, and money to go deep in rooting out infection. Most of the time, a cursory cleaning is good enough for folks that have nothing to lose, and don't bank, shop, or otherwise expose personal information online.

Don't give up on Skype, just make sure you have both a good hardware AND software firewall, and don't allow Skype to start when the computer does - it is not a bad idea to shut Skype down after using it!

Tell you w2ha. If you have the time and know how. I would Re-install Windows. It is not that big of a thing.
If this is your only PC I would backup "ALL important data" Scan this Data to make sure your problem doesn't exist in the data you are backing up.
Then Reformat, it is not that big of a thing if you have all your reinstall disk's and or "pass keys, Serial keys etc". It is just time consuming to get your system back to what it use to be.
Be careful and patient!

MBAM has to be the PRO version if you want real time protection. You better hurry to get the life time license though, because they announced they are going to go to the yearly model soon! All previous life time licenses will be grandfathered in, and good forever, as long as you have the retail license - OEM will only last as long as the machine. There are also many free solutions out there that use various science in real time protection. Just look at the CNET user reviews to find out what is the latest greatest tech.

Why clean the virus and then format the disk and reinstall windows?

Boot from a Live CD and run several different malware and antivirus programs to clean it.
Then use something like Auslogics Browser care http://www.auslogics.com/en/ to get rid of all toolbars and other unnecessary browser addins like toolbars. Then reboot and do a full scan with updated virus definitions and malwarebtyes

In my 40+ years in computers in most cases it is the free AV that came with a new PC that expired.

Jim

What a blowhard. Chuck must be in the dreams of those with anxiety panic attacks. If you had to do all of the above every time you had a problem you would have no time to enjoy the rich benefits of the www. My advice, use Windows Defender and MalwareBytes. Run both of 'em, full scan, then sit back and relax and have fun.

You mention Windows Defender. I use Zone Alarm pro as my firewall. How do you compare the two as far as which is most effective as a block to my computer?

Windows Defender isn't a firewall. So you can't compare it with Zonealarm Pro (the firewall).
As antivirus Windows Defender ranks low.

Kees

The message about viruses states it's important to create and keep "clean backups". I don't know how you can be sure the backups are any cleaner than a C/drive that has been scanned with multiple scanners. To male a backup whether to DVD or external hard drive or even to the cloud, the backup software is just going to copy what was on the dirty C/drive when it backs it up. Even without backup software, you are simply selecting files and folders you want to preserve without knowing when one might have been infected. Of course you can run multiple scans on the backups and the C/drive but they will surely miss the same infections on the backup media as on the C/drive. I recently had a virus and it was found by a Norton manual scan, not the auto protect that is supposed to prevent the infection. It was found on the C/drive and on both external hard drives, the one using backup software and also the one I use for manual backups because you cannot count on any brand backup software to backup everything it is supposed to all the time. I know this to be a fact from experience. Even my online backup had missed backing up Outlook, which it was supposed to be backing up. I needed an Outlook folder that got deleted and fortunately had the manual backup I do for critical files and folders. But when a virus was found on the C/drive recently, the same virus existed on the two external drives and I have to assume the scans find everything which we've been told they don't. In addition, the online backup cannot now just be restored and there is no way to scan an online backup that I know of. You have to download the entire backup to a folder on your desktop and do as many scans as you feel necessary before anything from that online backup is safe to restore. The only other option I know of is to delete the entire backup where ever it may be located if the files can be let go. I would really like to know how the author of the answer above can make what he called a "clean backup" without also depending on various scans.

The first, and most important, is to back up your system immediately after it is installed (or after you buy the computer). This is an important backup to have because you know that it's clean.

Next, make a periodic clean backup when you know that the system is clean, such as after doing extensive scans and other utilities. I make one of these at least once a year and keep it around.

Last, do your manual scans and other utilities before doing any backup. I hate to tell you this, but a system backup on a drive that is always connected to the computer might be convenient, but it is not actually a backup. You can consider such a "backup" to be for data files, but not for your system. The same goes for online backups. Only backups that have been done manually are secure, and they must be kept off of the computer.

I also use weekly full (never incremental) backups using Acronis, which I keep on my computer. I have confidence in these because they are single files and they are static. I have never had one get infected. If one did get infected, though, I could easily restore using my annual backup and simply use my records (Belarc Advisor reports every week) to add in what is missing.

The point is that clean backups take time and effort. It is not an excessive amount, but it is important. Also, backups that can be accessed by your computer at any time can potentially be infected when your computer is.

are definitely the 1st step in good practices. I'll let others look at the rest of your statement.

Mateek Thank you for helping. I wonder if you can tell me how to secure your emails and posts?

I think you should just do an internet search for "password manager freeware download" There are paid versions, but there are a whole bunch of really good free programs.

Many free download fixit tools are malware themselves. Stick with reputable software only, and only from their own websites not other download sites.

I have the older version (paid for one time), and the subscription version. Both work great and both are still available. I cannot vouch for other password managers, as I have not used them.

My favorite before I moved to Windows 7 was AnyPassword here at Cnet, but the free version never updated past XP. I loved the simplicity but they only offer a paid version for Vista/7/8 now. At that point I did find and use Roboform, but didn't like it nearly as much. I stopped using Roboform about four months later. A glitch with AnyPassword was that after importing to a second or new computer I had to re-order all the entries I'd made into my preference for folders, and that was laborious. I don't know if the updated paid version has improved that or not. I'm back on an open source freeware password manager.

I assume you may mean SSL secure socket layer? If you see the padlock in the address bar of your browser as you use your email, then it at least is unlikely anyone can read you activity online. As far as "posts" go; not many forums use this tech for that. If you don't want keyloggers to watch your activity, you can install Rapport by Trusteer and tell it to protect the site in question. If you are not in an SSL session I couldn't guarantee that particularly. However Keyscrambler by QFX can obfuscate what keys you are pressing, so at least anything spying on you from your side of the discussion will be illegible. QFX cannot block screen capture or video surveillance like Rapport can in an SSL session, however.

Avast free is just as good at catching viruses as Avast paid is. Free antivirus programs do the job nicely. There is not a thing wrong with them. What they are missing is nice features that are optional.

Free antivirus programs are there because it is in everyone's best interests to keep computers from becoming infected. It would defeat that purpose to make the program so that it doesn't do the job properly. Avast free scans in real time, keeps itself updated, and does on-demand scans. It does all that can be done to keep a computer virus-free.

However, Avast only protects against viruses and similar types of malware. It does not protect against adware or spyware. For that, another program is needed. Those are also available for free.

I would have to disagree that the free A/V downloads are as effective as many and most of the higher end subscription packages. It is not just the software it is also how one uses the system(s). Some of the free tools available on the net, such as Malwarebytes, Superantispyware, Hijackthis and some others are reasonably effective when used properly but there is no such thing as a "PANACEA".

The point is that you do not have to buy the software. As far as using them properly, well that issue does not go away when you buy software. I am sorry you disagree, but you have no evidence to back up your opinion, and mine is well documented by the many people who use free security software exclusively and never have any more problems than they did with paid programs. I am one such person. Using the software is not difficult.

If you want the convenience (NOT security) of an all-in-one application that just does it all for you, then waste your money on one. If you just want your computer secure, then that is easily done without paying-- and it can actually be more effective, since you can mix and match different types of software according to what each does best. There is no such thing as a single all-in-one application that does it all well. It will invariably lack in at least one area.

Used Avast free version and kept getting infected by "ransom-ware". Went to paid version and have never had a problem since. The paid version puts your internet surfing "in the cloud", so that nothing touches your computer until it has gone through the Avast screening. Think of it as a milli-second delay, like they use on the Academy Awards broadcast to make sure naughty words don't shock the audience.

I use all free security software and I have never been infected with ransom-ware. If I was, it wouldn't do them much good. My latest full system backup is never more than a week old.

I don't think I got ransom-ware, but I got some malware the first time I went to download an update for free Avast. I immediately got rid of it and went with different antivirus software. It's gotten to be a dangerous world we're living in unfortunately.

I got plowed by some game on Facebook when FB was young and I was using Norton supplied by Comcast and that Constant Guard back in 2005 or 06 running Vista. I used my restore media and got rid of Comcast's Norton and Constant Guard and have used free Avast ever since. Got rid of Facebook too.

Now I have to say that in conjunction I also stopped using Internet Explorer and use Forefox and WOT(Web of Trust) . I also don't download much. I normally use Linux now anyway and get most programs I need from the repositories

Digger