Not to gloat, but this the reason I have 2 Macs and will never have anything but.

These viruses, worms etc are not only costly but damm frustrating. I've had them in pc days.

Dale

 

A pop-up occurs to tell you that you have a virus threat. Also tells you to run a full scan with whatever AV program you are running on your machine. As soon as you hit the "close "X"" on the window, you will be sent to a bogus site
Gary,

Curious. I've been getting frequent (once a week) pop-ups telling me I have a virus and that a full scan is required, then the original window goes to a folders-type display (undoubtedly bogus) but it hasn't infected me even though I hit the "X" immediately.

Maybe there's another variant running around.

 

I've not seen this...then again, I have all popups blocked. Perhaps that is a "preventative"????

 

Pete,
It's probably a variant. This virus has been mutating, so be careful.

Mike,

I have pop-ups blocked also and it STILL got through. Google this little monster.

Everyone,

My computer guy here in Burbank has had fifty machines in for repair from this virus since Christmas!

 

You can normally remove it, but you need to start in safe mode, and get the remover from malwarebytes.com ...

Very nasty, often it's less time to save the information and rebuild the system than to remove it. I have a sideline business to "fix" computers, and this is the worst one out there, and has been for several years, the old version was also called "Windows 2009 xxxx", the title varied.


I had the tip for this on my computer page.


http://www.elmassian.com/electronic...inmenu-281

It's actually a program that is not too difficult to delete, but the damage it causes to your windows settings is really nasty, all kinds of things are broken after the removal, and again, it's usually more work to fix these things than clean reinstall.

But I do whatever people want. It's their decision at $50 an hour.

Regards, Greg

 

I got the viruus once on my computer, cost me $150 to get it off my hard and lost
everything I had on it. It has tryed to come back 3 or 4 times and was able to get
through again, I was ready this time. Make sure that you go to http://www.pctools.com/ and
get the Spyware Doctor with antivirus, this is the only tool I have found that will get
ried of it. If you wait and try to buy PCTOOLS after you get it, just take it back to the
computer man for it will not let you download it. The cost was $29.00 when I got it
last year, cheaper than taking it in to get fixed.

Ken owner of K&K the road to nowhere

 

I've seen variants of this several times at work, and have had to spend some time dis-infecting the affected machines - just had to do one a week or two back. First off, Internet Security 2010 is NOT a "legitimate" program - a quick Google search confirms that. All these programs will infect the machine and pop up window after window, making the machine essentially unusable. They infect the particular user's account who downloaded the damn thing in the first place. This is another real good reason to only have ONE password-protected Administrator Account and do all your work, browsing, email, etc. with a Limited User account. In case of infection, you can log in via the Admin account and do the clean-up. It also aids in blocking attempts to modify the Registry, though not always it seems.

The offending files generally store themselves in the Documents and Settings|(User Account Name)|Local Settings|Temp folder (a hidden folder so you have to set Windows Explorer to show hidden folders) or in the Documents and Settings|(User Account Name)|Local Settings|Temporary Internet Files folder, or both. Other Trojans and viruses also sometimes make use of the Documents and Settings|(User Account Name)|Local Settings|Application Data folder. To eradicate these suckers, first you need to empty the two folders mentioned first (delete everything in them, not the folders themselves) and take a hard look at whatever is in the Application Data folder mentioned.

You then need to go into the Registry and check every entry in the Run areas (and there are a lot of them). Sometimes I need to Google entries in these areas to see whether or not they are valid apps. It can take a couple of hours to go through all this, but it's better than buying a new drive and re-loading everything onto the machine, which would take even longer.

Given time, the AV programs will detect and block this one as well.

BTW Mikey, if you ever get one of these, having pop-ups blocked will make no difference.

 

http://internet-security-suite-revi...eview.html/

The NEWEST one from AVG IS 2010, not this version 9.0


EDIT: I just went to AVG's site and Internet Security 2010 was taken down. It was there just before Christmas. Interesting to say the least. That's how I got snookered into this virus. The virus even uses the same logo as AVG, but switches the positions of the colors.

 

How does one actually "get" one of these viruses?
where do they come from?

I guess I have been lucky..I think i have been on-line pretty much every day for the last 15 years, and I have never had a virus..
(knock on wood.)

I know you can get some via email, but my spam problem was solved ages ago by yahoo and google mail "bulk" folders..
so I dont see spam anymore..
so how else does one get the virus? from webpages?

Scot

 

While this is a nasty one to remove, there is no reason that you lose anything on your hard drive... it does not attack anything but windows files.

If you get this and the repair guy says you will lose everything, get another guy.

Easiest way is to take the hard drive out and put in uninfected machine, copy the files you want and reinstall windoze from scratch.

Having Spybot installed and the resident "teatimer" installed usually blocks it, but many people just see this and let the virus install.

I can get it out of a machine in about 15 minutes, but repairing all the other damage to the registry is where the work is, at least in my experience.

When someone gets this on their work computer, it's because they have been surfing around to nasty sites.

Regards, Greg

 

I've been fighting this thing through most of 2009; I have to maintain my family's 5 computers (2 desktops & 3 laptops) that are in constant use.

The encounters we've had with this monster has been through ads running on supposed "safe" sites...you don't have to go to taboo sites to encounter it. I've tracked most of the sources to the domain "burstnet.com" and blocked it from all browsers.

The best luck I've had so far has been by blocking the suspect domain, and using SpyBot & SpywareBlaster (both free). Be sure to download updates every week, if not more frequently.

This combination has not allowed any further occurrences for us. Hope this helps.

 

How does one actually "get" one of these viruses?
where do they come from?You get them from web sites. Several months back I was writing software to run a robotic shear for transformer laminations. I went looking for a cool little "robot" icon for it via Google, and one of the sites I went to tried to infect my machine with one of the variants as soon as I went to it. So it doesn't have to be a "nasty" site as Greg says. I caught it before it got in and avoided infection.

 

One does not have to cruise nasty sites to get this or any other virus. A few weeks ago I was on my Yahoo.com homepage and the virus tried to download.
My Avast AV blocked it and aborted the connection.
It was the weekend and it was several hours before Yahoo cleaned up their portal.
Hackers spend a lot of time trying to get their malware on "trusted" sites.

As for Mac users, you are not immune to viruses. There are Mac viruses out there. Just not as many. If everyone was using a Mac, you'd be having the same problems Windows users have. As Linux and Mac use grows, so will your infection problems.

Ralph

 

I spent 2 hours dealing with this thing last night. It came from Photobucket, I think... The only windows open when everything went nut was there and here. It got past my Avast, did NOT show up on the virus scan, OR in the add/remove programs list. And Spybot couldn't do anything with it either. It's scamware, not really a 'virus', per se.


This is a nasty one (ie annoying as H#ll, but not I think, actually 'harmful' if you catch it early), with multiple pop-ups every 5-10 seconds, it even changes your wallpaper... Rather fortunately, I was able to get ahold of my friend who works for an ISP in Cali. It took signing up at bleepingcomputer.com and downloading and running their 'ComboFix' to regain control. They say not to run it without someone on their site to supervise you... but I had Andrew along and he's used it before. It still took about 20 loooooooooonnnngg minutes for it to corral the thing.


So far, everything seems to work this morning.

 

Posted By Ralph Berg on 17 Jan 2010 07:22 AM



As for Mac users, you are not immune to viruses. There are Mac viruses out there. Just not as many. If everyone was using a Mac, you'd be having the same problems Windows users have. As Linux and Mac use grows, so will your infection problems.

Ralph

Ralph, some individuals have better functioning immune system than others. Apparently, the same can be said about computers' OS's. Best wishes, Zubi

 

I've been following this now old thread and wanted to tell y'all about my experience. Twice now, when I have tried to download an attached pdf file, I have received a popup that reads, in its entirety:

"Virus problem. Protected my MapQuest Navigator. Unable to scan attachments. The affected file(s) has not been scanned because it may be password protected or corrupted. (Tell me more). Please click ok to continue downloading. And get three free cedit scores today. Equifax. Get your score"

Then in small print along the bottom edge it says:

"Disclaimer, McAfee Virus scan may not be able to detect all known viruses and variants. For more information read AOL's terms of service."

I don't know if this is just a legitimate (but annoying) way by AOL and others to get you to open their crap, or if it is a cleverly contrived way to download a bug. Anyway, rather than trying to X off or close, I have been logging off AOL and completely ignoring the e-mail.

What do you guys think?

 

Did you get an anti-virus program from AOL?

Are you "running" AOL?

Have you scanned your system? With what?

Try downloading using a different browser?

Answer these for starters... (much more info required to diagnose this)

Regards, Greg

 

BTW, there are mac virus's so you guys aren't out of the woods, just not very many of them.

 

I have about 6 Red Hat servers. I get security updates DAILY... linux/unix is the next frontier of attack, mostly server attacks now, but works fine on workstations too... the servers are the big targets... It's just a matter of time..

Regards, Greg

 

Is it best to store all your stuff on external drive for easier reinstall when this happens?

 

This thread is going all over the place! Well, I guess we solved the question on Windows Internet Security 2010.

Joe brought up his own problem. (waiting on his answers)

John wants to know an answer on another topic. (John, the answer is "it depends"... from my point of view there is much more involved, almost every situation is different)

My best advice is have a suite of tools, and get a knowledgeable guy to set you up so the "Suite" works together, and then keep them updated and working, and check that they are working.

I surely cannot make anyone an expert in this in a few posts. And it's not simple anymore. And I believe it's getting worse.

Regards, Greg

 

Greg, Thanks for your questions.

Because I am one of about five people world-wide who shells out money to have full AOL, not just a place to get my e-mail, I assume I have all of their security bells and whistles.

Most of the time I do run AOL, since all of my favorite site cookies are located there. But I can go right to IE.

I have scanned my system, but not since those two episodes, with Norton Internet Security 2010, which I bought through Amazon and downloaded, primarily because I kept getting popups telling me that my orginal Norton had expired. When I did run it, at launch, it found no viruses, etc

As I said above, I guess I can just go on whatever it is that IE opens with (I'm not sure if by default it is AOL).

The situation here on Maui is that our condo, being part of a rental operation, requires you to sign on ot Oceanic Cable (that's our hookup) every time you turn on the computer. This is pretty annoying, since if you are not logged on to IE that day, and you try to do something like download Norton, which wants to go to its site, everything stalls out, as the program doesn't know that there is no link to the outside word without approval (i.e. loggin on to Oceanic). Thing is, I can see them doing this with the touristas, but we live here!

For what it's worth, the pdfs I tried to open in the download file were from legitimate firms--Mazda Motors, and Oceania Cruise Line. One came from a Mazda PR guy, the other from our travel agent at AAA.

 

Is it best to store all your stuff on external drive for easier reinstall when this happens?
John,

Almost everyone needs to keep a copy of their folders and files on a separate, external disk drive. For easier re-install, as you say, but also for portability and for recovery from a system bug. And for installation on a new computer when you finally get one.

I have 3 external drives (but then I was in the biz.) A 75GB portable that I take with me to plug into my laptop, a 350GB on my computer that stores video [no room on my primary disk for hour-long home movies,] and a 1TB (1000GB) external drive to back up my 350GB and the video.

 

For the Mac people, who still believe no viruses or attacks: http://blogs.zdnet.com/s...trong>

On external drives, they have the advantages above, but they also have disadvantages, portablity (if you have a laptop), and speed... the USB interface is much slower than your internal drive connection.

I use them to back up sometimes, but usually only for computer repairs... I have several computers in the house, and large enough drives to back one up to another... critical machines have mirrored or raid 5 drive arrays.

Regards, Greg

 

prevx 3.0 is able to get rid of that worm.