| Author | Message | ||
     Benm2 |
Over the past two weeks, my computer has had 4-5 attacks from fake virus-scan software. I use Norton 360, which (thus far) has shrugged them off. My wife's system (McAfee) got infected yesterday, and it took me the better part of an afternoon to get rid of it. It locked hers up so bad that I had to (1) reboot in safe mode and (2) use a trick to get it to load hijackthis. I THINK I've got it cleaned. Note - I ran a FULL system scan with McAfee and had the latest definitions and the virus went right through. I'm not positive its gone, but I think so. The generic virus is sysguard.exe, but since that's usually found quickly they've been adding a few consonants in front of it. I got rid of jrcfsysguard.exe from my wife's system. I was attacked again this morning, and again I seem to have made it through unscathed. BUT - I was checking my township's website to check about garbage pickup (got all screwed up from the holidays) and my Norton showed THEIR website as being unsafe, and listed SIXTEEN instances of malware on their server. Heads up folks! | ||
| Ft_bstrd |
I think it's the one I got a few months back. It's the Windows XP Anti-virus virus. It's a fishing scam where they work to convince you that your computer is infected and then direct you to a Windows (looking) website to buy their anti-virus. They are looking for your cc info. | ||
| Benm2 |
I think its the same one, but they seem to have "improved" it a little bit - it AUTOMATICALLY SELF-INSTALLED on my wife's system. It also prevented task manager from running - I had to UNPLUG her computer before I could get it to restart in safe mode. | ||
| Zane |
I got nailed by the same thing about 2 weeks ago. I got busy with the holidays so the computer is still down. I'd like to find the author and string him up by his X(*&%#)!! for that little bit of software! | ||
| Glen |
ive had that program get in a few times on my XP machine, i use F-secure which usually detects it, but cant get rid of it. i run a program called privacy guard which rewrites the disk space and then run my f-secure scanner. its gone after i run privacy guard, along with all the other junk that collects from various websites. | ||
| Scottykrein |
The best I've found for fixing these is Combofix. Here's a good write up of how to use it. http://www.bleepingcomputer.com/combofix/how-to-us e-combofix | ||
| 99buellx1 |
Malware Bytes is a good one too. | ||
| Froggy |
Combofix is good, along with Malwarebytes. After you get cleaned up, change the security settings of your user accounts. DO NOT use an administrator level account for your normal 99% of your use. 86% of all security vulnerabilities are instantly eliminated by switching to a limited rights account. Macs and Linux setups do not give you admin access by default this reason. | ||
| Kustomklassix |
I get this stupid crap all the time at work. I really just wish the people who spend time and effort coding stuff like this would put their talent to better uses.I have only run into a few pc's that this system doesnt clean, and those are the REALLY bad ones. For most spyware infections, these programs will take care of them. Download and install these three in regular windows (they won't install in safe mode) MalwareBytes http://majorgeeks.com/download.php?det=5756 Spybot http://majorgeeks.com/SpyBot-Search_&_Destroy_Tool s_d2471.html AdAware (you only need this if the other two can't do it...most of the time you don't) http://majorgeeks.com/Ad-Aware__d5947.html After you install and update those (MalwareBytes will prompt you at the end of the install, say ok. Spybot will pop up a box when you first open the program) restart the computer in Safe Mode and make sure you select the option that has networking. In safe mode, run a full system scan with Malware and Spybot, then open your browser window and go here http://www.bitdefender.com/scanner/online/free.htm l and click "Start Scanner". It will guide you through the prompts and you should be ready to go. Those three programs do an excellent job at removing spyware (they make my job easier LoL) and they should take care of most/all of your problems as long as they aren't too bad. For anyone still reading this, I now need my $95 service fee for the time I've taken off slacking at work to help my fellow BadWebbers...haha, just kidding, I hope my info helps and if anyone has questions, I'll prolly be able to slack some more later to answer them  (Message edited by kustomklassix on January 04, 2010) (Message edited by kustomklassix on January 04, 2010) | ||
| Kustomklassix |
Haha, nice. I was in the middle of typing when X1 and Froggy posted. | ||
| Whatever |
I had one called Cyber Security a while back... if you click on a link it automatically loads and starts its fake scanning... it looks like it is a Windows program with its icon... then it comes up with 50 to 100 fake spyware and virus "detections" and automatically sends yo to a link to buy thier software... Man it is bear to remove too as it will not allow removal from the regular Windows delete program menu... there are ways to get rid of it but I was not smart enough to get them figured out... Finally got rid of it by doing a system restore to a week before... and this crap started up again a few weeks later, if you quickly turn off your machine when it starts its fake scan you can avoid it infecting your computer... Pissed me off greatly though... | ||
| Reepicheep |
If you want a completely non invasive extra layer of defense, go set up your home router / access point to use this system: http://www.opendns.com/ Very easy to set up, and it will probably (if anything) improve the performance of everything behind the firewall. Probably make it more reliable as well... Won't stop everything, but will stop many things. It's also good for "family filtering" if you want to do that as well... it'll even protect the things like WII consoles and Iphones (that go through the wireless access point). It'll work on desktops without an access point as well... though you should avoid that when possible. |
