Announcement

Collapse
No announcement yet.

Spyware/Virus assistance please

Collapse
This topic is closed.
X
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    Spyware/Virus assistance please

    Ok.
    I somehow have spyware/virus. I have a small idea of where it came from, and have blacklisted that site in my mental bookmark list.

    I have tried:
    F-Secure (Company anti-virus) - Simply will NOT run a scan
    Ad-Aware - Scans, removes some stuff, reboot, same shit
    TrendMicro Housecall - Doesn't seem to find anything
    Hijack this - refuses to run
    Spybot - refuses to run

    I've rebooted numerous times, and keep getting the following speech bubble:
    (Error2.jpg is the bubble). If I miss the red X to close it, I get a DOS window with the next error (Error.jpg).

    I'm running a Compaq nx6110 Laptop with MS XP Pro, 2002, SP 2.

    Standard apps include IE Explorer, Mozilla, MS Office, MSN Messenger, Pandion (In house chat app), Adobe, F-Secure, Intervideo, Sony Ericsson PC Studio, Record NOW! CD & DVD Recording, Sonic.

    I am getting a new work laptop in a couple weeks, but this is getting highly annoying, and even though I've been bugging the IT guy to fix it, he's never gotten around to it, and I leave tonight.

    No-one's reported getting weird emails from me with removed attachments, and my PC's performance (shoddy as it is) doesn't seem to be affected, but the bloody bubble is getting on my nerves, and I'm kind of wondering if it's not some sort of time bomb.
    Attached Files
    The report button - not just for decoration
    Tags: None
  • #2
    You got a pretty nasty one. It's a fake pop-up scam virus. It's trying to get you to buy a fake anti-virus that does nothing.

    It's preventing many things from working. have you tried renaming hijackthis.exe to a weird name. like yousuck.bat (bat instead of exe). And see if that will let it run. Once you get it to run, you should see it pretty quickly (hopefully). Tell hijack this to fix it and then try to get the virus scans to run.
    Last edited by LostMyMind; 06-21-2008, 06:23 PM. Reason: fix misspelling
    I've lost my mind ages ago. If you find it, please hide it.

    Comment

    • #3
      Yuck. You've got a nasty little bugger. It's name is WinReanimator. Here's a page that details how to remove it:

      http://removal-tool.com/winreanimator/

      Note that none of the normal tools seem capable of doing so (and I just spent about 15 minutes looking for removal instructions). I don't know the programs they recommend, so would do it manually.

      Of course, due to the detail involved, I would recommend getting your local IT guy to carry out the steps they list. This one looks like a real bitch to get rid of. Good luck.

      Comment

      • #4
        Major Suck.

        A little late, but I use AVG and that looks very much like the intrusion it stopped for me last week. Probably not the same thing but my recollection of the info behind the virus was very similar.

        Good luck

        Gawd, wurnt I helpful?
        Eben56
        If ultimately you let the people that fuck you over decide your attitude then they won.

        Comment

        • #5
          Anyone catch the PERVENT data loss

          Comment

          • #6
            That is a nasty bugger.

            http://www.broadbandreports.com
            This site is a very good resouce on cleaning up and securing your pc, with some top flight pros there.

            Comment

            • #7
              Probably so they wouldn't get hit with false advertising. You know, those weasels
              I've lost my mind ages ago. If you find it, please hide it.

              Comment

              • #8
                Have you tried running any of these in Safe Mode? That worked for me when I had something that was blocking the utilities I'd normally run.
                Sometimes life is altered.
                Break from the ropes your hands are tied.
                Uneasy with confrontation.
                Won't turn out right. Can't turn out right

                Comment

                • #9
                  The best thing to do in a case like this is to run these specialized tools:

                  Smitfraudfix: http://siri.geekstogo.com/SmitfraudFix.php

                  SDfix: http://downloads.andymanchesta.com/R...Fix_ReadMe.htm

                  Antipuper: http://www.precisesecurity.com/adwar...-antipuper.htm

                  Vundofix: http://vundofix.atribune.org/

                  Run them all in safe mode and see how your system performs then.

                  Comment

                  • #10
                    I have a lot of luck with the mentioned SmitfraudFix, then running Malwarebytes.org Anti-Malware (latest version). The two in combination usually clean those bastids out fairly well.
                    The Rich keep getting richer because they keep doing what it was that made them rich. Ditto the Poor.
                    "Hy kan tell dey is schmot qvestions, dey is makink my head hurt."
                    Hoc spatio locantur.

                    Comment

                    Previous template Next
                    Working...
                    X