I spent all day trying to eradicate a rather new trojan from the Soviet Union that drops a piece-of-shit malware program called Antivirus 360 off the younger sister’s and her husband’s computer, without complete success. Without going into the long, sordid details, I tried both manual removal suggested by various websites I semi-trust and a McAfee scan with the current definition, one that supposedly eradicates the fucking problem, both with very-limited success.
The “good” news – I did get rid of the end result (the Antivirus 360 install), and McAfee did (allegedly, at least) get rid of the initial downloader. Also, as long as IE isn’t opened, the computer is more-or-less stable.
The bad news – The intermediate program is still hooked into IE like a black lab pup on her favorite chew toy.
Round 2 is scheduled for tomorrow, and I’m bringing in some bigger artillery if the overnight “safe mode” scan doesn’t do the job. That may well mean no Scramble or any other posts (I sure as hell don’t want to log into anything on an infected system).
Is this lovely POS acquired in the usual fashion–clicking on an email attachment?
Dunno exactly how they picked it up. I do have to pound them for using a file-sharing program that’s been associated with it though.
Use HijackTHIS to clean up the IE registry entries that keep re-installing malware…
-jjg
DailyScoff.com
See my blogpost re PhotoFrames malware. CW also touts MS’ recent release of a malware-removal tool, FWIW…
Another reason I don’t let my kids do file-sharing (nor do I.) “Free” usually has a cost.
My daughter got this virus and had a heck of a time getting rid of it but was successful in the end by editing the registry. She got the virus from loading some software from someone else\’s computer, so she believes.
Hijackthis can set Windose to remove stubborn files on start up. The publisher advises extreme caution when removing suspect files.
If you have any reservations about which entries to remove, paste the HijackTHIS scan results in this thread and tap me on the shoulder.
I’d be happy to let you know which items you can safely blow away…
-jjg
DailyScoff.com
ok i had this same issue with the effin antivirus 360. it kept blocking all of my internet sites even if they were safe. I know i never downloaded it. So i knew it was crap from the start. i spent forever trying to get rid of it, but it never showed an uninstall or stopped running long enough to delete. every other spyware remover or antivirus program wanted money. so I FIXED IT MYSELF.
what i did was in the task manager i found the process and stopped it. Then I deleted any and everything that was part of it. the icon on the start panel by the time, the folder which was in C:programfiles/antivirus20090av360
emptied the recycle bin, restart the computer, then i had to reinstall internet explorer with my back up disk. all is well now and there is no sign of infection. I didnt pay anyone to fix it either.
i just hope it works for good.