Why of course I trust it! I popped up on my computer!

[mouser.livejournal.com]

Get a call at 6:15 (I'm barely out of bed) "OMFWTFBBQ!!11! Someone has sent us up the virus!"

Of course they left in ON and connected to all the shares, but it's not that type, fortunately. Just a "Buy our Spyware product! Er, Spyware REMOVER! REALLY!" Smit variant, I think, but the stuff I used on the LAST hit aren't working. God, I hate that damned thing. But I'm not sure because it's not really TELLING me anything! I delete directories of crap, find one that's got

Task manager disabled.
Background changed to Active Desktop (Hate that damned thing too) saying OMGWTFBBQ!!1! YOU BE INFECTED CLICK HERE!!!
Every two minutes one of four windows pops open to tell me to pay their extortion to get this crap off the machine.


Crap, I don't have TIME for this.

Symantec ignores it. Fuck
SpybotS&D kills some of the components, not the re-seeder. Fuck.
All the components keep coming back. Double Fuck.
AdAware2007 is useless. Fuck.

I'm considering telling the cheap bastards they've got to buy a new one because I don't have two days to wipe and reinstall their crap.




I need to find a virus maker so I can kick him in the nuts. Repeatedly.

Comments

[museology.livejournal.com]

Did the start bar disappear too? That happened to my stepdad after he was surfing porn, and he appeared at my door "I was surfing porn.. and I got a virus.. and Norton doesn't recognize it.. Will you fix it?"

I had to manually delete 37 files, discovering along the way that all of the filenames had closely duplicated Windows files. If Windows had "abc.dll," the virus had "abcd.dll" and so on.

[mouser.livejournal.com]

Porn is not out of the question, but the startbar is still there.

The problem is that thing is so damned slow it takes HOURS to run a full check just to find out it's impotent.


The Smit Fraud Fix (http://siri.urz.free.fr/Fix/SmitfraudFix_En.php) has been updated recently. *sigh* try THAT tomorrow...



I've got too much shit to do! I don't have time for this crap!

[museology.livejournal.com]

Yeah, my stepdad's startbar disappeared after he tried to "fix it himself," which basically means "I fucked it up worse." He sucks that way, yet he refuses to admit I'm ever right on any tech issue.. ever.

[phrogg.livejournal.com]

SmitFraudFix (http://siri.geekstogo.com) usually works for me, on those types.

[snoopyh42.livejournal.com]

Sounds like one I did battle with a couple weeks ago. I ended up having to use a Live Windows CD environment and run the virus scanner from there. I used the one at http://ubdisk.org/. I'm sure you know where you can find a .torrent to get the ISO.

*grumble* 10 hours of my life I'll never get back...

[notthebuddha.livejournal.com]

try SuperAntiSpyware.com, they seem to specialize in that sort.

[coyoteden.livejournal.com]

I hope you're kidding. Some of that scamware pushes SAS!

[notthebuddha.livejournal.com]

So, if I publish a program that puts up an ad for Symantec, does that make Symantec a scam or my program legit? You are probably thinking of WinAntiSpyware anyway.

I've never had a problem with anything downloaded from superantispyware.com, and meanwhile Superantispyware takes off plenty bad stuff that Spybot and Adaware miss, for example.

[coyoteden.livejournal.com]

oops. I think you might be right. So let's see, we have

SUPERAntispyware=good
WINAntiSpyware/AntiVirus=scam
GIANTAntiSpyware=...umm... Windows Defender?

[pyrtolin.livejournal.com]

Make yourself a good Ultimate Boot CD or Reatogo CD. They're priceless when you need to excise root kits or other entrenched viruses like that.

http://www.ubcd4win.com/
http://www.reatogo.de/REATOGO.htm

[hisamishness.livejournal.com]

Someone at one of our locations seems to have picked up the same dang thing. I've never been happier to be temporarily tied to a desk... ;-)

[kallell.livejournal.com]

adaware and avg combined got rid of one of those for methe real trick was getting the updated to load with all its issues

[mattcaron.livejournal.com]

I need to find a virus maker so I can kick him in the nuts. Repeatedly.

I have guns, knives, and live in the country where folks won't hear the screaming...

Sorry, this turned into an annoyed rant.

[zendequervain.livejournal.com]

This is especially relevant to me, because that sounds...very similar to what's on my computer right now. O.<

Spybot is continually denying registry changes (because I told it to based on history) and I can't figure out what to kill to make whatever it is stop trying to change said registry. Boo.

Of course, part of my problem is the Server 2k3 that was forced on me by a more-tech-savvy former roommate. He claimed it was way better than XP, but hey, none of the free antivirus programs will even install because (gasp) it's a server! *hoards links*

ETA: For the record, I am obviously not a tech, but I love reading this community. I try not to be a luser, so I don't want to do anything that could fux stuff up more than it already is.

[goose-entity.livejournal.com]

type "spyware x scan" into Giggle. Should be one of the first hits.

[azzy23.livejournal.com]

Ooooh, Vundo. Nasty business, that. I don't actually know of *any* AV software that can totally clean it. Download Vundofix, and find something for WinFixer. It's one of the two.

(I work for a to-remain-unnamed Anti-Virus vendor).

[coyoteden.livejournal.com]

ugly stuff, it hooks winlogon and does a bunch of other rootkit-level stuff. You literally can't clean a live system, and finding every file with a boot disk is tedious. I think Windows Defender and some AV can keep it from getting there in the first place, but if it's hooked in, it's too late for any realtime shield.

It's only weakness is that it puts a lot of the per-user browser hijacking back at logon/logoff, but not constantly. Try a system restore (seriously, it often works!) to a point you know is clean, then run Windows Defender (or spybot, or AAW, anything reputable) to clean up the browser-level stuff.

If that fails, nuke it.

[ravenofdreams.livejournal.com]

I think I saw that same little bastard today, and AVG and Spybot together with the SmitFraudFix cleaned it off.

[curmudgn]

"Debug format reinstall, doo dah, doo dah . . ."

[vorro.livejournal.com]

I see nobody mentioning hijackthis. why is that? HJT is the best program evar...