What the fuck? I don't look at porn and I don't have any horseshit file sharing software on my laptop- but I got this virus and apparently its pretty legit. Does anyone know how to remove it? I've tried downloading anti-malware software, but the virus won't even let me: visit those websites, install the files, or run the files. My laptop has basically been rendered useless for the time being.
it was either from a torrent OR AN INFECTED SKIING WEBSITE. i shut off the connection, deleted the cookie,cleaned the registry, and ran avg,spyware terminator,and a sqaured,but the popup is still there.
i ran a google search on removing the damn thing,but half of those are fake. use mcafee siteadvisor and finjan to sort thru those.
Hayduke Aug 7,1996 GS-Aug 26 2010
HunterS March 17 09-Oct 24 14
See if you can access the websites and download files in safemode. I've had really good luck using Avast, Malware Bytes, and Spybot. All can be found at download.com
(again,im no expert)
go to another computer,search the removal, come back to yours. it involves deleting a program file,and doing a few things with the registry.etc. look in your program files.....it started with a?????? you will see it
if there is a legit software to remove it (be careful) download on other computer,copy to cd,install directly on yours with internet off.
Hayduke Aug 7,1996 GS-Aug 26 2010
HunterS March 17 09-Oct 24 14
if it is the virus that keeps popping up saying you have a problem and tries to "scan" your computer so it can charge you, then download malware bytes and that will remove it. you may have to go back in and change a filename after you run it.
i did this the other day and it worked. good luck.
thanks did the job in 6 minutes .found rogue .exe in program files and a hijacker in registry.
2 hours of scans with avg,spyware terminator,and a squared found nothing.
Hayduke Aug 7,1996 GS-Aug 26 2010
HunterS March 17 09-Oct 24 14
Drive by web surfing on suspect and infected web sites or clicking on a almost real looking Windows error message can get you infected with a number of variants of this type of malware. Malwarebytes if you can install it and get the system scanned can go a long way toward returning the system back to normal. Also Superantispyware is another tool. Boot into safe mode and see if you can get either of these tools installed.
Also torrents are no guarantee that the file is in fact what it says it is or is safe. You need to be scanning these immediately or just visit legit places to obtain the stuff you are trying to download.
Once you are back to normal, regular scans with the free versions or pay for the advanced versions that are more proactive and protect better against further infections of this nature. A would also wonder what you are using for Antivirus/antispyware software on the systems that got infected. If it did not stop this and you are infact up to date with some AV software- you should probably think about getting that version off the system and trying something else immediately.
yes,the avg and spyware terminator were both up to date. and they didnt find it or prevent it. and i do scan all torrents both before and after unzipping.
i have tried avast in the past but it took forever to scan everything,like 8 hours.
i have also tried anti-vir but got annoyed with their pop-ups asking for $$$$
i was surprised the spyware terminator didnt stop the hijack as it usually asks for permission for any changes
there is a good chance this came from a skiing blog that didnt know he was infected
damn, i even have noscript to stop drive-bys
Last edited by haydukelives; 01-08-2009 at 02:49 PM.
Reason: add more info
Hayduke Aug 7,1996 GS-Aug 26 2010
HunterS March 17 09-Oct 24 14
download malware bites. I had this virus a bit ago and this software removed it within minutes.
here is the link: http://download.bleepingcomputer.com...mbam-setup.exe
if it won't let you access the site to download it - do it on another computer then transfer it via a usb flash drive.
I tried both.... my laptop won't run the program (after I brought it in from a USB drive copied from my desktop), and my IE (and Firefox) won't install the program. I guess i'll keep trying.
I tried both.... my laptop won't run the program (after I brought it in from a USB drive copied from my desktop), and my IE (and Firefox) won't install the program. I guess i'll keep trying.
Had similar problem installing Malwarebytes (or anything for that matter). Once infected you can't get to any of the d/l sites for it because it's constantly hijacking the browser. I think what I ended up doing over at my buddys place was starting up in safe-mode with networking. Fortunately he had another clean computer, so I ran it from a shared folder on that one. Once installed it did it's job.
Update- I've got the install program on my laptop (I changed the name of the file on the USB drive and my laptop allowed the download), and then I got the actual program to install... but now I just can't get the Malwarebytes program to run. Almost there...
I tried both.... my laptop won't run the program (after I brought it in from a USB drive copied from my desktop), and my IE (and Firefox) won't install the program. I guess i'll keep trying.
Was able to get past a similar problem once when helping someone get control back of their computer by renaming the installer file name. The two times you could do so are at the download (when picking the save location), and right before you run the download executable.
^^^ When I run the install program, it won't let me rename the actual MalwareBytes application- just the folder name and the name of the shortcut icon.
I tried both.... my laptop won't run the program (after I brought it in from a USB drive copied from my desktop), and my IE (and Firefox) won't install the program. I guess i'll keep trying.
You can sometimes try renaming the installation files (if it is looking to block the common setup files from these tools.) Or also you can rename it from .exe to .com and see if it is just blocking all executable files from being installed. If neither of these work, then usually have to either boot from a CD image that has scanning tools on it to use, or pull the drive and scan it on another computer system with the tools.
yes,the avg and spyware terminator were both up to date. and they didnt find it or prevent it. and i do scan all torrents both before and after unzipping.
i have tried avast in the past but it took forever to scan everything,like 8 hours.
i have also tried anti-vir but got annoyed with their pop-ups asking for $$$$
i was surprised the spyware terminator didnt stop the hijack as it usually asks for permission for any changes
there is a good chance this came from a skiing blog that didnt know he was infected
damn, i even have noscript to stop drive-bys
Without knowing the blog it is hard to say- especially if you are running noscripts and Firefox. That usually helps. There are some of these that are using .dll files, and a new one that actually is installing some rouge device driver.
Maybe also see if the Firefox is up to date with their latest versions (they have Firefox 2 and their latest version 3, which I have not run much due to some plugins and add-ons that do not like the latest ver. 3)
"Spyware Guard"? That's not a bug, it's a feature.
That's comedy gold, right there.
.
.
.
.
smmokan - here is some info on your problem.
Sunbelt will clean you up and keep you safe, btw. Bit of a learning curve, but worth it, imo. VIPRE is excellent.
"Active management in bear markets tends to outperform. Unfortunately, investors are not as elated with relative returns when they are negative. But it does support the argument that active management adds value." -- independent fund analyst Peter Loach
What the fuck?
I don't look at porn and I don't have any horseshit file sharing software on my laptop- but I got this virus and apparently its pretty legit. Does anyone know how to remove it? I've tried downloading anti-malware software, but the virus won't even let me: visit those websites, install the files, or run the files. My laptop has basically been rendered useless for the time being.
Any computer guys out there have any suggestions?
Just saw this on the news (seriously):
"People visiting internet sites that claim to have photos of singer Beyonce in the nude come away with their computer severely compromised..."
Last edited by Cliff Huckable; 01-08-2009 at 04:48 PM.
"Active management in bear markets tends to outperform. Unfortunately, investors are not as elated with relative returns when they are negative. But it does support the argument that active management adds value." -- independent fund analyst Peter Loach
Heh.... I was just able to run the program. I kept renaming the .exe file and trying to start it up- and after the 4th or 5th time, it worked. Hopefully everything is OK for now.
Bookmarks