Page 4 of 19 « First<23456>Last »
Topic Options
#13878 - 11/04/08 10:05 PM Re: fucking virus bs [Re: Morgan]
Nemesis Offline
senior member


Registered: 09/01/07
Posts: 2175
Loc: US
The only way to know for sure is to wipe your drive. Depending on what folder it installs itself in, you might be able to move your pictures, movies, mp3's, etc on a disc, then wipe the drive. You'll have to re-install Windows and any programs you have, but it should eliminate the virus completely. Better call the Geek Squad!
_________________________
Nothing is sacred.

Top
#13882 - 11/04/08 11:04 PM How to remove! [Re: Morgan]
Disabuse Offline
member


Registered: 09/19/07
Posts: 220
Win Antivirus <date> is a strand of Smitfraud and Vundo viruses. No, you haven't gotten rid of it. Just because it hasn't popped up, chances are it is still there. And no, you don't have to wipe your drive to get rid of it.

For Windows XP/Vista:
1. Download, install, update and "quick scan" with Malwarebyte's Anti-Malware.
http://www.malwarebytes.org/
Once that finishes, depending on any other adware items it finds or other nasties, you might be prompted to restart the computer to finish removal. If this happens, reboot the computer and move on to the next step. If it doesn't ask for a restart, then move on to step 2.

2. Next is to download two smaller applications that specialize in removing Smitfraud and Vundo.
IMPORTANT: DO NOT RUN THESE APPLICATIONS IN NORMAL MODE!!! JUST DOWNLOAD THEM AND DO NOT OPEN THEM!!! RUNNING THESE APPLICATIONS IN NORMAL MODE CAN CAUSE YOUR SYSTEM TO BRICK
Applications to get: (direct link to the download file)
a. ComboFix - From BleepingComputers.com
b. SmitFraud Fix - From french server.
Download both these files and save them to your root directory of C:

3. Get your computer into safe mode. To do this, shut your computer off. When you start the computer, keep tapping the F8 key to bring up your boot options menu. You want to choose Safe Mode w/ Networking. You might or might not get a second menu asking you to choose your operating system. Just hit enter to move along. Log into your normal user account for windows. If you're not sure what it is, it is generally not the "Administrator" one, so choose the other one.

4. While in safe mode, open My Computer (or Computer in Vista) and run SmitFraudFix.exe on your C: that we downloaded from earlier. If you're using Vista, right click the file and "Run As Admin" (note, if you are using Vista, for this tutorial, always right click a file and Run As Admin). Hit enter on the splash screen to bring up your menu choices. Type 2 to clean and hit enter. Let it run and DO NOT do anything else on the computer. Takes about 5-10 minutes to run. Sometimes it will bring back the menu when its done, if it does, type "Q" to quit. If it doesn't, and you're stuck with a blank Safe Mode desktop screen, hit Ctrl-Alt-Del to bring up your task manager. From File, choose New Task (Run...). In the open box, type "explorer.exe" without the quotation marks to relaunch your desktop.

5. Next to run is Combofix from your C drive. Again, Vista, run as admin. If you get a prompt about Windows Restore Feature or whatever it is, just click No. Combofix will start scanning and removing vundo from your machine. You will see it go through about 70 or so stages or phases. Once it is done, it will say it is generating a log file. It is important that you DO NOT click your mouse or touch your keyboard while Combofix is running. It is a very intense program and can easily brick your computer if you try to do anything else while its running, SO DO NOT! Once you see the text file, it's finished. You can go ahead and close the text file and you should see the desktop. If you're still in safe mode, just go ahead and restart your computer to get back into normal Windows. If you don't see your desktop after combofix has ran, Ctrl-Alt-Del to bring up Task Manager. Select Restart from the Shut Down menu.

If you get stuck in a safe mode boot loop for some reason and can't get back into normal mode, go back to My Computer to your C: drive. Make sure you can view hidden/system files (Tools>Folder Options>View Tab>Select Show hidden files and folders>Apply>OK) Find the file named boot.ini and open it. It should open it in notepad, if not, right click the file and Open With and choose notepad.exe. You want to find the line, generally the last one, that looks like this:
 Code:
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" 
/NOEXECUTE=OPTIN /FASTDETECT /SAFEMODE :NETWORKING
The :NETWORKING might look different, I'm doing this from memory. You want to remove the ending of "/SAFEMODE :NETWORKING" so it looks something like this:
 Code:
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional"
/NOEXECUTE=OPTIN /FASTDETECT

Once you have removed the /safemode and networking options, File and Save and then close and restart the computer.

6. Once you're back in normal mode, run Malwarebyte's Anti-Malware again to make sure nothing was left behind. If mbam (for short) finds something and the results show a variant of WinAntivirus <date> then it didn't catch it. Try the steps one more time. If it still doesn't work, you got a nasty strand and it won't come out without a format. And typically, that variant of smitty/vundo won't come out with even that, you'll need to completely delete that hard drive partition and then a full format. But that is very rare.

If mbam doesn't find anything, it means the files are gone, but you still have one more step left. The files may be gone, but the option for it returning is still very high due to the fact that typical smitty/vundo opens a BHO on your system so it can restore itself.

7. Lastly, download HiJackThis to C:.
HiJackThis
Once its downloaded, go ahead and run it. You might get a message about it being ran from a temporary folder, this is fine. Just hit Ok or Continue. Once you get to the menu, click on Scan only, we don't need to save a text file of it. Let it finish the scan completely (progress bar at the very top). Once its done, you want to remove ONLY the lines that have both "(no name)" and "(missing file)" on the same line. A line might have (no name) but not have (missing file), DO NOT DELETE THESE! It is fine to delete the vice versa though. If a line has a name, but has (missing file), you can remove that as well. So, with that being said. go through the lines and put a check mark next to the ones with missing files. Once you get to the bottom, click Fix Checked and click ok on any messages you get that popup.

You're done. Good job. \:\)
_________________________
-Disabuse Conformity-
"Cu surdu, orbu e taci, campa cent'anni 'mpaci."

Top
#13901 - 11/05/08 08:48 AM Re: Neither fish nor fowl, The 600 Club blog.... [Re: Fist]
Jaguar Offline
stranger


Registered: 08/08/08
Posts: 24
Loc: OR, Multnomah
Bit confused about the post after reading the spamming gig when I read threads from admins. Whatever. Regarding the political talk about whatever is on our mind that was talked about a few back....

You guys all sound like the glass is half empty. Elections are over now so time will tell what Obama does.

Oh my god! A socialist extremist, liberal Dem has taken control and the dems have the majority of the house now. All hell is about to break loose. That means, people who make over $200,000 a year will see a 3 percent tax increase while people who make under $100,000 a year will get a tax break if my memory is correct. It may be less then that for the tax break. I forget. Anycase the tax break is a no less then $500 a year and increases with dependents by roughly $500 per dependent.

So, if you are not making $200,000 or more a year then why are you bitching about a 3% tax increase on the rich, when you are most likely recieving a tax break from Obama's plan. I understand why if you are a CEO of a multi million dollar company. Obama is not going to increase government but rather try to fix the current broken one that exists.

Let us not forget what Bush W did.

He increased government and government control over the people unlike anY Dem has ever done OR would ever do. BUSH W INCREASED GOVERNMENT NOT SHRINK IT.

Dem message is clear, government is of the people and for the people....oh my god socialists makaveli! Or is that the foundation of our country. Obama created "google for government," which is a transparent way for people with THE INTERNETS to view all government spending. How is this bad? Sounds really good to me.

GOP (grand old party) message is fear everything unless we inject religious bullshit or corporate propaganda.

Unless I missed something. Many years have passed by with the same message over and over again. I am a Satanist and I do not tolerate this crap. I can respect our differences though.

Cheers!


Edited by Jaguar (11/05/08 08:55 AM)
_________________________
Learn From the Past,
Provide for the future,
Live in the present.

Top
#13903 - 11/05/08 08:55 AM Re: Neither fish nor fowl, The 600 Club blog.... [Re: Jaguar]
Fist Moderator Offline
veteran member


Registered: 08/31/07
Posts: 1453
Loc: B'mo Cautious MF
Yep. ComboFix.exe is the way to go.

I run Spybot Search and Destroy first. Then full system scan Symantec. Then run ComboFix.

I also run Eraser on my HD once a week.
_________________________
I am the Devil and I am here to do the Devil's work.

Top
#13904 - 11/05/08 09:05 AM Re: Neither fish nor fowl, The 600 Club blog.... [Re: Fist]
Jaguar Offline
stranger


Registered: 08/08/08
Posts: 24
Loc: OR, Multnomah
Sounds like to much porn download. Save files to the windows folder to hide. Check all files with quality antivirus.

Simple.
_________________________
Learn From the Past,
Provide for the future,
Live in the present.

Top
#13908 - 11/05/08 09:40 AM Re: How to remove! [Re: Disabuse]
Morgan Offline
Princess of Hell
stalker


Registered: 08/29/07
Posts: 2956
Loc: New York City
Thanks, I will print this out at work tonight, and do it when I get home.
A backdoor paraproxy just poped up, and I have to reboot this cdomputer to get rid of it.
Thanks again,
Big Hug,
Morgan
_________________________
Courage Conquering Fear
Fuck em if they can't take a joke
Don't Like What I Say, Kiss My Ass



Top
#13909 - 11/05/08 09:43 AM Re: Neither fish nor fowl, The 600 Club blog.... [Re: Fist]
ceruleansteel Offline
active member


Registered: 10/15/07
Posts: 784
Loc: Behind you
 Originally Posted By: Fist
Yep. ComboFix.exe is the way to go.

I run Spybot Search and Destroy first. Then full system scan Symantec. Then run ComboFix.

I also run Eraser on my HD once a week.


Spybot is a piece of shit. What in the hell are ya'll doing that requires all that extra hassle? I'm lucky if I get a handful of adware infections...I've only gotten a virus once about three years ago and that was my own damn fault for trying to download programs the lazy way.

Although I admit, I do reformat semi-regularly. But that's a breeze because I keep everything on my slave drive and just unplug it when I reformat.


Edited by ceruleansteel (11/05/08 09:44 AM)

Top
#13913 - 11/05/08 11:15 AM Re: How to remove! [Re: Morgan]
Disabuse Offline
member


Registered: 09/19/07
Posts: 220
No problem Morgan. I thought for those interested, this small article is interesting.

Fake Anti-Virus Makes Russian Money

One Russian hacker made $158,000 in a single week from stupid Americans. Sad part is that they can't be prosecuted, Russian law protects them.
_________________________
-Disabuse Conformity-
"Cu surdu, orbu e taci, campa cent'anni 'mpaci."

Top
#15110 - 11/29/08 03:24 PM Re: How to remove! [Re: Disabuse]
Morgan Offline
Princess of Hell
stalker


Registered: 08/29/07
Posts: 2956
Loc: New York City
http://browse.sothebys.com/?browsesort=l...&sale_id=L08241

I swear, I really wish I could get my hands on 3 of those lots.
Just not sure when the time will come that I can blow $770,000. on 3 lots of manuscripts. Hell, my initals are even tooled on the cover of one of them.

Morgan
_________________________
Courage Conquering Fear
Fuck em if they can't take a joke
Don't Like What I Say, Kiss My Ass



Top
#16271 - 12/16/08 02:29 AM Re: fucking virus bs [Re: Morgan]
spiderbreeder Offline
member


Registered: 11/29/08
Posts: 300
Loc: Sydney,Australia
Morgan, I recently had the same thing on mu pc, and it kept freezing, not letting me on to my emails etc. Google"Antivirus 2009", it identifies it as Malware,download the anti-malware program and it'll show you how to clean it off , if you don't it just gets worse. Download mozilla firefox too, it's a safer way to browse, much better than Internet Explorer.
_________________________
REGIE SATANAS!

Top
#16588 - 12/20/08 02:45 PM Re: Neither fish nor fowl, The 600 Club blog.... [Re: Fist]
Morgan Offline
Princess of Hell
stalker


Registered: 08/29/07
Posts: 2956
Loc: New York City
http://www.msnbc.msn.com/id/28319199/

Looks like our old english guy with the funky blonde hair & short temper would end up in an American Jail too.

So, even cartoons of children who dont exist engaged in sex type acts will get you a prison term.


Morg
_________________________
Courage Conquering Fear
Fuck em if they can't take a joke
Don't Like What I Say, Kiss My Ass



Top
#16590 - 12/20/08 03:24 PM Re: Neither fish nor fowl, The 600 Club blog.... [Re: Morgan]
ta2zz Offline
veteran member


Registered: 08/28/07
Posts: 1552
Loc: Connecticut
We should remember this man they prosecuted also was downloading real pictures of kiddy porn... Therefore these other laws are being used to add more charges to this man to increase his jail time...

Kind of how they add tax evasion to a drug dealers charges for not acquiring the proper tax stamps...
_________________________
We are the music makers, And we are the dreamers of dreams. ~Arthur William Edgar O'Shaughnessy

Top
#19473 - 01/31/09 06:43 PM Re: t shirt hell [Re: Fist]
Morgan Offline
Princess of Hell
stalker


Registered: 08/29/07
Posts: 2956
Loc: New York City
T shirt Hell is going out of business.

I have bought shirts from them and liked the speed, and quality of service.
I will miss their fucked up shirts.

http://www.tshirthell.com/goodbye.php

Morgan
_________________________
Courage Conquering Fear
Fuck em if they can't take a joke
Don't Like What I Say, Kiss My Ass



Top
#19474 - 01/31/09 08:23 PM Re: t shirt hell [Re: Morgan]
Nemesis Offline
senior member


Registered: 09/01/07
Posts: 2175
Loc: US
I got their emails last week, I need to decide on some shirts to buy before they close up on Feb. 10th. They also mentioned that their customer service would continue for 60 days after closing, which is quite thoughtful. Start right-clicking and saving all of those designs, to relive the memories...ahhhh!

_________________________
Nothing is sacred.

Top
#19480 - 02/01/09 12:28 AM Re: t shirt hell [Re: Morgan]
ta2zz Offline
veteran member


Registered: 08/28/07
Posts: 1552
Loc: Connecticut

"I started this company in June of 2001, nearly 8 years ago, with the intention of producing the best satirical, the most controversial, the funniest t-shirts on the internet."

"I'm done. I'm finished. I can't take the stupidity anymore, so I'm leaving and I'm taking my website with me."

"Now, I can't say I'm surprised we're getting hate mail from people who have nothing better to do than to start half-assed campaigns because of their lazy, just enough passion for an email, ideals towards a misguided cause."

I hate a whiner... This just sounds like a whining quitter... Oh I wanted to be the most controversial t-shirt company but I do not want the drama that doing so will bring...

Somebody right click and save the designs to redraw and change ever so slightly... Tee-shirt hell or t-shirt heck.com anyone?

Perhaps it is time to reopen a cafe press store...

~T~
_________________________
We are the music makers, And we are the dreamers of dreams. ~Arthur William Edgar O'Shaughnessy

Top
Page 4 of 19 « First<23456>Last »


Moderator:  Woland, TV is God, fakepropht, SkaffenAmtiskaw, Asmedious, Fist 
Hop to:

Generated in 0.028 seconds of which 0.003 seconds were spent on 28 queries. Zlib compression disabled.