Announcement

Collapse
No announcement yet.

I really loathe those programs....

Collapse
This topic is closed.
X
X
Collapse
 
  • Page of 1
  • Filter
  • Time
  • Show
Clear All
new posts
Previous template Next
  • #1

    I really loathe those programs....

    Just venting, since I have the situation under control (for now).

    Somehow my computer contracted "Internet Security 2010" within the past couple of days. I hopped on the computer this morning and began checking e-mail and stuff. Without warning, my media player crashed, and my desktop wallpaper was replaced with a warning about my system being infected. Before I could even react to this, the rogue internet security program popped up and started "scanning," quickly returning with a list of supposed infections on my system.

    One problem. I never installed IS2010 myself. Strike one.

    Despite closing various windows to the program, they kept popping up. Strike two.

    It keeps killing task manager and won't let me try to fix my wallpaper. Strike three.

    I really wish I knew how those stupid rogue security programs manage to sneak past my internet security, and really wish something could be done about the people who program these things to scare people into paying for useless software. It seems no matter what I do to be safe, something still gets on my system and tries to take over, and I'm as safe as I can possibly be without swearing off the internet forever.

    At least this one seems easier to kill. I just have to wait for Malwarebytes to finish running....

    Edit: Aaaaand...I just found out that it's blocked some websites as "dangerous." Like Livejournal and Wikipedia. This is not going to be a fun day.
    Last edited by Kogarashi; 02-08-2010, 05:19 PM. Reason: small update.
    "Enough expository banter. It's time we fight like men. And ladies. And ladies who dress like men. For Gilgamesh...IT'S MORPHING TIME!"
    - Gilgamesh, Final Fantasy V
    Tags: None
  • #2
    I got slapped with this last night about 12:30 AM. A trojan/backdoor hiding in the Windows folder under the name winlogon32.exe let it in. Was a pain to get rid of, but I think it's cleared out. Would love to hear from some of the more tech-savvy locals if there's a way to be sure it's gone.

    It blocks Facebook, too, by the way. They'll come back after a reset if Malwarebytes gets it out.

    The really painful part was finding out my backup hard drive is dead. I'd read that it can sometimes disable logins and thus lock you out of the computer entirely, so I wanted to mirror my document folders before restarting, but when I plugged the backup in and start it up I just got clicks. So just saved what I could with the open space left on my video drive.

    Obviously it didn't come to that, but it did remind me that I really need to do a proper backup...
    » Horse Words «·» Roleplaying Stuff «

    Comment

    • #3
      Good grief, yes.

      And it's been cleared out now, with access to those aforementioned sites returned, thank goodness.

      I really wish I could find the people who program these things, so I could throw the book at them. Literally. Several times.
      "Enough expository banter. It's time we fight like men. And ladies. And ladies who dress like men. For Gilgamesh...IT'S MORPHING TIME!"
      - Gilgamesh, Final Fantasy V

      Comment

      • #4
        Yeah, I had that one. Pissed me off to no end simply because it is so frustrating. I have Vista and if I hit control alt delete the option for task manager was just... gone.

        I fixed it, and now I hate that thing with a passion.
        "Oh, the strawberries don't taste as they used to and the thighs of women have lost their clutch!"

        Comment

        • #5
          Yeah, with mine, when I hit ctrl-alt-del to pull up Task Manager (Win XP), an error would pop up instead telling me that the program was infected and that I should activate my antivirus to fix the problem. "My antivirus" being the insidious rogue program, of course.

          Newsflash, program. I didn't install you. I know I didn't install you. No amount of scare tactics are going to convince me that I installed you, and I will find a way to eradicate you. With a flamethrower, if necessary.
          "Enough expository banter. It's time we fight like men. And ladies. And ladies who dress like men. For Gilgamesh...IT'S MORPHING TIME!"
          - Gilgamesh, Final Fantasy V

          Comment

          • #6
            The only thing is that it may NOT have completely gotten the program out of your system.

            http://www.bleepingcomputer.com will get you free help in making sure your computer's no longer infected. I'm currently enrolled in a training program there to join their malware removal team.

            Comment

            • #7
              That's actually the site that had the instructions for removing the malware, at least in my case. I followed the instructions they gave to a T, so I hope it's completely gone. I haven't seen any relapses, thank goodness. ::knock on wood::
              "Enough expository banter. It's time we fight like men. And ladies. And ladies who dress like men. For Gilgamesh...IT'S MORPHING TIME!"
              - Gilgamesh, Final Fantasy V

              Comment

              • #8
                Kheldarson picked it up this morning while checking her webcomics. For both of us, it popped up after we checked Do You Work Here, so it might be spreading through that site. I sent them an email letting them know.
                » Horse Words «·» Roleplaying Stuff «

                Comment

                • #9
                  IIRC the last set of rouges were propagated via infected banner adds on legit sites. i had much fun dealing with things like winavxp and others. my feelings on the authors of such programs are such that i would hit fratching levels before scratching the surface. to be nice i will say i dont like them very much right now.
                  This is a drama-free zone; violators will be slapped. -Irving Patrick Freleigh
                  my blog:http://steeledragon.wordpress.com/

                  Comment

                  • #10
                    I've been seeing reports of similar malware being dumped on people's computers after visiting Photobucket (likely via the banner ads, as nobody blocking those seems to have contracted it). So far nobody's been able to track down the ad responsible, the scum have been infesting news sites (CNN, etc) as well.
                    "I am quite confident that I do exist."
                    "Excuse me, I'm making perfect sense. You're just not keeping up." The Doctor

                    Comment

                    • #11
                      Quoth Kogarashi View Post
                      I really wish I could find the people who program these things, so I could throw the book at them. Literally. Several times.
                      I'll loan you my A+ study/reference guide. 915+ pages of clue by four goodness. Just try to keep the blood off the pages.
                      I AM the evil bastard!
                      A+ Certified IT Technician

                      Comment

                      • #12
                        Get Spybot: Search and Destroy. It really handles a lot of malware that anti-viruses will miss. Just run it once and a while, and you should be good. It's free to download, too. It might "babysit" a bit, asking you to approve changes to your comp, but that can thwart quite a bit, too.

                        Comment

                        • #13
                          try here for tips in removing that crap www.majorgeeks.com

                          i have gone there in the past when i have had to fix other peoples computers.

                          Norton is very good at getting those antivirus 2000 and etc programs.

                          i use these programs in conjuction with norton.

                          spyware blaster
                          this program protects your browser from spyware nasties by blocking them. You can donate to their program and it will automatically update itself. Otherwise you have to do it manually.
                          http://www.javacoolsoftware.com/sbdownload.html

                          This is called spyware guard. This protects your browsers from bho's and from being hijacked basically.
                          http://www.wilderssecurity.com/index...threadid=13138

                          This is the spybot home page
                          http://www.spybot.info/en/index.html

                          there is another program called hijack this. this is put out by trend micro. this is good if you are copmputer savvy.
                          http://majorgeeks.com/%20Trend_Micro...his_d5554.html

                          also if you do not have a fire wall a good one is zone alarm www.zonealarm.com. They have a free verison but the paid one is even better with more features. it will block a lot of nasties especiallyif you have the one with the antispyware in it.

                          even if you use spybot or another cleaner you need to make sure that your computer is really clean because those malware programs like to leave turds.

                          also your best bet is to run the cleaners in safe mode.

                          edit to add:
                          When you install spybot search and destroy also use the immunize tab. it blocks your browser for downloading unwanted spyware too.
                          Last edited by CaptainJaneway; 02-13-2010, 06:04 AM. Reason: adding some more info
                          "Beam me up Scotty there is no intelligent life down here."

                          Comment

                          Previous template Next
                          Working...
                          X