Hard Light Productions Forums
Off-Topic Discussion => General Discussion => Topic started by: iamzack on December 03, 2010, 12:59:04 pm
-
I downloaded some kind of horrific virus yesterday, but I fixed it all by myself because I am teh sooper smart.
It was some kind of fake anti-virus thing that scanned my **** and was all "OMFG YOU HAVE SO MANY VIRUSES" and pretended to be the demo version of a legit windows-sponsored program.
I didn't really notice it last night, but today when I started my computer, it decided every program on my computer was too corrupt to open, including my real anti-virusy stuff. It wouldn't let me disconnect from the internet or shut down, either.
It would let me open firefox, but if I tried to go to any website, it would go all "Internet Explorer (which isn't installed on my computer..) detected a malicious site! Click here for more information!" And that, of course, would direct me to the "antivirus" software's website, where I really, really needed to pay $50 to get my goddamn computer back.
So anyway, I hard shutdown and booted into safemode and did a system restore. That not only fixed the virus, but also somehow fixed some random problems that were problems long before the date I restored my computer to.
teeldeer: I'm totally 1337 nao, guiz.
-
I got a very similar thing once and had an Old West gunfighter showdown with it by booting up in plain ol' infected not-safe mode and then, at the critical moment right after Windows revved up, getting into the task manager before it could block the task manager and every other process ever. It was a contest of mindless digital control against iron organic will and whiplash reflexes.
Then I baleeted its process and cleaned out all its registry keys. It was awesome.
however knowing malware my computer is probably still part of a hungarian botnot that renders acsii porn and launders money for Vladimir Putin or something
-
Format C:\ s
FTW :p
-
Yeah I had to format the first time I got something of note. If you're actually clean you got off really lucky.
-
apparently system restore isn't magic and i have failed everything forever
**** you, redsniper :[
-
I 'puterninja'd a virus once. It infected my 'puter, then I ran it in safe mode, where it was least expecting it, and seakritlee opened Malwarebytes and had it FILE ASSASSINATE!!! the virus.
Then I rebooted my compooter and the virus wuz dead.
I tell u, it had NO IDEA IT WAS COMING.
-
I got a very similar thing once and had an Old West gunfighter showdown with it by booting up in plain ol' infected not-safe mode and then, at the critical moment right after Windows revved up, getting into the task manager before it could block the task manager and every other process ever. It was a contest of mindless digital control against iron organic will and whiplash reflexes.
Then I baleeted its process and cleaned out all its registry keys. It was awesome.
however knowing malware my computer is probably still part of a hungarian botnot that renders acsii porn and launders money for Vladimir Putin or something
Shanetutta is quick on the digital draw.
-
Had one also, it infesteed the library controlling the CD drive. When rebooted, the pc won't kick in, because it said it had nowhere to boot from. For a second i thought i'll have to repair the system, but then i just tried bios and set it to boot from the hard drive first and it worked :P
-
I've seen that load of crap twice, actually. The worst part is "X-ing" out of it doesn't really work, so I've always done a fast disconnect, ctrl-alt-del, and started killing the Internet Explorer processes. I've also always done a scan of my system afterwards, but I've never got any problems... Highly annoying, though.
Furthermore, unless I'm mistaken, this virus emulates the appearance of AVG Antivirus, which is free and thus a likely candidate to be the victim's actual software. Regardless, nice work in taking that bugger out, Zack.
-
I got a very similar thing once and had an Old West gunfighter showdown with it by booting up in plain ol' infected not-safe mode and then, at the critical moment right after Windows revved up, getting into the task manager before it could block the task manager and every other process ever. It was a contest of mindless digital control against iron organic will and whiplash reflexes.
Then I baleeted its process and cleaned out all its registry keys. It was awesome.
however knowing malware my computer is probably still part of a hungarian botnot that renders acsii porn and launders money for Vladimir Putin or something
I have fixed a friend's computer exactly your same way (Ctrl-alt-sup at startup), apart it was only a poor .exe + autorun.ini, not in the registry. But the fake interface was very believable (especially for n00bs :D). Then I became a living god for my friend.
-
Furthermore, unless I'm mistaken, this virus emulates the appearance of AVG Antivirus, which is free and thus a likely candidate to be the victim's actual software.
I think that may have been it, actually, but I don't have that one. I have whatever Tura put on here last time I got my poor little 'puter all bugger'd up.
-
if it is the utter **** called trend micro they give us from school, get rid of that NOW.
-
Again, Format C:\ s FTW.
If you don't want to do that, you can always get any anti-malware anti-virus scanner you want and run it while on safe mode, but don't expect it to completely wipe the virus away.
If you need to save stuff, now would be a good time.
-
thats how i get rid of viruses and it works too, i keep all my files on another drive entirely. i dont let my files know the os exists and i dont let the os know my files exist, and frankly i like it that way.
-
Usually you can open task manager even before the virus starts working upon login, and from there it's usually easy to identify the offending process, end it, search for, and delete the executable, and then hunt through your registry settings to fix everything else. Not rally that hard.
-
Usually you can open task manager even before the virus starts working upon login, and from there it's usually easy to identify the offending process, end it, search for, and delete the executable, and then hunt through your registry settings to fix everything else. Not rally that hard.
Yeah, that's what I did. You have to be quick to get to it before the virus blocks it, though.
-
Actually, I got the virus's "you can't open this because ____ i corrupted" before i'd even logged in when i started up my computer, so i don't think that would have worked.
-
It wasn't a virus, but one of my finest moments in total amateur tech support was getting my brother's account on the family computer back up and running. Somehow, he'd managed to dissociate executable files from being run by Windows Explorer...meaning that absolutely nothing would run on his account. Real genius move on his part. :p
-
It was some kind of fake anti-virus thing that scanned my **** and was all "OMFG YOU HAVE SO MANY VIRUSES" and pretended to be the demo version of a legit windows-sponsored program.
To be totally frank, this is the point of failure for most PCs. Antivirus can only do so much if you click on every flashing gif that says it can cure your PC's cancer.
-
I 'puterninja'd a virus once. It infected my 'puter, then I ran it in safe mode, where it was least expecting it, and seakritlee opened Malwarebytes and had it FILE ASSASSINATE!!! the virus.
Then I rebooted my compooter and the virus wuz dead.
I tell u, it had NO IDEA IT WAS COMING.
Nothing is true; everything is permitted.
-
It was some kind of fake anti-virus thing that scanned my **** and was all "OMFG YOU HAVE SO MANY VIRUSES" and pretended to be the demo version of a legit windows-sponsored program.
To be totally frank, this is the point of failure for most PCs. Antivirus can only do so much if you click on every flashing gif that says it can cure your PC's cancer.
It was already downloaded at that point. I didn't download anything on purpose, just went to some sketchy webpage for about twety-eight seconds.
-
Then don't go to sketchy webpages. :rolleyes:
If you absolutely must, use Noscript (https://addons.mozilla.org/en-US/firefox/addon/722/).
-
if it is the utter **** called trend micro they give us from school, get rid of that NOW.
For the record, I like Trend Micro - I'm not sure what version your school gives you, however.
Furthermore, there's no perfect antivirus, and various programs are more adept at stopping different threats. However, I would never direct anyone to McAffee or Norton, which from all accounts I've heard are bloated programs in the extreme with marginal effectiveness. I used to have two different programs simultaneously running on my machine, Trend Micro and SpySweeper. I no longer have SpySweeper installed, but it is a nice program, and I would advocate it along with Trend Micro.
-
I've bought NOD32 (http://www.eset.com/), and I find it very practical to use, light with ressources (optimization POWAAA :lol:), and very powerful.
In fact, no one can hope the same service from a "free" (with limitations, like AVAST) antivirus.
Disclaimer : I DON'T work for ESET :)
-
if it is the utter **** called trend micro they give us from school, get rid of that NOW.
For the record, I like Trend Micro - I'm not sure what version your school gives you, however.
Furthermore, there's no perfect antivirus, and various programs are more adept at stopping different threats. However, I would never direct anyone to McAffee or Norton, which from all accounts I've heard are bloated programs in the extreme with marginal effectiveness. I used to have two different programs simultaneously running on my machine, Trend Micro and SpySweeper. I no longer have SpySweeper installed, but it is a nice program, and I would advocate it along with Trend Micro.
we have some sort of horrendously ineffective "corperate" version of trend micro. the only virus i ever got that i couldn't eradicate without reinstall was while i had that installed. and it came through html-disabled webmail. i'm not even sure how that's possible. i now use avg free plus a smattering of free spyware utilities, mainly spybot and ad-aware. super antispyware and malwarebytes installed in case of emergency. avg has far better protection from any paid antivirus i've used.
norton did used to suck, but i've heard that it's newer versions are pretty good.
-
Furthermore, unless I'm mistaken, this virus emulates the appearance of AVG Antivirus, which is free and thus a likely candidate to be the victim's actual software. Regardless, nice work in taking that bugger out, Zack.
Ironically, AVG is emulating the behaviour of malware lately (http://www.hexus.net/content/item.php?item=27815).
As for a general solution to the problem: ditch Windows and install Linux.
-
Ironically, AVG is emulating the behaviour of malware lately (http://www.hexus.net/content/item.php?item=27815)
:eek2: ...well at least my computer wasn't bricked, but still... damn.
-
Surprisingly, I've heard fairly good stuff about Microsoft's own Security Essentials package; I threw it on my brother's laptop when I reformatted it and installed Windows 7. (Lucky bastard got a free copy of Ultimate from his school. :p) I might give it a shot myself.
-
Security on Windows 7 isn't half bad. It can last pretty long.
-
Microsoft have a good free solution https://www.microsoft.com/security_essentials/ (https://www.microsoft.com/security_essentials/) hopefully AVG and the others will become irrelevant over time for home use.
-
I've never had a virus before. Where can I find a Wild Virus? I must catch em all.
-
Microsoft have a good free solution https://www.microsoft.com/security_essentials/ (https://www.microsoft.com/security_essentials/) hopefully AVG and the others will become irrelevant over time for home use.
Nah, good tools come and go. Security Essentials will suck some day, and then we'll all be looking for the next great AV.
-
the 'fake antivirus' viri tend to be some of the nastier ones.
-
This one is pretty good, too: http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?part=dl-10804572&subj=dl&tag=button
Also, if I may ask: Why did you download a virus? :p
-
Same thing happened to me. I saw it happen, hit the switch as fast as I could, and rebooted in safe mode and deleted everything using HijackTHIS!. Then I googled and removed all the files related to the bloody bastard.