My Spy Sweeper, which is usually excellent, tells me there is nothing wrong with my PC. :rolleyes:
I’ve been attacked with something called AV Guard and my system is totally fucked.
HELP!
My Spy Sweeper, which is usually excellent, tells me there is nothing wrong with my PC. :rolleyes:
I’ve been attacked with something called AV Guard and my system is totally fucked.
HELP!
I’m off to bed but Malwarebytes (from malwarebytes.org) is usually pretty good. My usual routine for fucked computers is…
download
update
run
reset
run
reset to safemode
run again
reset
run again
lather rinse and repeat a few times of running in regular and safe mode until it comes up clean a few times in a row.
Same thing for Ad-Aware and Spybot (if the computer isn’t ancient you can try and run two of them at the same time to speed things along but doing that along with a virus present has a bad habit of grinding things to a halt)
How am I suppose to download that when I can’t get on the internet? It’s blocked.
Right now I’m using my old lap top and hitching a ride on someones WIFI.
Transfer it on a jumpdrive.
Edit, download all three (malwarebytes, AVG and spybot) put them all on the jumpdrive, transfer it then toss it like you just stuck it in an old hooker.
Run MWB and once you can get back on the internet, update it and run it again. Also if you can get into the Task Manager you might be able to kill whatever is keeping you off the internet. You might also be able to get to the internet from Safe Mode.
It won’t let me open the task manager.
Also, why did my spy sweeper miss this? It get’s updated constantly.
It’s just not in your Spy Sweeper’s definitions yet.
You’re probably going to want to reboot to Safe Mode and just start there. If it knocked out the internet and Task Manager, you’re already in pretty rough shape. Luckily, IME, viruses don’t seem to do as much damage as they used to do 15 years ago. Most of them seem to be more obnoxious then destructive.
cough
http://boards.straightdope.com/sdmb/showthread.php?t=538187
Do you have a backup?
By the sound of it you’ll be better of with a clean install.
Try running MSCONFIG in safe mode and look at the “Start Menu.” Uncheck the virus process that is starting and note the name. Restart again in safe mode and go hunting for the location of the files. Eventually you can run “regedit” and clear it from the registry.
AV Guard is brought to you by the same people that created the Security Guard spyware program. Here is a removal guide for Security Guard that should also work for AV Guard:
I’ve generally found over the years that when you get a computer this screwed up it’s fastest and easiest to just wipe the disk and re-install. You do have backups of important things, right? If not, I’d recommend booting a live linux cd (immune to windows nasties) and use that to copy important files off of your drive before wiping it.
I would disagree if the computer is an older XP model, which has hundreds of updates to download and install. That by itself takes longer than cleaning the vast majority of spyware infections.
A couple of tools that I have used with success in the past that might help are
AVG Rescue CD
Microsoft Standalone System Sweeper
Both of these require you to download and burn to a CD on a clean system. Then boot from CD on the infected machine.
They are both pretty good at connecting to the internet on a variety of hardware to get their updates once loaded.
Good luck
True, but, depending on how pervasive the infection is, it might be the safest / surest way to fix the problem. Hopefully not needed, however.
For what it’s worth, our home PC had an infection this past summer that got past AVG and Malwarebytes. Malwarebytes didn’t find anything. AVG would do its daily scan, say “quarantined these files!”, I’d delete the virus vault contents, rerun AVG and get “all clear”, and the next day there would be more viruses detected.
Turned out to be a rootkit, a variant of a fairly nasty one. The damage was limited because it was my daughter’s account (which doesn’t have admin rights), but I wound up going to the Malwarebytes forum and getting help there. Took most of a week mainly because I had other stuff, like life, getting in the way of my computer time.
I prefer to fix the problem. So far I have been able to fix everything quickly. I have even downloaded a virus to test on. Fortunately, I have enough friends that get sick enough to keep me busy. The Security Guard/AV Guard is easily disposed of. No need to reload and start a bunch of stuff over again. If I ever did give up the fight, it takes me eight minutes to copy back a working clone disk and bypass all that work. I believe in a belt and suspenders rather than a noose.
Do you run a limited or admin account when using the web?
I suggest Microsoft System Sweeper: Bing
You need to burn it onto CD and boot from that CD.
Thanks for all the posts.
Somehow I was able to get on line using a different search engine I had in my programs list, and update my Norton anti-virus and kill it. I don’t know why my Spy sweeper anti-virus/spyware software didn’t catch it. I tried updating that too but their page said mine was up to date. They need to get on the ball more I guess.
My research says these things are coming out of Russia. Why? Why is some MOFO in Russia sending this crap out. And why don’t we occasionally hear about Russian storm troopers raiding some place these things are originating from and shooting everybody inside. It would sure make me feel better.
Because some other mofo made $100 million dollarsdoing it, and now every Russian mother’s son want in.
Because Russian stormtroopers like money, and it is good for the economy to have that much foreign cash rolling in. Besides, I also read that many of these programs check the native language setting of the target computer, and if it is Russian, it ignores the computer. They don’t foul their own nest.