|
|
04-24-2010, 12:51 AM
|
#1
|
Registered User
Join Date: Jul 2009
Posts: 12,402
|
AntiSpy Soft...
...has anyone had the pleasure of meeting this dandy little critter that hijacks your browser and declares every single application as "infected" - directing you to the one website that you can somehow get to - the one that purports to sell AntiSpy/Virus Soft so you can "fix" all of these reported viruses?
It has taken the better part of a couple hours to get anywhere extracting this little beauty from startup, registry, browsers, etc...
...it actually almost convinced me that something was actually really wrong when I first saw it, but alas, all the brilliant programming in the world to hijack a computer and these goofs still can't phrase their terrifying error messages using proper grammar, syntax, punctuation, capitalization...
__________________
"You make me feel like I am fun again."
-Robert James Smith, 1989
|
|
|
04-24-2010, 01:02 AM
|
#2
|
Registered User
Join Date: Jul 2005
Location: Ft. Lauderdale, FL
Posts: 85
|
I've had the displeasure. I knew enough NOT to fall for it. Not sure how I got it in the first place. I've seen Super AntiSpyware 2010, etc. Malwarebytes Anti-Malware is a great program for removing this along with Hijack This. Get help with HJ though if you're not sure what you are doing. Many online communities can help.
Quote:
Originally Posted by johnhannibalsmith
...has anyone had the pleasure of meeting this dandy little critter that hijacks your browser and declares every single application as "infected" - directing you to the one website that you can somehow get to - the one that purports to sell AntiSpy/Virus Soft so you can "fix" all of these reported viruses?
It has taken the better part of a couple hours to get anywhere extracting this little beauty from startup, registry, browsers, etc...
...it actually almost convinced me that something was actually really wrong when I first saw it, but alas, all the brilliant programming in the world to hijack a computer and these goofs still can't phrase their terrifying error messages using proper grammar, syntax, punctuation, capitalization...
|
|
|
|
04-24-2010, 01:12 AM
|
#3
|
Registered User
Join Date: Jul 2009
Posts: 12,402
|
Quote:
Originally Posted by gregrph
I've had the displeasure. I knew enough NOT to fall for it. Not sure how I got it in the first place. I've seen Super AntiSpyware 2010, etc. Malwarebytes Anti-Malware is a great program for removing this along with Hijack This. Get help with HJ though if you're not sure what you are doing. Many online communities can help.
|
I'm in the process of what has been a nearly three hour scan thus far using Malwarebytes' tool - but I think I got rid of most of the offenders when I started in Safe mode, ran msconfig, and turned off the proxy server scam in the browser. But, I'd rather go for overkill than assume I've done anything right.
I'm sort of dreading rebooting and seeing if it returns - I've managed to avoid nearly everything that's come down the road and like you, I have no clue where I picked this doozy up as I don't stray very far out of bounds ever. Thanks for the tip on HJ if I've missed something.
__________________
"You make me feel like I am fun again."
-Robert James Smith, 1989
|
|
|
04-24-2010, 01:21 AM
|
#4
|
Registered User
Join Date: Apr 2006
Location: Bird Rock
Posts: 16,697
|
You have brought in one of the most stubborn entities of all the viruses. The grammar is poor as they are written in Eastern block countries and have your computer at the ready to become a zombie.
You can run scan after scan, and I highly recommend Super Anti Spyware, but even still you will more than likely have remnants of a very nefarious nature.
If you can, back everything up and do a clean install of your operating system. Not to be an alarmist but it's actually a good thing to do every year or so.
Last edited by bigmack; 04-24-2010 at 01:23 AM.
|
|
|
04-24-2010, 02:14 AM
|
#5
|
Registered User
Join Date: Dec 2009
Posts: 3,208
|
Couldn't you have just done a "system restore" and take your computer back to the state it was in before the virus?
I did this on a friend's laptop once. It had the same exact symptom of a program trying to convince her she had viruses.
I went into her system restore program, set the laptop to go back 3 days or so....and the laptop looked exactly how it looked 3 days ago before she ever contracted the problem.
|
|
|
04-24-2010, 02:16 AM
|
#6
|
Registered User
Join Date: Dec 2009
Posts: 3,208
|
The only problem with "system restore" is that you will lose anything you saved or downloaded after the date you took the state of the laptop back to.
But if anyone wants to try that method sometime...it should work.
|
|
|
04-24-2010, 09:53 AM
|
#7
|
The Voice of Reason!
Join Date: Mar 2001
Location: Canandaigua, New york
Posts: 112,887
|
Funny you should post this thread - I got that hit Thursday at work.
Not sure what it was, our systems guy took car of it. I could not open any programs. It was trying to get me to buy a program/
__________________
Who does the Racing Form Detective like in this one?
Last edited by Tom; 04-24-2010 at 09:55 AM.
|
|
|
04-24-2010, 09:56 AM
|
#8
|
The Voice of Reason!
Join Date: Mar 2001
Location: Canandaigua, New york
Posts: 112,887
|
Quote:
Originally Posted by letswastemoney
The only problem with "system restore" is that you will lose anything you saved or downloaded after the date you took the state of the laptop back to.
But if anyone wants to try that method sometime...it should work.
|
Should you be making a new SR point say every week?
__________________
Who does the Racing Form Detective like in this one?
|
|
|
04-24-2010, 10:20 AM
|
#9
|
Racing Form Detective
Join Date: Jul 2007
Location: Lincoln, Ne but my heart is at Santa Anita
Posts: 16,316
|
Quote:
Originally Posted by Tom
Should you be making a new SR point say every week?
|
With Microsoft me or later, it should be being done automatically after 10 hours of use 24 hours which ever comes first. It can solve a lot of virus problems, but not all. I do not know if it would solve this one. This virus tried to get on my computer a couple of days ago and Norton blocked it.
__________________
Some day in the not too distant future, horse players will betting on computer generated races over the net. Race tracks will become casinos and shopping centers. And some crooner will be belting out "there used to be a race track here".
|
|
|
04-24-2010, 12:19 PM
|
#10
|
Lacrimae rerum
Join Date: Apr 2004
Location: at my house
Posts: 7,308
|
I got a call on the special Red family IT support phone the other night from my brother in law whose laptop had exactly this. After trying to embarrass him by first telling my sister to tell him to stay off all Asian Fetish Porn Sites from now on (my only payment), we tried system restores, no love. So I gave him exactly the line Mack suggested -- clean install, baby. Worked like a champ, and he was happy. Easier than fighting it.
Be like water, my friends.
And, stay thirsty.
Last edited by chickenhead; 04-24-2010 at 12:31 PM.
|
|
|
04-24-2010, 02:50 PM
|
#11
|
Registered User
Join Date: Apr 2006
Location: Bird Rock
Posts: 16,697
|
Quote:
Originally Posted by Robert Goren
It can solve a lot of virus problems, but not all. I do not know if it would solve this one.
|
SR ain't going to polish off little devils like that. These Bolshevik types write viruses with system restore at the top of the list to thwart.
True blue, clean install every year or so works wonders. It's like having a new system.
Chick - "Stay thirsty my friends"
Dig the campaign. The most interesting man in the world. His 2 cents has overturned Supreme Court decisions, his tree house has a finished basement...
[YT="DE"]8Bc0WjTT0Ps[/YT]
|
|
|
04-24-2010, 03:00 PM
|
#12
|
Registered User
Join Date: Aug 2007
Posts: 8,429
|
he lives vicariously...through himself
|
|
|
04-24-2010, 03:36 PM
|
#13
|
Racing Form Detective
Join Date: Jul 2007
Location: Lincoln, Ne but my heart is at Santa Anita
Posts: 16,316
|
Quote:
Originally Posted by ArlJim78
he lives vicariously...through himself
|
So do I, darn it.
__________________
Some day in the not too distant future, horse players will betting on computer generated races over the net. Race tracks will become casinos and shopping centers. And some crooner will be belting out "there used to be a race track here".
|
|
|
04-24-2010, 10:26 PM
|
#14
|
Registered User
Join Date: May 2004
Location: New Hampshire
Posts: 14,486
|
This is going to come as a real shock to you gents but the people who program these worms are the people who have legitimate businesses in this country selling software that fixes the problem. The larger problem is there are so many services left on for developers to make useful programs. When you turn some of them off and remove others that you will not use your half way there. Much can be stopped by shutting everything down and not answering anything that looks legitimate providing the enable for the latch to begin. You restore your computer to 100% perfect state, remove a few things you will never use then make a image if the perfect system including Office or what have you, then make the image with Ghost 2003. FTA because you have it beat and at this point you know it.
|
|
|
04-25-2010, 12:56 AM
|
#15
|
Registered User
Join Date: Jan 2007
Location: Los Angeles
Posts: 492
|
Quote:
The only problem with "system restore" is that you will lose anything you saved or downloaded after the date you took the state of the laptop back to.
|
Don't do a system restore until after you boot a Linux live CD and backup all of your data files onto another drive. Very simple, easy and safe.
The latest "Opera" version of Macpup Linux was just released: www.youtube.com/watch?v=AAljSNALFrM
|
|
|
|
|
Posting Rules
|
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
HTML code is Off
|
|
|
|
|