• There seems to be an uptick in Political comments in recent months. Those of us who are long time members of the site know that Political and Religious content has been banned for years. Nothing has changed. Please leave all political and religious comments out of the forums.

    If you recently joined the forums you were not presented with this restriction in the terms of service. This was due to a conversion error when we went from vBulletin to Xenforo. We have updated our terms of service to reflect these corrections.

    Please note any post refering to a politician will be considered political even if it is intended to be humor. Our experience is these topics have a way of dividing the forums and causing deep resentment among members. It is a poison to the community. We appreciate compliance with the rules.

    The Staff of SOH

  • Server side Maintenance is done. We still have an update to the forum software to run but that one will have to wait for a better time.

Big Time Help Needed!

Status
Not open for further replies.
Sorry to hear that Falcon. I empathise with you as the same exact thing happened to me this past fall. I picked up the same "anti-virus" malware when I dumped Norton, and before I could install a new program. After my computer got infected, I could not install a new anti-virus program. I tried everything to no avail. After much frustration, I cleaned the disk and re-installed Windows, and of course had to re-install FSX, which is no small task with all the stuff I've got added. I sincerely hope that you don't have to resort to the same solution that I did, and can find a way to get rid of this malicious malware some other way. If you do, please post the remedy that you used, so that others can take advantage of it... This is unfortunately a very common computer infection. Good luck!
 
Well, the rkill program is useless, the malware won't allow it to do anything. I've spent a fair enough time in the registry to feel comfortable, so. . . .I'm going in.

Oh, and DX-FMJ. . .I can do without you "stating the obvious" right now. Thank you!
 
falcon409 said:
Well, the rkill program is useless, the malware won't allow it to do anything. I've spent a fair enough time in the registry to feel comfortable, so. . . .I'm going in.

Oh, and DX-FMJ. . .I can do without you "stating the obvious" right now. Thank you!
Click to expand...

Take it nice and slow, and double check those registry entries before you click delete.
 
scottmm73 said:
That site and the site I posted, required a download of an app called rkill. I would stay away from it, can't trust them you know.
Click to expand...

If you have a look around the net Rkill seems to be perfectly trusted and effective. Either way would most likely work, it's just up to Falcon what he fancies doing. Personally I'd be happier keeping well away from the registry.

Falcon if you do change the registry make sure you backup EVERYTHING!
 
Nope. . .the regedit is an exe file. . .it stops it from running as well. The thing is, I can download any scanner, repair program I want from the internet, but it won't let anything run. Somehow I have to be able to do this either by locating the offending files and removing them or reformatting and starting all over again.
 
The one thing I could suggest is to try running rKill/Regedit the instant you have it availble in your programs bar.

In fact create a shortcut on the desctop and see if you can start anything JUST after powering on, before the malware has a chance to get itself sorted. Worked for me once, you never know.
 
Well, unless something just suddenly works, I think I'm screwed. Even restoring is not an option, as that is also an application and as such is being blocked.:isadizzy:
 
Install the program and scan in safe mode..i have to do it all the time
 
Nah, there'll be an option.

Restoring wouldn't do anything, it's a bit clever for that.

Go onto www.geekstogo.com and let your problems be known there. The people in the forums (especially the moderators) are professional and will have you sorted by going through your log files etc.
 
DX-FMJ said:
falcon may I suggest some software for you?

ESET Smart Security 4 and ESET NOD32 Antivirus 4
http://www.eset.com/

Malwarebytes anti-malware
http://www.malwarebytes.org/mbam.php

Spybot-S&D + plus tea timer registry protection
http://www.safer-networking.org/en/index.html

TuneUp Utilities - 2010
http://www.tune-up.com/products/tuneup-utilities/

I live and die by them and can vouche for my company running these with great success, some going on 4 years!

:ernae:
Click to expand...

They'll be great when the virus is gone but at the minute he can't run any of them :isadizzy:
 
Ed,
If you're still up for trying solutions, try installing this in safe mode http://www.malwarebytes.org/ this is what I used when I had the same problem. It has to be in safe mode to prevent the bogus anti-virus from running.
 
Roger said:
Ed,
If you're still up for trying solutions, try installing this in safe mode http://www.malwarebytes.org/ this is what I used when I had the same problem. It has to be in safe mode to prevent the bogus anti-virus from running.
Click to expand...
That did it Roger! I'm currently running ad-aware in the background, but running Malwarebytes in safe mode got it. Took about an hour or so and around 700,000 files, but it did appear to remove the offending files.

Man, that's bad news. Knowing there's nothing seriously wrong with the system, but at the same time, unable to be able to get to the dang files to delete them. That sucks, lol.

Thanks to everyone for rushing in as soon as I posted. I appreciate everyone's assistance and suggestions. Looks like we got it though!!:salute::salute:
 
My MO is that no one runs as an admin user on my computers. Not my wife and not even the IT department on my company notebook. I simply locked the IT people out from the company notebook and firewalled the whole thing. This way, I have only myself to blame if I still manage to let a trojan in.
 
I have come across this sort of thing...multiple times. Here is the key...
You are doing your thing on the net. You go to a site and suddenly a window pops up informing you that your computer is totally hosed with viruses.

DON"T CLICK ANYTHING IN THE WINDOW!

Ctrl-Alt-Delete into the task manager and close anything you have open. Click anywhere on that window and it's game over. Twice I ran into this on my rig. The first time I tried to close the window by clicking where you would normally click. When the hard drive lit up I killed the power to the rig. I got lucky and all was well. The second time I used the method described above with success. That was something put out from the IT people where I work.

My wife has managed to get a couple of these on her computer, and I have managed to beat both of them, but it's a pain in the keyster to do. :isadizzy:
 
Yep, thanks Robert. On average I would guess that most people would react similarly. First reaction is to close the window, especially when it is obviously something you don't recognize. The longer you mess with it the deeper it sets itself into your file structure. . .and then, like this one did, It knocks out any attempt to run a program.

Well, I'll be running scans for a few days now to ensure that everything is out. . .even to the extent of doing a search through the registry.:salute:
 
Status
Not open for further replies.
Back
Top