|
Posted by on March 24, 2007, 1:40 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Hello there, Today I was browsing the internet when I cam accross a
video I wanted to watch. It told me that I need to download some kind
of activeX control so I did and now I have A seemingly HUGE virus.
The symptoms are as follows...
I have new Icons on my desktop and they are supposubly (sp?) "secruity
programs" and now my home page is always being redirected to a site to
download new internet security programs and everything.
I have been told that other people I know have had it but they have
just simply wiped their hard drive, I have too much stuff on mine just
to simply wipe it all off..
Please please please will someone help me out?
Alex
|
|
Posted by Bruce Chambers on March 24, 2007, 2:33 pm
If you were Registered and logged in, you could reply and use other advanced thread options
routeclothing@hotmail.co.uk wrote:
> Hello there, Today I was browsing the internet when I cam accross a
> video I wanted to watch. It told me that I need to download some kind
> of activeX control so I did and now I have A seemingly HUGE virus.
> The symptoms are as follows...
>
>
> I have new Icons on my desktop and they are supposubly (sp?) "secruity
> programs" and now my home page is always being redirected to a site to
> download new internet security programs and everything.
>
> I have been told that other people I know have had it but they have
> just simply wiped their hard drive, I have too much stuff on mine just
> to simply wipe it all off..
>
> Please please please will someone help me out?
>
> Alex
>
What specific anti-virus application are you using? What specific
virus has it identified? What are the specific removal instructions
provided by the AV applications' manufacturer?
Odds are, however, that you don't have a virus. Instead, you
deliberately installed adware of some sort. (And, yes, you gave the
maker of the adware permission to install these nuisances; read the EULA
that accompanied the video "viewer" you chose to install.)
To find and/or deal with issues caused by any sort of "adware"
and/or "spyware," such as Gator, Comet Cursors, Xupiter, Bonzai Buddy,
or KaZaA, and their remnants, that you've deliberately (but without
understanding the consequences) installed, two products that are quite
effective (at finding and removing this type of scumware) are Ad-Aware
from www.lavasoft.de and SpyBot Search & Destroy from
www.safer-networking.org/. Both have free versions. It's even possible
to use SpyBot Search & Destroy to "immunize" your system against most
future intrusions.
Additionally, manual removal instructions for the most common
varieties of scumware are available here:
PC Hell Spyware and Adware Removal Help
http://www.pchell.com/support/spyware.shtml
More information and assistance is available at these sites:
Blocking Ads, Parasites, and Hijackers with a Hosts File
http://www.mvps.org/winhelp2002/hosts.htm
The Parasite Fight
http://www.aumha.org/a/parasite.htm
--
Bruce Chambers
Help us help you:
http://dts-l.org/goodpost.htm
http://www.catb.org/~esr/faqs/smart-questions.html
They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety. -Benjamin Franklin
Many people would rather die than think; in fact, most do. -Bertrand Russell
|
|
Posted by Malke on March 24, 2007, 3:20 pm
If you were Registered and logged in, you could reply and use other advanced thread options
> Hello there, Today I was browsing the internet when I cam accross a
> video I wanted to watch. It told me that I need to download some kind
> of activeX control so I did and now I have A seemingly HUGE virus.
> The symptoms are as follows...
>
>
> I have new Icons on my desktop and they are supposubly (sp?) "secruity
> programs" and now my home page is always being redirected to a site to
> download new internet security programs and everything.
>
> I have been told that other people I know have had it but they have
> just simply wiped their hard drive, I have too much stuff on mine just
> to simply wipe it all off..
>
> Please please please will someone help me out?
>
> Alex
>
Do the preparatory steps here:
http://www.elephantboycomputers.com/page2.html#Removing_Malware
Without knowing the name of the "security programs", I can't be sure if
you have a variant of Smitfraud or Winfixer. Here are specific removal
steps for both of them:
http://www.elephantboycomputers.com/page2.html#Winfixer
http://www.elephantboycomputers.com/page2.html#Smitfraud_Trojan
You should also look at this link to see if you recognize what you've got:
Bleeping Computer removal how-to's -
http://www.bleepingcomputer.com/forums/forum55.html
When all else fails, run HijackThis and post your log in one of the
specialty forums listed at the link above (not here, please).
Standard caveat: If the procedures look too complex - and there is no
shame in admitting this isn't your cup of tea - take the machine to a
professional computer repair shop (not your local version of
BigStoreUSA). Please be aware that not all local shops are skilled at
removing malware and even if they are, your computer may be so infested
that Windows will need to be clean-installed. Have all your data backed
up before you take the machine into a shop.
Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User
|
|
Posted by David H. Lipman on March 24, 2007, 4:39 pm
If you were Registered and logged in, you could reply and use other advanced thread options
| Hello there, Today I was browsing the internet when I cam accross a
| video I wanted to watch. It told me that I need to download some kind
| of activeX control so I did and now I have A seemingly HUGE virus.
| The symptoms are as follows...
|
| I have new Icons on my desktop and they are supposubly (sp?) "secruity
| programs" and now my home page is always being redirected to a site to
| download new internet security programs and everything.
|
| I have been told that other people I know have had it but they have
| just simply wiped their hard drive, I have too much stuff on mine just
| to simply wipe it all off..
|
| Please please please will someone help me out?
|
| Alex
Alex:
You fell for that huh. There are many sites that puport to be Video CODECs or
Video ActiveX
objects. However they are really ZLob Troajdn or DNSChanger Trojan installers.
Two part reply..
Perform Part 1 then perform Part 2.
If the first two parts don't work, perform the alternate section.
It is suggested that you execute each tool in Normal Mode then in Safe Mode.
Part 1
-----------
Use noahdfear's SmitFraud, SpyAxe, SpyFalcon, et. al., removal tool --
SmitRem.exe
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1
http://www.bleepingcomputer.com/forums/topic43659.html
Part 2
-----------
Download SmitFraud.exe from the URL --
http://www.ik-cs.com/programs/virtools/SmitFraud.exe
Execute; SmitFraud.exe { Note: You must accept the default of C:\McAfee }
Choose; Unzip
Choose; Close
NOTE: You may have to disable your software FireWall or allow WGET.EXE to go
through your
FireWall to enable WGET.EXE to download the needed McAfee related files.
Execute; c:\mcafee\clean.bat
{ or Double-click on 'Clean Link' in c:\mcafee }
A final report in HTML format called C:\mcafee\Normal_ScanReport.HTML or
C:\mcafee\Safe_ScanReport.HTML will be generated. At the end of the scan, it
will be
displayed in your browser (Opera, FireFox or Internet Explorer). However, if
you are using
WinXP, Win2K or Win2003 your system will be left in a state where you will have
to manually
shutdown/reboot the PC. On Win9x/ME platforms the report will not be shown in
your bowser
but your PC will automatically be shutdown. It is suggested that you move the
report out of
c:\mcafee before performing another scan.
It would be best to scan in both Safe Mode and in Normal Mode and save a copy of
the HTML
report for each session.
ALTERNATE:
S!ri's SmitfraudFix
http://siri.urz.free.fr/Fix/SmitfraudFix_En.php
Please Copy and Paste the contents of the HTML Log files;
C:\mcafee\Normal_ScanReport.HTML & C:\mcafee\Safe_ScanReport.HTML in your reply.
* * * Please report back your results * * *
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm
|
|
Posted by B. Nice on March 25, 2007, 5:44 am
If you were Registered and logged in, you could reply and use other advanced thread options
>Hello there, Today I was browsing the internet when I cam accross a
>video I wanted to watch. It told me that I need to download some kind
>of activeX control so I did and now I have A seemingly HUGE virus.
>The symptoms are as follows...
>
>
>I have new Icons on my desktop and they are supposubly (sp?) "secruity
>programs" and now my home page is always being redirected to a site to
>download new internet security programs and everything.
>
>I have been told that other people I know have had it but they have
>just simply wiped their hard drive,
which is also the only reasonable thing to do in such situation
>I have too much stuff on mine just to simply wipe it all off..
So what are you going to do the day your hard drive dies?
>Please please please will someone help me out?
Backup your data files and re-install windows.
|
| Similar Threads | Posted | | advice on anti-virus, anti-trojan software | May 12, 2008, 7:35 am |
| HELP: Virus is preventing me from installing anti virus software!! | January 11, 2007, 2:17 am |
| free anti virus software | March 13, 2006, 2:01 am |
| Re: Any Free Anti-Virus software? | December 20, 2006, 8:22 am |
| RE: Any Free Anti-Virus software? | December 27, 2006, 3:18 am |
| Anti Virus software for Windows 2003 | August 13, 2007, 9:57 am |
| Anti-Virus Software without Internet Connection | February 26, 2008, 11:03 am |
| Free Anti-Virus & Other Safety Software | August 13, 2008, 9:20 am |
| Installing Anti-Virus Software in Safe Mode | May 11, 2007, 4:04 pm |
| New Anti Virus Program to run With Free Downloadable Software from Shareware | November 30, 2005, 9:56 pm |
|
XML site map