Cigar Asylum Cigar Forum  

Go Back   Cigar Asylum Cigar Forum > Non Cigar Specialty Forums > Misc > General Discussion

Reply
 
Thread Tools Display Modes
Old 01-21-2009, 05:10 PM   #1
RGD.
God Like Status
 
RGD.'s Avatar
 
Join Date: Oct 2008
First Name: Ron
Location: Alexandria, Virginia
Posts: 971
Trading: (1)
VR Army (Served With Honor)
RGD. has a spectacular aura aboutRGD. has a spectacular aura aboutRGD. has a spectacular aura about
Default Antivirus2009 - Has ANYBODY Ever . . .

Has anybody ever been able to totally eradicate this thing without a format? Picked this thing up a couple of days ago and it is driving me freaking bonkers. Have tried 4 or 5 different programs that all claim to be the best - and when the scan is run they all find something different. Malwarebytes seems to be the best of the bunch aside from ESET in finding. But after removal it just coming back. Have done several manual searches. Also have a tech ticket open with ESET on it.

This is my second infection ever - the last one years and years ago caused me to dump Nortons and go with NOD32 (ESET) and have never had a problem since.

So - anybody ever been able to clean this crap off and live to tell about it??



Ron
RGD. is offline   Reply With Quote
Old 01-21-2009, 05:13 PM   #2
Volt
I'm nuts for the place
 
Volt's Avatar
 
Join Date: Oct 2008
Posts: 2,799
Trading: (19)
ERdM Navy (Retired)
Volt has disabled reputation
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

I have, not easy though. I believe I have the files needed at work. PM me tomorrow if you still need them.
__________________
Curing the infection... One bullet at a time.
Volt is offline   Reply With Quote
Old 01-21-2009, 05:25 PM   #3
madurolover
That's what she said
 
madurolover's Avatar
 
Join Date: Oct 2008
Location: Myrtle Beach
Posts: 136
Trading: (0)
madurolover is on a distinguished road
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

Try a free program called MalWareBytes. I have had several people with this infection and it has gotten rid of it for them. After you download it make sure you update and then do a quick scan.
__________________
I Like Thin & Crispy
madurolover is offline   Reply With Quote
Old 01-21-2009, 05:50 PM   #4
GrumpyOleTroll
Not Crazy enuff to B Here
 
GrumpyOleTroll's Avatar
 
Join Date: Oct 2008
First Name: Shawn
Location: Wichita KS
Posts: 273
Trading: (18)
HUpmann Navy (Served With Honor)
GrumpyOleTroll has disabled reputation
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

Quote:
Originally Posted by madurolover View Post
Try a free program called MalWareBytes. I have had several people with this infection and it has gotten rid of it for them. After you download it make sure you update and then do a quick scan.



This is what I did and now I swear by MalWareBytes!!


It saved me from having to reformat.


Shawn
GrumpyOleTroll is offline   Reply With Quote
Old 01-21-2009, 05:50 PM   #5
ChasDen
Guest
 
Posts: n/a
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

If its coming back after a reboot, it has a hidden installer.

Try the manual uninstall instructions here:

( LINK )

Chas
  Reply With Quote
Old 01-21-2009, 06:00 PM   #6
SeanGAR
Crotchety Geezer
 
SeanGAR's Avatar
 
Join Date: Oct 2008
Location: Radford VA
Posts: 911
Trading: (3)
SeanGAR has disabled reputation
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

Are you doing the AV scans in safe mode?

Can you boot from DVD or from another HD?

Me, I'd boot from a Linux live cd remaster with an updated ClamAV, run a Win AV program in wine, or put the HD into another computer as nonboot disk and scan it with an installed and updated AV program after booting the second computer. Because the infected drive is not accessed on boot in this situation, the virus should be easier to eliminate.

Good luck.
SeanGAR is offline   Reply With Quote
Old 01-21-2009, 06:06 PM   #7
RGD.
God Like Status
 
RGD.'s Avatar
 
Join Date: Oct 2008
First Name: Ron
Location: Alexandria, Virginia
Posts: 971
Trading: (1)
VR Army (Served With Honor)
RGD. has a spectacular aura aboutRGD. has a spectacular aura aboutRGD. has a spectacular aura about
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

Quote:
Originally Posted by Volt View Post
I have, not easy though. I believe I have the files needed at work. PM me tomorrow if you still need them.
No doubt I will still need them. Much appreciated if you could send what you have.



Quote:
Originally Posted by madurolover View Post
Try a free program called MalWareBytes.
Quote:
Originally Posted by GrumpyOleTroll View Post
now I swear by MalWareBytes!!
Yep - as I mentioned I have already installed MalWareBytes. Still no dice -


Quote:
Originally Posted by ChasDen View Post
If its coming back after a reboot, it has a hidden installer.

Try the manual uninstall instructions here:
Definitely has an installer lurking somewhere - already tired those directions.


Thanks,

Ron
RGD. is offline   Reply With Quote
Old 01-21-2009, 06:07 PM   #8
Kreth
Ronin smoker
 
Kreth's Avatar
 
Join Date: Jan 2009
First Name: Jeff
Location: Oneonta, NY
Posts: 3,620
Trading: (14)
Kreth is just really niceKreth is just really niceKreth is just really niceKreth is just really nice
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

Quote:
Originally Posted by SeanGAR View Post
Are you doing the AV scans in safe mode?

A lot of malware has a hidden installer. If you don't scan from safe mode, it will just keep reinstalling itself.
Kreth is offline   Reply With Quote
Old 01-21-2009, 06:11 PM   #9
RGD.
God Like Status
 
RGD.'s Avatar
 
Join Date: Oct 2008
First Name: Ron
Location: Alexandria, Virginia
Posts: 971
Trading: (1)
VR Army (Served With Honor)
RGD. has a spectacular aura aboutRGD. has a spectacular aura aboutRGD. has a spectacular aura about
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

Quote:
Originally Posted by SeanGAR View Post
Are you doing the AV scans in safe mode?

Can you boot from DVD or from another HD?

Me, I'd boot from a Linux live cd remaster with an updated ClamAV, run a Win AV program in wine, or put the HD into another computer as nonboot disk and scan it with an installed and updated AV program after booting the second computer. Because the infected drive is not accessed on boot in this situation, the virus should be easier to eliminate.

Good luck.

**** (crap) no - forgot about running in safe mode - doh. Normally I would just pull the drive and toss in another - problem is that I'm running a RAID - have 4 drives here.


I had planned on reformatting - just not yet. Wanting to build the new server to transfer media stuff over - and then go with a single drive and a dual boot with x64 and Linux.

I got to much stuff going on to have to deal with this mess right now -


Ron

Last edited by RGD.; 01-21-2009 at 06:12 PM. Reason: apparently you can't say **** - it just shows up as ****
RGD. is offline   Reply With Quote
Old 01-21-2009, 07:38 PM   #10
DMK
S.O.B.
 
DMK's Avatar
15
 
Join Date: Oct 2008
First Name: Darryl
Location: Hamilton, ON. Canada.
Posts: 2,747
Trading: (86)
Partagas
DMK is just really niceDMK is just really niceDMK is just really niceDMK is just really nice
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

The wifey picked it up on my cuter last week, I used Spyhunter to clear it.
__________________
Darryl, SOB...
DMK is offline   Reply With Quote
Old 01-21-2009, 07:46 PM   #11
dunng
MassHole
 
dunng's Avatar
 
Join Date: Oct 2008
First Name: Greg
Location: MassHole
Posts: 4,719
Trading: (59)
Bolivar
dunng has disabled reputation
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

Make sure you update Malwarebytes and scan all files... Also try running BitDefender online scanner...
__________________
MassHole Banter
dunng is offline   Reply With Quote
Old 01-21-2009, 09:04 PM   #12
RGD.
God Like Status
 
RGD.'s Avatar
 
Join Date: Oct 2008
First Name: Ron
Location: Alexandria, Virginia
Posts: 971
Trading: (1)
VR Army (Served With Honor)
RGD. has a spectacular aura aboutRGD. has a spectacular aura aboutRGD. has a spectacular aura about
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

That box is in safe mode right now and running the scan in full mode. We will see what happens. Fingers crossed -



Ron
RGD. is offline   Reply With Quote
Old 01-22-2009, 12:24 AM   #13
lenguamor
puta por Ninfas!
 
lenguamor's Avatar
 
Join Date: Oct 2008
First Name: Joe
Location: The 305 again!
Posts: 1,030
Trading: (23)
PL
lenguamor will become famous soon enoughlenguamor will become famous soon enough
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

This is a sobering read.
__________________
lenguamor is offline   Reply With Quote
Old 01-22-2009, 08:50 AM   #14
Langod
NH Masshole
 
Langod's Avatar
 
Join Date: Oct 2008
First Name: Jim
Location: Londonderry, NH
Posts: 257
Trading: (3)
Punch
Langod is on a distinguished road
Default Re: Antivirus2009 - Has ANYBODY Ever . . .

It's a ***** to get rid of. It can be done, but takes some persistance.

The easiest way to get rid of it -- if you're running XP or Vista -- is with a System Restore. Obviously, you'll need to have some idea of when you were infected so you can pick a date previous to the infection.
__________________
Jim
Langod is offline   Reply With Quote
Reply


Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT -6. The time now is 01:36 PM.


Powered by vBulletin® Version 3.7.4
Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
All content is copyrighted jointly by Cigar Asylum and the content provider.