Virus! Help!

Got a computer problem? Want to brag about your sexy machine? Anything technology related.

Moderator: Moderators

Post Reply
User avatar
Veritoff
X Member
Posts: 1154
Joined: Mon Aug 02, 2004 12:00 am

Virus! Help!

Post by Veritoff »

So I was trying to stream a movie a little bit ago from a site that hasn't given me much trouble and I randomly got a win 7 security 2012 needs to be updated for a potential virus. Obviously, I didn't click this. Further, I read online how it seems to be a TDSS virus. Has anyone encountered this before? What was the best fix? I shouldn't be in trouble as long as I didn't download the program right? I tried this site:

http://www.bleepingcomputer.com/virus-r ... urity-2012

and decided to use a flash drive to execute the file. Unfortunately, I was unable to complete the scan and now I am still unable to get rid of this little bastard. It keeps denying any access to my various malware/virus protection and pops up another fake update needed to be installed.

Help would be much appreciated.

User avatar
Boom
Site Admin
Posts: 3305
Joined: Sat Dec 15, 2001 1:00 am
Location: NC

Post by Boom »

Safe mode & system restore? :)
Image

User avatar
Veritoff
X Member
Posts: 1154
Joined: Mon Aug 02, 2004 12:00 am

Post by Veritoff »

No go. It just pops up another screen with the "you need to update your virus software."

User avatar
DarkPowers
X Member
Posts: 3237
Joined: Sat Jan 29, 2005 1:00 am

Post by DarkPowers »

Get MalwareBytes and let it do it's thing. You might have to get it running in safe mode then reboot and run again in normal.

http://www.malwarebytes.org/


I normally follow up MB with a good running of CrapCleaner now known as CCleaner. I still call it by the original name because it cleans out a lot of crap. :)

http://www.piriform.com/ccleaner I normally get the slim version but because they put a new update just yesterday it will be a few days before the slim version is on the site. Slim is just the program without things like optional toolbars in the download. But if you want Slim, google it and someone will probably have the last version for download.


Both are free and safe.

User avatar
Dash_Sixxkiller
Posts: 315
Joined: Sun Nov 27, 2011 11:36 am
Location: Dalton Ga

Post by Dash_Sixxkiller »

MBytes & CCleaner FTW!!!! They have saved my EFR plenty of times.

ComboFix is another good one but. only use as last resort. Known to get rid of stuff you dont wont to get rid of.
Image

I have no special talent. I am only passionately curious.
Albert Einstein

User avatar
Veritoff
X Member
Posts: 1154
Joined: Mon Aug 02, 2004 12:00 am

Post by Veritoff »

I would use MByte if I could, but this virus prevents any type of software that trys to clean the computer. The only one that I was able to get functioning was the TDSSKiller, which didn't spot the virus that I thought fit the symptoms... Leaves me scratching my head as to what this nasty bug is.

Well, I feel defeated at this point. I guess I will just have to send it into the shop and see if they can save my computer.I just didn't want to pony up the $100 dollars for a virus removal.

User avatar
Dash_Sixxkiller
Posts: 315
Joined: Sun Nov 27, 2011 11:36 am
Location: Dalton Ga

Post by Dash_Sixxkiller »

I had one to where it did the same thing would not let me start mbytes. I ended up having to rename mbytes.EXE file something different Besides mbytes.exe so the virus would not recognize the name.
Image

I have no special talent. I am only passionately curious.
Albert Einstein

User avatar
Dash_Sixxkiller
Posts: 315
Joined: Sun Nov 27, 2011 11:36 am
Location: Dalton Ga

Post by Dash_Sixxkiller »

http://www.youtube.com/watch?v=o2GKIX23cr8

Try some of these and see if this helps.

I hate this virus just because it is designed to trick you in buy their software to to get rid of what it has put on your pc and alot of what it is reporting is to throw you of its trail it is probally just three or four trojans. Eventually it will shutdown all your .exe files. I hate trying to get rid of theses because the more you try the worst it gets.
Last edited by Dash_Sixxkiller on Tue Nov 29, 2011 9:54 pm, edited 1 time in total.
Image

I have no special talent. I am only passionately curious.
Albert Einstein

User avatar
Dash_Sixxkiller
Posts: 315
Joined: Sun Nov 27, 2011 11:36 am
Location: Dalton Ga

Post by Dash_Sixxkiller »

oh here is something else you can try. but try and do it in safe mode.

http://answers.yahoo.com/question/index ... 938AADQA1m


Good Luck man. I would hate for you to have to spend a $100 for bs like this. Every year they make it more difficult to get rid of.
Image

I have no special talent. I am only passionately curious.
Albert Einstein

User avatar
DarkPowers
X Member
Posts: 3237
Joined: Sat Jan 29, 2005 1:00 am

Post by DarkPowers »

There were times working on people's machines, I've had to install MB in safe mode. Not safe with networking but straight up safe mode. It couldn't update it to the latest since no network available but the definitions that come with it was enough to clean it to the point I could go in normal mode to update and further clean.

Or even copy the definition files off a working machine with MB that you update the definition files on. You can manually copy the database from a working computer using a flash drive or CD onto the infected PC. Definition file is stored in the following locations.

Windows XP and 2000
C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref

Windows Vista and Windows 7:
C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\rules.ref

User avatar
DarkPowers
X Member
Posts: 3237
Joined: Sat Jan 29, 2005 1:00 am

Post by DarkPowers »

http://forums.malwarebytes.org//index.p ... opic=17583

Or try this to get it to work. I just found this.

User avatar
St.John
Chief of Staff
Posts: 3977
Joined: Thu May 15, 2003 12:00 am
Location: Auckland

Post by St.John »

I got the same virus years ago but it was from a German porn site. I was too embarrassed to hand it over to best buy Geek Squad so I just put the hard drive in a fishbowl full of water and microwaved it like in that Ben Affleck bank robber movie, shame really.
[img:15f1ed8b83]http://i64.tinypic.com/2dukwep.jpg[/img:15f1ed8b83]

User avatar
Dash_Sixxkiller
Posts: 315
Joined: Sun Nov 27, 2011 11:36 am
Location: Dalton Ga

Post by Dash_Sixxkiller »

St.John wrote:I got the same virus years ago but it was from a German porn site. I was too embarrassed to hand it over to best buy Geek Squad so I just put the hard drive in a fishbowl full of water and microwaved it like in that Ben Affleck bank robber movie, shame really.
:lol: :lol: :lol: :lol:
Image

I have no special talent. I am only passionately curious.
Albert Einstein

User avatar
DarkPowers
X Member
Posts: 3237
Joined: Sat Jan 29, 2005 1:00 am

Post by DarkPowers »

St. talking about a German porn site and his sig made me LOL.

User avatar
Veritoff
X Member
Posts: 1154
Joined: Mon Aug 02, 2004 12:00 am

Post by Veritoff »

Thanks for all the tips. However, I decided to take it in for repairs after a couple of days of failure. Still great information to know if I ever get myself into trouble again (Though I think I have learned a lesson)

St - lol... I guess that is one way of dealing with the problem.

Post Reply