- Joined
- Aug 27, 2005
I just finished up fixing a system for my neighbor's sister-in-law, spending all night (after a 13 hour shift at work) repairing what was done to her poor poor Dell.
She claims her oldest child was downloading a game cheat and he clicked on a baloon pop-up that looks exactly like a windoze update tray icon/balloon...it gave them a hosing of a lifetime.
First the pop-up says "Your computer is infected" and "click this balloon", and then it proceeds to open a rather convincing looking anti-spyware program that's actually a trojan downloader that put 128 pieces of spyware, 55 trojan horses (many duplicates of ~12 different ones), and 77 virus'.
That computer was so hashed by the time I got it, I couldn't install anything (it changed privledges) and it locked out the administrator, and it replaced IE with it's own skin that included a "spy-ware" tool bar that just refired it's download spree.
I finally got into it using the freestanding utilities from AVG's dload page (burned to CD), in combination with an old trusty win98 boot floppy that has CD drivers.
As soon as I got on the net to look for help though, it would just reload all the stuff that AVG took out because the control center wouldn't stay running.
I had to uninstall IE and reinstall it from my own disk to get that back to normal.
Even without the net connected, it would all reinstall on the next boot despite a thorough registry cleaning and restore turned off!
Anyway, I found my way to Kaspersky's free trial and finally got it (dial-up with a dloader hogging it took 3 hours!). That would stay running once I cleaned it in safe-mode.
Then on the wife's lappy (my monitor was on the sick system), I found this wonderfull gent and company... http://malwareremoval.com/plog/index.php?op=ViewArticle&articleId=85&blogId=3
Bless Nick and Noahdfear!!!!
Followed the instructions to the letter, and violla! one computer back from the brink of reformat hell.
And that Ewido did an awesome job too, far better than AdAware did, though the scan was long.
It seams I'll be buying some new software, and so will my customer.
By the way, I uninstalled Kaspersky's and Ewido from her machine...don't wanna sell someone else's handiwork. I just left her with links to their pages on the desktop.
Her machine turned out to be totally unprotected. The only thing I could find on her machine was a version of MacAfee's Security that only had a stoopid link to an INTERNET SCANNER!...one lamer award to Dell.
Now for some sleep...30 hours awake makes us old farts cranky
She claims her oldest child was downloading a game cheat and he clicked on a baloon pop-up that looks exactly like a windoze update tray icon/balloon...it gave them a hosing of a lifetime.
First the pop-up says "Your computer is infected" and "click this balloon", and then it proceeds to open a rather convincing looking anti-spyware program that's actually a trojan downloader that put 128 pieces of spyware, 55 trojan horses (many duplicates of ~12 different ones), and 77 virus'.
That computer was so hashed by the time I got it, I couldn't install anything (it changed privledges) and it locked out the administrator, and it replaced IE with it's own skin that included a "spy-ware" tool bar that just refired it's download spree.
I finally got into it using the freestanding utilities from AVG's dload page (burned to CD), in combination with an old trusty win98 boot floppy that has CD drivers.
As soon as I got on the net to look for help though, it would just reload all the stuff that AVG took out because the control center wouldn't stay running.
I had to uninstall IE and reinstall it from my own disk to get that back to normal.
Even without the net connected, it would all reinstall on the next boot despite a thorough registry cleaning and restore turned off!
Anyway, I found my way to Kaspersky's free trial and finally got it (dial-up with a dloader hogging it took 3 hours!). That would stay running once I cleaned it in safe-mode.
Then on the wife's lappy (my monitor was on the sick system), I found this wonderfull gent and company... http://malwareremoval.com/plog/index.php?op=ViewArticle&articleId=85&blogId=3
Bless Nick and Noahdfear!!!!
Followed the instructions to the letter, and violla! one computer back from the brink of reformat hell.
And that Ewido did an awesome job too, far better than AdAware did, though the scan was long.
It seams I'll be buying some new software, and so will my customer.
By the way, I uninstalled Kaspersky's and Ewido from her machine...don't wanna sell someone else's handiwork. I just left her with links to their pages on the desktop.
Her machine turned out to be totally unprotected. The only thing I could find on her machine was a version of MacAfee's Security that only had a stoopid link to an INTERNET SCANNER!...one lamer award to Dell.
Now for some sleep...30 hours awake makes us old farts cranky
Last edited: