Amateur mistake leads to PC infection

Discussion in 'Windows, Linux & Others on the Mac' started by floyde, Dec 16, 2008.

  1. floyde macrumors 6502a

    floyde

    Joined:
    Apr 7, 2005
    Location:
    Monterrey, México
    #1
    Shame on me... I have a degree on Computer Systems Engineering but I still fell for that stupid trick. So I get a message from a friend on facebook with the word "wow" and a link to a video. So I click on the link and the link says that it needs the latest version of flash. For some stupid reason I didn't find it odd that it started downloading the "latest version" of flash by itself.

    So I clicked on the setup file and realized the extent of my stupidity :(. Now I get a shutdown message at random times :mad:. I'm running a virus scan with norton but it hasn't removed that virus yet. Has anyone heard of this one? Any way to remove it?
     

    Attached Files:

  2. Abstract macrumors Penryn

    Abstract

    Joined:
    Dec 27, 2002
    Location:
    Location Location Location
    #3
    Yes it does, but then again, I don't have a degree in Computer Systems Engineering. :p It doesn't make you immune, but I'd certainly feel a bit embarrassed to tell anybody what happened.
     
  3. DYER macrumors 6502

    Joined:
    Oct 4, 2008
    Location:
    London, UK
    #4
    tbh seem like u cant do a system restore ie if u havent shut down or gone into hibernation in that session do a hard shutdown then boot in safemode and system restore to last restore point but i think it may be worth reinstalling xp - lets face it xp needs re installing periodically anyway
     
  4. sangosimo Guest

    sangosimo

    Joined:
    Sep 11, 2008
    #5
    virus scans don't work well for removing trojans. It has probably attached itself to a system file. Format your computer. If you were using vista uac would give you a warning and let you know that this program is not signed by adobe.
     
  5. duncyboy macrumors 6502a

    Joined:
    Feb 5, 2008
    #6
    Could this be the same one? Some possible answers there. Don't beat yourself up over it, we've all done daft stuff on our computers- think of it as a learning experience ;)
     
  6. No1451 macrumors 6502

    Joined:
    Oct 20, 2008
    Location:
    Ottawa, ON
    #7
    This is where I usually hit my PC with the reinstall-of-death. Then I hope that none of the files on my Drobo are affected(goodbye 2tb of data).

    Unless you have files that you absolutely need, I'd recommend a reinstall, if absolutely necessary to save files, it might be a bit more difficult.


    /rant
    I would love to round up the jackasses who write these things and have their fingers removed so they can't make crap like this anymore, I dream of a world where writing viruses/trojans/botnets is punished harshly.
     
  7. waffle911 macrumors regular

    Joined:
    Dec 22, 2007
    Location:
    ⇧⌥K = 
    #8
    To prevent something like this from happening, I highly recommend Online Armor (free version). There isn't any malware as far as I'm aware that can get through it when it's properly configured. Also, spybot: search and destroy. Both are absolutely essential security tools for PC. Norton, not so much. Hogs system resources, near impossible to uninstall, and not as effective as it could be. But sometimes you really do need an anti-virus, and not just a firewall and anti-spyware. But Norton's not the way to go, IMHO.

    Don't forget Ccleaner to fix registry issues and clear the system cache, and to easily uninstall programs and stop certain startup processes.
     
  8. yellow Moderator emeritus

    yellow

    Joined:
    Oct 21, 2003
    Location:
    Portland, OR
    #9
    Not me! :cool:
     
  9. iParis macrumors 68040

    iParis

    Joined:
    Jul 29, 2008
    Location:
    New Mexico
    #10
    That sucks.
    I believe I have heard about this and it's a growing problem, that particular virus I mean.

    EDIT: Maybe can back up all your documents then F Disk your machine.

    OMG. I <3 your avatar.
     
  10. floyde thread starter macrumors 6502a

    floyde

    Joined:
    Apr 7, 2005
    Location:
    Monterrey, México
    #11
    I'm keeping it low profile at the office for now :eek::p

    That's the one, except that this is the upgraded version. That one's bolivar 28, mine's 40. At least I think that I was able to stop the auto-shutdown by killing that process on the task manager. Norton is taking forever...

    Anyway, this is my work's PC, so I only have whatever software they bought licenses for. That leaves out all the fancy anti-spy stuff, unfortunately. From what I've been reading, the virus isn't that hard to eliminate, so hopefully I wont have to format the damn thing. It's a good thing that I only use my trusty Mac for online transactions and credit card stuff.
     
  11. Consultant macrumors G5

    Consultant

    Joined:
    Jun 27, 2007
    #12
    Um, don't visit facebook from work? Don't install anything automatically? Use SAFARI or firefox instead of MS internet virus transmitter/explorer.

    Lol the spammers are making you do catchpa for them to scam more people.
     
  12. floyde thread starter macrumors 6502a

    floyde

    Joined:
    Apr 7, 2005
    Location:
    Monterrey, México
    #13
    :eek:

    I was using Chrome, wouldn't touch exploder with a 10 foot pole :eek:
     
  13. Rodimus Prime macrumors G4

    Rodimus Prime

    Joined:
    Oct 9, 2006
    #14
    sorry but the safari/firefox or hell OSX would not protect you from a trojin horse. This type of "virus" uses human stupidity to infect a system.

    There is not really anything Microsoft or apple could do to protect against human stupidity.
     
  14. Melrose macrumors 604

    Melrose

    Joined:
    Dec 12, 2007
    Location:
    In a sidewalk.
    #15
    Kind of like that virus called "Silverlight" or whatever that websites keep telling me to install...

    You're the best? Okay.. 'cause I was wondering :D
     
  15. sangosimo Guest

    sangosimo

    Joined:
    Sep 11, 2008
    #16
    silverlight is soo much better than flash and it is the reason that osx can use netflix live streaming.
     
  16. mkrishnan Moderator emeritus

    mkrishnan

    Joined:
    Jan 9, 2004
    Location:
    Grand Rapids, MI, USA
    #17
    Have you already tried an anti-malware tool like AdAware or Windows Defender?
     
  17. steviem macrumors 68020

    steviem

    Joined:
    May 26, 2006
    Location:
    New York, Baby!
    #18
    Is this a virtual machine or a Boot Camp windows install?
     
  18. Consultant macrumors G5

    Consultant

    Joined:
    Jun 27, 2007
    #19
    Safari prevents suspicious files from automatically opening and installing itself, instead it informs the user that an application has been downloaded.

    Seems like it's every month that a new critical exploit for Microsoft IE is announced. For example:
    http://news.bbc.co.uk/2/hi/technology/7784908.stm

    -------

    Don't do Norton.

    Install AVG
    http://www.download.com/AVG-Anti-Virus-Free-Edition/3000-2239_4-10320142.html
     
  19. mkrishnan Moderator emeritus

    mkrishnan

    Joined:
    Jan 9, 2004
    Location:
    Grand Rapids, MI, USA
    #20
    Once again...

    Anyways, once again also, check out a tool focused on malware, like AdAware, Windows Defender, or the like. Can't make a more specific recommendation, sorry, as the last time I dealt with Windows malware was in the 90s.
     
  20. bobfitz14 macrumors 65816

    bobfitz14

    Joined:
    Oct 14, 2008
    Location:
    Massachusetts
    #21
    so...i'm not the only invincible one in this world after all.
     
  21. yatman macrumors member

    Joined:
    Oct 11, 2005
    #22
    Ditto

    I feel for you man.

    I know better too and fell for something similiar. I got this supposed youtube video link from a friend and the email even referred to his nickname which only his friends know (I guess not anymore). I was then asked to update my version of flash which then proceeded to install this application that basically hosed my IE browser, Firefox, Safari and chrome. It blocked me from going to MSN.com and it took me to this "anti-virus/spyware" detection utility website. When I googled that website, the results were blocked by this infection.

    Had to redo my PC to get rid of it. Good thing I keep all my data on an external drive. Just lost time reinstalling windows, getting latest drivers, installing all the windows updates and my apps.

    Thing that sucks is I had AVG free and Windows defender running. I guess you get what you pay for. Looks like i'll be investing in a Norton, McAfee, or something.

    Oh - and Consultant - I was using Firefox when this happened. So it wasn't IE that caused this!! Man, you just gotta love mac and anti-microsoft people.
     
  22. Melrose macrumors 604

    Melrose

    Joined:
    Dec 12, 2007
    Location:
    In a sidewalk.
    #23
    95% less features and 80% more space. Yeah. Much better. Silverlight is M$'s attempt to bring a redundant plugin to market in the opes that ten years from now, if they keep throwing money at it, it will turn a profit and compete with Flash. I Don't see developers using it large-scale for quite a while now.

    I'll stick with Flash until Silverlight manages to grab a healthy chunk of the market.
     
  23. yatman macrumors member

    Joined:
    Oct 11, 2005
    #24
  24. floyde thread starter macrumors 6502a

    floyde

    Joined:
    Apr 7, 2005
    Location:
    Monterrey, México
    #25
    I fixed it with Malwarebytes. I'll do a clean install at the end of the year though, just to make sure there's no spy stuff lying around.

    It's my work's Thinkpad PC.

    Yeah Explorer is the least secure browser of all, but in this case it was me who willingly clicked on the setup file :eek:
     

Share This Page