help me get rid of the rogue AV8!!!

Acuradude · 10-24-10, 04:24 AM

ok guys i got malwarebytes and im trying to get rid of av8 the damn thing just wont go away i have had this freaking thing i know atleast ten times well different variants and i am normally able to get rid of it. but not this time.

Acuradude · 10-24-10, 04:44 PM

did i not give enough info or something please this and my email are the only sites i can go to

SeanBest · 10-24-10, 06:56 PM

Can you get into Safe Mode? Get into Safe Mode and run Combofix. Run Malwarebytes in Safe Mode as well. Both of those should take care of it. If it's a rootkit you can also try TDSS Killer from Kaspersky.

DreamerBrian · 10-24-10, 07:20 PM

Sorry, Acuradude. I'm in the same shoes as you are. The more I learn from this casualty the more I will be able to assist others in the future.

Brian

TempliNocturnus · 10-24-10, 08:17 PM

Use a bootable AV/anti-rootkit disk. I prefer this one. Combating viruses is always best done offline.

habbajabba · 10-24-10, 10:13 PM

If you do not have a backup image for just this reason you are braver than me. Then again, I don't use any av at all and never get infected. But, I wouldn't dare go a even a week without backing up a new install.

Ninth · 10-25-10, 12:52 AM

Security through obscurity; yay FBSD? Templi's advice is solid; but I have to ask, you've been getting so many varients, have you considered what is making you so targeted/is infecting you?

Perhaps cut back on all the sketchy pr0n sites and e-gambling ^^

But in seriousness, if infection is this regular a thing; check your various potential vulnerabilities (see; browser, email client, firewall) and attempt to secure them, or at least identify the behaviors that are putting you at risk and change them. I can't recall the last time I got hit with anything of any noticible severity; and I don't go to any difficult steps to secure myself.

Acuradude · 10-25-10, 06:08 AM

i will try to do what you all have suggested thank you and i dont do e-gambling nor do i look at porn i have noticed tho the only times i get this crap was when my ex-wife was on myspace and this time becuz my girlfriend was on myspace so i think it maybe in myspace also i tracked the ip addy that this crap is coming from its in Moscow, Russia. but thank you very much i will now try what you all have said.

Acuradude · 10-25-10, 11:10 AM

What i can do to protect myself from getting this crap again and i still have not fully gotten rid of it.

Trap05 · 10-25-10, 11:40 AM

Format and reinstall...use a hardware firewall (router) and keep your antivirus up to date.

DreamerBrian · 10-29-10, 03:12 PM

...also never go to myspace again.

RJARRRPCGP · 10-29-10, 08:51 PM

Quote:

Originally Posted by Trap05

Format and reinstall...use a hardware firewall (router)

QFT.

10-24-10, 04:24 AM	Thread Starter #1
Acuradude Member Join Date: Dec 2009 Location: VA usa	help me get rid of the rogue AV8!!! ok guys i got malwarebytes and im trying to get rid of av8 the damn thing just wont go away i have had this freaking thing i know atleast ten times well different variants and i am normally able to get rid of it. but not this time. __________________ AMD 8120 @ 4.0 at 1.25v and turbo @5.0 212+ cooler asus sabertooth 990fx TT Tough power 1350 watt 16gigs of kingston hyper x 1600mhz oc1666mhz Samsung f3 1 tb boot drive 256gb samsung 830 ssd MSI 6970 Lightning oc gpu 1040mhz mem 1450mhz Antec lanboy air blue windows 8 64 HEATWARE
	QUOTE Thanks

10-24-10, 04:44 PM	Thread Starter #2
Acuradude Member Join Date: Dec 2009 Location: VA usa	did i not give enough info or something please this and my email are the only sites i can go to __________________ AMD 8120 @ 4.0 at 1.25v and turbo @5.0 212+ cooler asus sabertooth 990fx TT Tough power 1350 watt 16gigs of kingston hyper x 1600mhz oc1666mhz Samsung f3 1 tb boot drive 256gb samsung 830 ssd MSI 6970 Lightning oc gpu 1040mhz mem 1450mhz Antec lanboy air blue windows 8 64 HEATWARE
	QUOTE Thanks

10-24-10, 06:56 PM	#3
SeanBest Member Join Date: Aug 2006 Location: Harrisonburg, VA	Can you get into Safe Mode? Get into Safe Mode and run Combofix. Run Malwarebytes in Safe Mode as well. Both of those should take care of it. If it's a rootkit you can also try TDSS Killer from Kaspersky. __________________ HEAT Motherboard --------- BIOSTAR TPower I45 CPU ------------------- Intel E8600 @ 4GHz Memory -------------- 4GB Corsair Dominator DDR2 1066 Cooling --------------- Thermalright Ultra 120 Extreme HDDs ----------------- Western Digital Velociraptor 300GB 10k RPM Graphics Card ------- MSI HD4870 OC Edition Soundcard ----------- Creative X-Fi Xtremegamer Case ------------------ Antec Nine Hundered Power Supply -------- OCZ ModXStream Pro 600W OS -------------------- Win 7 Pro x64, Mint Debian x64
	QUOTE Thanks

10-24-10, 07:20 PM	#4
DreamerBrian Member Join Date: Sep 2010 Location: Seattle	Sorry, Acuradude. I'm in the same shoes as you are. The more I learn from this casualty the more I will be able to assist others in the future. Brian __________________ Yayer.
	QUOTE Thanks

10-24-10, 08:17 PM	#5
TempliNocturnus Member Join Date: May 2006 Location: Where angels carry savage weapons	Use a bootable AV/anti-rootkit disk. I prefer this one. Combating viruses is always best done offline. __________________ Main Rig *Not overclocked yet for the sake of my electric bill* Case: Antec 900 PSU: PC&P Silencer 750 Quad, black CPU: i7 920 cooled with Scythe Mugen MB: EVGA 141-BL RAM: OCZ Gold XTC 1600 Vid Card: ATi 5850 Sound Card: Auzentech X-fi Forte Headphones: Beyerdynamic DT770
	QUOTE Thanks

help me get rid of the rogue AV8!!!

Internet Services

Website Development

Tech Hardware

10-24-10, 10:13 PM	#6
habbajabba Member Join Date: Oct 2005	If you do not have a backup image for just this reason you are braver than me. Then again, I don't use any av at all and never get infected. But, I wouldn't dare go a even a week without backing up a new install. __________________ Intel Northwood @3.06 GHz Biostar microatx 2 GB DDR2 675 Evga 8400gs Samsung 2232GW 2ms 22" Altec Lansing 2.1 w/remote Pioneer sata DVR-212D Burner Win7Ult 32bit WD cav blue 320gb Samsung F4 2tb WD cav blue 500gb CP850avrlcd ups
	QUOTE Thanks

10-25-10, 12:52 AM	#7
Ninth Member Join Date: Mar 2008	Security through obscurity; yay FBSD? Templi's advice is solid; but I have to ask, you've been getting so many varients, have you considered what is making you so targeted/is infecting you? Perhaps cut back on all the sketchy pr0n sites and e-gambling ^^ But in seriousness, if infection is this regular a thing; check your various potential vulnerabilities (see; browser, email client, firewall) and attempt to secure them, or at least identify the behaviors that are putting you at risk and change them. I can't recall the last time I got hit with anything of any noticible severity; and I don't go to any difficult steps to secure myself. __________________ CPU: E8400 Mobo: P5k Prem GPU: HD4850 Ram: Gskill 2x2gig DDR2-1000 PSU: Corsair 620HX HDD: 250 Gig barracuda CPU block: Apogee GT GPU block: MCW60 Pump:MCP655 Rad:MCR320 (3x yl med)
	QUOTE Thanks

10-25-10, 06:08 AM	Thread Starter #8
Acuradude Member Join Date: Dec 2009 Location: VA usa	i will try to do what you all have suggested thank you and i dont do e-gambling nor do i look at porn i have noticed tho the only times i get this crap was when my ex-wife was on myspace and this time becuz my girlfriend was on myspace so i think it maybe in myspace also i tracked the ip addy that this crap is coming from its in Moscow, Russia. but thank you very much i will now try what you all have said. __________________ AMD 8120 @ 4.0 at 1.25v and turbo @5.0 212+ cooler asus sabertooth 990fx TT Tough power 1350 watt 16gigs of kingston hyper x 1600mhz oc1666mhz Samsung f3 1 tb boot drive 256gb samsung 830 ssd MSI 6970 Lightning oc gpu 1040mhz mem 1450mhz Antec lanboy air blue windows 8 64 HEATWARE
	QUOTE Thanks

10-25-10, 11:10 AM	Thread Starter #9
Acuradude Member Join Date: Dec 2009 Location: VA usa	What i can do to protect myself from getting this crap again and i still have not fully gotten rid of it. __________________ AMD 8120 @ 4.0 at 1.25v and turbo @5.0 212+ cooler asus sabertooth 990fx TT Tough power 1350 watt 16gigs of kingston hyper x 1600mhz oc1666mhz Samsung f3 1 tb boot drive 256gb samsung 830 ssd MSI 6970 Lightning oc gpu 1040mhz mem 1450mhz Antec lanboy air blue windows 8 64 HEATWARE
	QUOTE Thanks

10-25-10, 11:40 AM	#10
Trap05 Member Join Date: Jan 2005 Location: Alberta, Canada	Format and reinstall...use a hardware firewall (router) and keep your antivirus up to date. __________________ CoolerMaster 690 Antec HCG 620w Gigabyte Z68X-UD4-B3 + i5 2500K Xigmatek Dark Knight S1283V w/crossbow G.Skill 8GB 1600 MSI GTX 560ti 448 1280MB Corsair Nova 64GB SSD Windows 7 x64 HP SP1 Corsair k60 & Logitech MX518 BenQ RL2450H 24" 1080p http://www.heatware.com/eval.php?id=60834 SteamID trm2006
	QUOTE Thanks

10-29-10, 03:12 PM	#11
DreamerBrian Member Join Date: Sep 2010 Location: Seattle	...also never go to myspace again. __________________ Yayer.
	QUOTE Thanks

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search