Snowplow Forums banner

1 - 20 of 23 Posts

·
Registered
Joined
·
8,442 Posts
Discussion Starter #1
Ok Fellows the fathers in crap creek without a paddle. First thanks Chuck for sending me the links to Panda and Lavasoft however this little bastard is crippling my whole network of shop computers.

Problem it occured two days ago i got this pop up for XP Anti Virus well it even has the somewhat Mircosoft logo problem is it wont allow me to do anything...... I cant even do a system restore point it says its turned off.

Everytime i try to down load Nortons latest update or the Pqanda software it says server not found, now i can acess anything else on the web from the shops computers. All anti virus protection that is legit is being denied. I have been up since 4am trying to get the dam shop computers working i canT even close out my week ends books right now....

Now for the life of Ryan what dam funtion key allows to start in safe mode that isnt even working thinking if i could run in safe mode i could update Nortons latest patch or Panda. In no short words if i could find the bastards that have nothing better to do than wreck and waste my time like this i have a custom 9mm hollow point yellow jacket i would take one of them out at a time......:mad:

Any help from computer Gurus is much needed again i have crital data i need to get done for this weeks work Napa tech is worthless has **** on a boar hog. HELP HELP HELP.
 

·
Registered
Joined
·
701 Posts
Fred, F8 is the key you want to press to get into the system options. You want the Safe mode with Networking option, that will allow you to still access the internet.
 

·
Site Founder
Joined
·
5,721 Posts

·
Registered
Joined
·
526 Posts
Fred,
If you can go here, there seem to be a couple of options for removal.

One other thought would be to try and go to TrendMicro's site and run the housecall tool. But if other anti-virus programs are being blocked, I'd guess this one is too. Here's the link to housecall

HTH
 

·
Registered
Joined
·
3,632 Posts
Fred, almost had the same thing happen. AVG caught it as it was trying to install . Don't know if you'll be able to load AVG in now that it's infected thought. Grifsoft makes the program. Thought it was a pain to keep on the computers at first but it's caught alot. Good luck. J
 

·
Banned
Joined
·
3,450 Posts
Anyone know where this one comes from? Email virus I'm guessing? Not sure what nailed my laptop, dont think it was a virus, but XP would no longer boot properly. Ran all the troubleshooting, and still ended up starting over. What a pain... You dont realize how much crap you have on them until you have to start over... :(
 

·
Registered
Joined
·
8,442 Posts
Discussion Starter #9
Ok after dam near the weekend blown on this Nortons techs finally worked with me to clear my sys32 files for them to gain access to my shop pcs has we speak there working my computers fixing them while i type this from my laptop and broadband the cost 99.00 bucks.

Last night the Geek boys threw threw up 700 bucks to recover my machines not fix them , it was one kid there that was honest enough to say theres no true protection fron this virus and it didnt matter what i had running for virus protection i was screwed. So i lost a weekend basicly but saved what would have taken a week to have napa, alldata, mitchell, gm, ford and chrys softwarw put back on my machines.

Like the links Chuck posted this needs to be crimmnal offense right now i would honestly be in jail for murder in the first degree if i found the rotton bastards who are doing this. I lost a valuable repo for a bmw z-3 over this mess since we are on city county rotation i would have had to grab this one the dam Bmw was setting in a parking lot in Travserse city with a Forsale sign on it would have been a easy pic not now .

Like me and Chuck talked somehow i need to protect my pcs here before Napa it was easy to keep my pcs off the nternet but even my alldata is pc internet based to a dgreee so i dont really know what to do. I know this had we opened the shop tomarrow with crashed computers we would never have gotton threw the day .

Thanks to everyones repley and Chuck for digging so hard i guess we should all check to see if our virus protection has 24hr support like Norton has done here this am free doesnt do a dam bit of good when your crippled.
 

·
Site Founder
Joined
·
5,721 Posts
My turn!

Got it on the shop computer this morning :mad: I saw it pop up, and turned off the PC. I am not infested yet, seems to be different than Fred's a little. Sucks. I know it is going to get worse fast. We got a job that a customer wants us to do scrapping MRI machines. I was researching them on how stuff works.com. Then I did a google image search, and clicked on the first result. That is the site that gave it to me :mad:

~Chuck
 

·
Registered
Joined
·
8,442 Posts
Discussion Starter #11 (Edited)
Got it on the shop computer this morning :mad: I saw it pop up, and turned off the PC. I am not infested yet, seems to be different than Fred's a little. Sucks. I know it is going to get worse fast. We got a job that a customer wants us to do scrapping MRI machines. I was researching them on how stuff works.com. Then I did a google image search, and clicked on the first result. That is the site that gave it to me :mad:

~Chuck
Well i know i told you Chuck but didnt follow up here my bad!!. The above post i typed on my laptop while the Norton guys were taking control over my pc it sure looked like they had it fixed 4 hours later they were finished i had to do a manuel reboot at that point the rotton virus had gotton my Boot sector has well and i ended up Reformatting my main term.

I did get Norton 360 out of the deal and i still belive had i not waited so long they probley could have done there magic , so i still say for the 99 bucks they put well over 11 hours in with me that isnt even 10 bucks a hour.

It totally sucks that people have nothing better to do than mess up someone elses life , they took away a weekend of my life when i was feeling good , and i will never forget.

One thing i also ended up doing out of that rotton deal was seperating the hub and other Pc's . Now the shop break room has one term for the guys to look up parts, and manuel info on line the other 5 computers are now offline and networked to each other for internel invoicing only.

Reading my one post we did get threw the next three days without , Napa sent there version of the Geek crew up and did all the reformatting , it took him three days to set us up on a stand alone net work system for invoicing, the program called Apache simulates a internet conn and allows us to run our little world under our roof.
 

·
Site Founder
Joined
·
5,721 Posts
Took a while, but I got rid of them. 17 of them in all. How? Well when my father built this computer years ago, he installed a hard drive drawer, so he could play around with Windows ME, and XP. He had a few hard drives loaded with each. Pretty cool actually. So I popped in one of the other drives, updated it A LOT, and then hooked up the infected drive as a slave. Ran a scan with AVG (free version) and it got all of them. Ran Malwarebytes too. All clear now. I am going to get all the data I need off it, and scrap it. It has some bad sectors on it. I have had a brand new drive sitting here for months.

Now the only real PIA is installing QB again, and listening to all the sales pitches when trying to just get a validation number...

One thing these viruses tried to do last night when I booted up is try to send 11 e mails, and Norton blocked them. I had rebooted again, and it tried sending 25 e mails, Norton blocked them. So these things had a payload that got worse over time.

~Chuck
 

·
R.I.P.
Joined
·
79 Posts
Sorry to hear about all your troubles, I have had to completely reformat hard drives for friends of mine.

Here are the programs I run, I have never had a severe virus problem, but I do run them 2 to 3 times a week.

Spybot Search and Destroy, Spyware Blaster, Ad-Aware, Avg free.

Also I use CCleaner to clean the hard drive and clean up the registry.
I use JkDefrag to defrag my hard drives, I have 4 of them.

All the programs are free. It is kind of a pain to run the all the time, but it keeps my computer which I built in XP came out running in top condition.

Good luck in the future being virus free!


Rick aka: Kansas Snowplow
 

·
Registered
Joined
·
8,442 Posts
Discussion Starter #14
You know i would strongly consider jail time to put a cap the in ass of the people who dont have anything better to do than screw up somebodys life.

Was searching some Harley parts yesterday and got the same dam virus the shop got a year ago with the same microsoft auth looking crap and all. You would think Norton or someone would have a fix for this by now.

Anyway i had to reformatt this gateway with 4 years of data on it none of which was backed up so unless my pics were saved on my mem cards or like this site i lost tons of valuable stuff last night, worst part is now SBC disc i had i cant find and there telling me i cant reset my home page that had over 150 bookmarks of vendors i use alot , so i typing this fromIE which sucks cause theres no tab button i can find in the tool bar has i like to run several pages at once.
 

·
Registered
Joined
·
8,442 Posts
Discussion Starter #15
Took a while, but I got rid of them. 17 of them in all. How? Well when my father built this computer years ago, he installed a hard drive drawer, so he could play around with Windows ME, and XP. He had a few hard drives loaded with each. Pretty cool actually. So I popped in one of the other drives, updated it A LOT, and then hooked up the infected drive as a slave. Ran a scan with AVG (free version) and it got all of them. Ran Malwarebytes too. All clear now. I am going to get all the data I need off it, and scrap it. It has some bad sectors on it. I have had a brand new drive sitting here for months.

Now the only real PIA is installing QB again, and listening to all the sales pitches when trying to just get a validation number...

One thing these viruses tried to do last night when I booted up is try to send 11 e mails, and Norton blocked them. I had rebooted again, and it tried sending 25 e mails, Norton blocked them. So these things had a payload that got worse over time.

~Chuck
Hey after i typed the above i reread this post of yours Chuck something diff with this Gateway which i love is when i reformatted i didnt have to do a full it did some sort of partition of the old stuff so maybe its on another part of my hard drive now ? if so how could i give the bastard virus and get back my good info safely?
 

·
Site Founder
Joined
·
5,721 Posts
Good question. Maybe the help section on your Gateway has info on it? Even without the hard drive drawer you can usually just hook the infected drive up to a good PC as a slave, and scan it and clean it. Formatting is a last resort. I put the otherdrive in the drawer, updated, etc, then I took the side off the PC and unplugged a CD drive, and plugged in the infected drive, and cleaned it. The virus was on both partitions of it (both C and D) and it also was on two thumb drives I had plugged in to USB ports. AVG got them all.

I think the reason Norton and others don't catch this is because you are tricked into downloading it, and it is a "normal" application, or you clicked yes, or install, or they hotlinked the X on the window to be a yes button, something like that.

If the drive you formatted has other partitions, they will be other drive letters like D, E, F, etc. If you can remember a file name, use the Find all Files & Folders on the Start Menu, and let it search for them. Also, run the free version of AVG and see what it finds.

http://free.avg.com/

~Chuck
 

·
Registered
Joined
·
8,797 Posts
You know i would strongly consider jail time to put a cap the in ass of the people who dont have anything better to do than screw up somebodys life.

Was searching some Harley parts yesterday and got the same dam virus the shop got a year ago with the same microsoft auth looking crap and all. You would think Norton or someone would have a fix for this by now.

Anyway i had to reformatt this gateway with 4 years of data on it none of which was backed up so unless my pics were saved on my mem cards or like this site i lost tons of valuable stuff last night, worst part is now SBC disc i had i cant find and there telling me i cant reset my home page that had over 150 bookmarks of vendors i use alot , so i typing this fromIE which sucks cause theres no tab button i can find in the tool bar has i like to run several pages at once.
Have had this pop up twice now on different sites. First one almost got me, but I started looking at it and trying to figure out why Firefox didn't catch it or Kaspersky. Figured something was not right, especially when I couldn't close Firefox without shutting the computer down.

Looked very realistic to me and I got right to the point of downloading the .exe file before I started thinking about what I was doing.

FWIW, been using Kaspersky for about a year now and it blows away Norton. It isn't a resource hog, doesn't look like a 13 YO Facebook page and best of all the automatic updates are actually automatic.

Good luck Fred. Hope you get everything back.
 

·
Registered
Joined
·
1,167 Posts
I was listening to Pandora radio on the computer and got a screen from "Microsoft" that said they had "founded" malware on my computer and urging me to let them correct the problem.

Sounded like a non English speaker - "founded" - so I knew it was a ploy to get me to click on and install malware. Microsoft can speak English.

Due to the effectiveness of security programs the latest and best way to infect is to get the user to install the malware themselves, so it's not an "attack". There is big money in (ro)bot nets so there is a lot of push to infect your computer. Many people (my wife for one) will just automatically click on anything that the screen tells them to click on.

I was afraid to even mouse over the popup screen, never mind click on anything like "cancel" or "x".

So I went to "start", and "restart". I never had it happen again, but warned my wife to be careful.

Hope you can get it straightened out Fred. I use a separate hard drive for documents so I can wipe the OS hard drive without losing it all. Get a stand alone external hard drive that plugs into the usb slot and back up your documents occasionally. I back up quickbooks every time I use it, more than once a day if I do a lot of paper work.
 

·
Registered
Joined
·
8,442 Posts
Discussion Starter #19
Thanks Fellows well iam running on a F disk deal iam sure when gateway recovery disk asked about moving it and that was recommended i did so i see recovery on my F drive but dont feel like messing with it.

I agree Mark i need some better virus protection this would be the second time this has happened in less than a year, and Chuck your right it launched off the close tab X .

Well anyway the pc is running a whole lot faster kinda like taking a 10 day crap but just the same its a dirty way to screw someone up. You would think by know my dumb ass would back up even this pc but its one of those things you say your getting around to do but i just dont do it.
 

·
Registered
Joined
·
17 Posts
Can you open task manager and look in processes

and copy all that and paste then we will look which processes is virus then we tell you click end process on it then it will stop then you can scan antivirus.

And get zone alarm firewall to stop virus access network that what i did on many customers computers. They need network that how they work and spread to all computers.
 
1 - 20 of 23 Posts
Top