|
Post by metoo on Jun 29, 2008 17:04:24 GMT -6
my desktop was recently infected with "Antivirus XP 2008". After much internet research and trial and error, I think I have it removed (crossed fingers). However, when I go to run, msconfig, startup, there are 2 files there that I had to uncheck to get the virus to stop running so I could delete files. I can't find these files on my computer except for in the system configuration/startup. Does this mean the 2 files are still there?
Any help is greatly appreciated!!!! The infection got past my AVG 7.5 and Spybot Search and Destroy.
|
|
|
Post by scheherrazade on Jul 8, 2008 9:15:16 GMT -6
I can't believe 25 people read this and you still got no help. Sorry I have not looked at the forum for a while. Really hate to say this Metoo, but I've encountered this virus several times in the last few months and its been easier on me just to back up the system, format the hard drive and reinstall everything new. Not even the best antivirus can help you when you click on the pop up window for the XP antivirus. Never click on a Browser window unless you are absolutely sure about what you are clicking. This one resembles a Windows window but its not. Once you click okay you've basically invited it in to your hard drive past your virus protection. AVG is not as good as it use to be. I'd recommend NOD32, but if you want something free Comodo Antivirus or Kapersky is your best bet. Windows Defender is not as good as spybot search and destroy, but it has a real time protector that spybot does not have. You can run it constantly and then run spybot once a week to pick up everything Defender missed.
|
|
|
Post by metoo on Jul 9, 2008 10:34:09 GMT -6
Scheherrazade - thank you for at least replying! I was getting the feeling that since I'm not a "regular" I wasn't going to get an answer!!!!
Evidently one of the kids clicked on Antivirus XP 2008 window trying to shut it down and actually started it up. Since I posted this, I have done my own research. I am not very computer literate, but there is a lot of information out there. My only problem is knowing when to trust what a site is telling me to do! Seems there is a XP Antivirus and an Antivirus XP. Both have different files, and both are capable of changing up file names from one install to the next. However, I am happy to say that after installing a free version of Malwarebytes, and purchasing Spyware Detector and Registry Mechanic, I have removed all traces of the virus and am back up and running. Purchasing the 2 programs was cheaper than taking my machine in to a shop to have it cleaned up. I was able to removed most of the files myself, but again, not being a computer person, I had to rely on the 2 programs to fix the registry and find some hidden dll files.
This is a nasty virus, it shuts off your virus protection and also puts a message on your screen as wallpaper and doesn't allow you to change your wallpaper. Glad to see it go and have PREACHED AND PREACHED to the kids about how it got on there!
|
|
texas_gal
Founding Member
aka srvchild
Posts: 3,027
|
Post by texas_gal on Jul 9, 2008 10:38:26 GMT -6
Metoo, it's not that anybody is ignoring you. I tried to look up on google to try to solve the problem but was unsuccessful because it was alot of mumbo jumbo to me. Honestly, i did not see this thread until yesterday. I hope everything is fixed for you and do consider yourself a regular here. You have been here a long time!
|
|
DirtyDon
Founding Member
Official Beer Czar
In Cerevisia Veritas! Cogito sumere potum alterum.
Posts: 8,499
|
Post by DirtyDon on Jul 9, 2008 10:53:46 GMT -6
I missed it too, Meetoo.. If it doesn't appear in the Top 50 when I go there, I miss it sometimes... All I would have done is give you Scheherrazade's number and told you to talk to her, She's A Primo Tech!
|
|
|
Post by Sílený Jízda on Jul 9, 2008 13:42:30 GMT -6
I apologize as well. I didn't have the knowledge to help you out in this particular area either. We have a few members that do have the background but they most likely didn't catch it. If in the future it happens again just drop me a PM and I'll bump the thread or sticky it for you.
|
|
|
Post by ruabcach on Jul 10, 2008 2:08:45 GMT -6
Playing with virii is not for amateurs or the weak-of-heart. Disinfection is often a tedious process and even a skilled technician can be stymied by the nastier specimens. An apparently-successful clean-up always leaves doubt whether it's 100% gone or if there's a hidden seed waiting to wreak havoc again.
|
|
|
Post by metoo on Jul 10, 2008 8:42:20 GMT -6
No need to apologize, guys. My response probably sounded "snippier" (if that's a word??) than I intended. I was just SO frustrated by this stupid virus! I called a local computer place and found I would have to spend more money than I spent on the 2 programs just to have the machine diagnosed and then would be advised how much it would cost me to have it fixed, with no guarantee that it would be fixed, so I figured what they heck....I can mess it up as well as anyone else!!! So far, so good, but as ruabach says, there could still be something lurking around to surprise me again!
|
|
|
Post by easydoesit on Jul 10, 2008 15:32:47 GMT -6
I have the same thing at home. Can't get on at home again. The worst part is my dog ate the backup disk.
|
|
|
Post by scheherrazade on Jul 10, 2008 21:42:44 GMT -6
Actually Metoo, I think they were referring to me saying it had 25 people view and no help. Did not mean to insult anyone, just surprised me. Ruabach was right in that there are probably still tags left in the machine that can cause problems. One thing you might want to keep your eye on is to occasionally check your internet connection. Close any program that uses internet access and bring up your connection status. If you see bytes sent and received moving on that screen then you know there is more going on in the back ground you are not aware of.
|
|
|
Post by metoo on Jul 11, 2008 12:20:57 GMT -6
ok, at the risk of sounding like a complete idiot, what/how do you mean "keep your eye on your internet connection"? which screen would I see bytes being sent and received?
right now I have AVG 8.0 running and doing a daily scan. I also have Spyware Detector running and doing a nightly scan. I also do occaisonal scans with Ad Aware and Malwarebytes. What do you think of these programs?
|
|