computer ****** up
 

so i got a PM from A911GUY w/a link to a you tube knock-off site. got on the site and it fuched up my computer big time. i got a something that's working off my anti virus system and is trying to get me to buy their softwhare to fix the schiesse that they put on my computer! the stuff pops up every f'ing minute, i've tried to delete the program but when i get the delete programs it's not their! i've tried the round about way of going through the documents found the lil b@stard, and tried to delete it, but it just wasn't that simple. arr stupid f'ing computers, i hope i don't have to do a system recovery! :mad:

Try Panda Software online scanner:
http://www.pandasecurity.com/activescan/index/

What is it telling you to buy/ do you know what got you?

idk what it is but every 30 secounds something is poping.. soo annoying
WOW, when i tried to scan it with your site, IT blocked it. "the anti virus"

Do you have access to another computer? Do you feel comfortable in taking the hard drive out and connecting to another computer?

See if you can DL Hijackthis, run it, save a log file and post it here.
http://www.download.com/Trend-Micro-HijackThis/3000-8022_4-10227353.html

Also, do you have Spybot search and destroy or Adaware installed?

Write down the message that pops up and go to a clean machine and seach Google and Norton for the fix (then do it and expect a fight). Also don't stop at the first one, they tend to download others; last one I removed for a co-worker started as 1 but ended up 27 before it was done.

Is it Winfixer (or variant)?:
http://en.wikipedia.org/wiki/WinFixer

that's it.. but mine is window's antivirus 2008, and antispyware 2008 XP. they got two up on me... both have the 4 color shields and when the fake scan pops up it says i have every virus in the book...

i got exams tomorrow, and this is something i'm not gonna worry about till tomorrow...

thanks for the replys... they help!

Turn your computer off when you are finished for the night. Don't leave it running while not trying to use fix it.

Here's a site to go to tomorrow to get some removal tools.
http://www.bleepingcomputer.com/malware-removal/remove-vundo-virtumonde

Did you report the spammer? No need for him to get anyone else.

When you're tired of bleeping around, Malwarebytes, the CCleaner, both free downloads.

you could also try sprinkling 'essence of macintosh' over it. That usually takes care of those things :D

Alright Mule, since I just got nailed with Winfixer - thanks those stupid political posts.:mad: I'll download ccleaner and give it a go...

http://forums.pelicanparts.com/uploa...1219271752.jpg

EDIT: Norton Corporate came up and isolated a file. Hopefully it has not fixed the problem.

Go into System Restore, and reset the OS back to the last restore point that occurred before you went to that site.

No, this for Mule. He loves his ccleaner and thinks it'll get rid of Winfixer... Stay tuned! SmileWavy

I have another screen shot, but I can't upload at the moment. I wonder why...

OK, ran ccleaner as Mule would like everyone to do and wow!!!

Still infected, no surprise here.

Might as well call in a witch doctor and burn incense. It works as well as ccleaner.

Sounds like you got hit by the recent Flash exploit, as talked about here: http://blogs.zdnet.com/security/?p=1733

The little bugger even disables Windows firewall...
http://forums.pelicanparts.com/uploa...1219277810.jpg

You can see one of the randomly named files running under TM.
http://forums.pelicanparts.com/uploa...1219277901.jpg

Malwarebytes did find winfixer... Took only 45 minutes though :rolleyes:
http://forums.pelicanparts.com/uploa...1219277992.jpg

Malwarebytes did get rid of Winfixer, but not 100%. I still have to get rid of a blank icon in my system tray. Now, had I run the Vundo fix I had posted last night, I would have been up and running with in minutes, not 45 minutes. Ccleaner still sucks and does nothing.

BTW, I started this at 3:30 and ended at about 5:10.