The Mother Board
SCAREWARE PROBLEM........
Goto page 1, 2  Next
 
Post new topic   Reply to topic    The Mother Board Forum Index -> Virus/Spyware/Security
View previous topic :: View next topic  
Author Message
Strider
Brown Belt
Brown Belt


Joined: 30 May 2003
Posts: 399

PostPosted: Sat Dec 17, 2011 12:47 pm    Post subject: SCAREWARE PROBLEM........ Reply with quote

Guys,

As always, I appreciate any advice you folks throw out so I hope you have some advice for this one.

Recently I started getting 'XP 2012' scareware pop-ups and can't get rid of it.

I tried doing a system restore to an earlier point and that didn't work. Next I tried going into 'safe mode' and running Spybot, which finds things that I then remove but that doesn't seem to help. In fact, the scareware icon even shows up in the tool tray while I'm in safe mode.

AVG doesn't run in 'safe mode' so that's of limited value. Windows 'Security Essentials' doesn't find it regardless of when I run that.

If I can't remove this can I buy another IDE HDD and reload Win XP? There is nothing on the current 37GB HDD that I really need but I am concerned about the XP product key still working six or seven years after I built this box.

Again, I really appreciate any help you guys can offer.

In the meantime I am going to Newegg to see if they still offer older HDD's since I have a 486 board.....


Thanks,
Strider
Back to top
View user's profile Send private message
fussnfeathers
Mobo-fu Master
Mobo-fu Master


Joined: 04 Dec 2008
Posts: 3124
Location: Right behind you

PostPosted: Sat Dec 17, 2011 3:51 pm    Post subject: Reply with quote

Best thing to do is reformat and reinstall XP (on a 486??!??!). Your key will still work. As to finding a new HDD, you'll be in the long-dead AT standard. Best you'll be able to do is dig through EBay for an old system with a good drive. Good luck!
_________________
Faster than the speed of snot

and for the million hours that we were....well I'll smile and remember them all, then I'll turn and go....
Back to top
View user's profile Send private message Send e-mail AIM Address Yahoo Messenger MSN Messenger
Strider
Brown Belt
Brown Belt


Joined: 30 May 2003
Posts: 399

PostPosted: Sat Dec 17, 2011 4:08 pm    Post subject: Reply with quote

Thanks for the advice. What I meant by '486' is that my CPU is a 486 Northwood.

I believe those use IDE drives but I will check in a bit. I have learned that you can use an adapter to connect a SATA HDD to an IDE system.

If I do that, and buy a SATA HDD, then I will be one step towards a new box.

For the time being I am going to try to tough it out since HDD's are currently soooo expensive.

Still looking for a way to remove the 'Scareware' though.....


Strider
Back to top
View user's profile Send private message
Strider
Brown Belt
Brown Belt


Joined: 30 May 2003
Posts: 399

PostPosted: Sat Dec 17, 2011 6:46 pm    Post subject: Reply with quote

Folks,

This thing is amazing..........

Suddenly my mute button will no longer stay muted, no matter what I do.

Still looking for any advice on how to get rid of this thing.

It does seem to be in check for the moment, but that probably won't last, and the icon is still in the tool tray.



Strider
Back to top
View user's profile Send private message
Mr T
Enlightened Master
Enlightened Master


Joined: 14 Jun 2002
Posts: 16755
Location: England

PostPosted: Sat Dec 17, 2011 10:37 pm    Post subject: Reply with quote

To get rid of.....

1) Go to internet properties and delete all your cookies etc....
2) Go to filehippo.com and download
A)CrapCleaner
B)Malwarebytes AntiMalware
C)MS Security Essentials (for XP)
3) Install A+B and update....
4)Reboot and boot into SAFE MODE.
5) Run Malwarebytes _ It should pick any nasty up and prompt you to delete them. If it can't delete any, it will tell you where it is (usually a hidden folder so you have to unhide all your hidden folders) so you can navigate to it and delete it.
6) Once done, reboot into normal mode, delete any AV you have and install MS Security Essentials, update it and run a full system scan.
7) Run CrapCleaner, to remove any debris and use the the registry fix tool as well..

The three programs are free and work well. Malwarebytes will come up with a 'trial version', say no and it will still work.

If the above doesn't work, reformat and use your XP key, it will be fine.

On a side note, download JAVA and Flash, latest versions, these exploits can and do use them to attack, the latest versions of JAVA and Flash plug these holes...
_________________
I have been programming on computers since the ZX81.
I am an apprentice trained Electronics Engineer with qualifications to back it up.
I have been repairing computers since 1996.
Yet to some people I still know nothing...


Last edited by Mr T on Sun Dec 18, 2011 1:33 pm; edited 1 time in total
Back to top
View user's profile Send private message
Strider
Brown Belt
Brown Belt


Joined: 30 May 2003
Posts: 399

PostPosted: Sun Dec 18, 2011 9:42 am    Post subject: Reply with quote

Mr. T,

As always, thanks for the advice. I think I have done everything you suggested and have even gone so far as to boot into safe mode and logged on as administrator, in addition to logging on as myself, and tried to run those same programs but it didn't work any better. This is one amazing bug..........

There was one AV .....and I forget which one.......that quarantined and/or removed everything but one issue but I didn't think to go poking about looking for that myself. It was weird to see that it was 'allowed' but I'm not sure I would have known how to find the entity that was allowed, but if I can find that again I may be back asking for more help.

Usually I update at least one of my programs every day and run it but I have messed up somehow.

As I said in an earlier post, I may just get another HDD.....when the prices come back down.......and reload XP onto that, but I will have to get an IDE to SATA connector. That will just be one less component to buy when I build a new box.

It never occurred to me to get rid of all of my AV software after the bug is gone and then reload it, which is what I assume you are saying . What does that do?

Thanks for all the advice.




Strider
Back to top
View user's profile Send private message
Mr T
Enlightened Master
Enlightened Master


Joined: 14 Jun 2002
Posts: 16755
Location: England

PostPosted: Sun Dec 18, 2011 1:35 pm    Post subject: Reply with quote

I always assume ( from experience) most people buy an AV or use AVG,Avast etc.. MS SE is by far the best at the moment and is free... cool
_________________
I have been programming on computers since the ZX81.
I am an apprentice trained Electronics Engineer with qualifications to back it up.
I have been repairing computers since 1996.
Yet to some people I still know nothing...
Back to top
View user's profile Send private message
Strider
Brown Belt
Brown Belt


Joined: 30 May 2003
Posts: 399

PostPosted: Sun Dec 18, 2011 9:43 pm    Post subject: Reply with quote

Mr. T,

I have hit a new wrinkle in this mess. When I go into safe mode and try to run MS SE it runs for a while and then just stops.............

Also, when I try to run safe mode as an administrator I get a pop up asking what program I want to use to open whatever I'm trying to run. This includes CCleaner, AVG, and MS SE.

Weird, but I will keep trying.




Strider
Back to top
View user's profile Send private message
evasive
Mobo-fu Master
Mobo-fu Master


Joined: 06 May 2001
Posts: 36705
Location: Netherlands, Breda

PostPosted: Sun Dec 18, 2011 11:21 pm    Post subject: Reply with quote

A bit of Googling found me this:
http://deletemalware.blogspot.com/2011/06/remove-xp-antispyware-2012-xp-internet.html

@Strider: does this look familiar?
_________________
We hate rut, but we fear change.



System error, strike any user to continue...
Back to top
View user's profile Send private message Send e-mail Visit poster's website Yahoo Messenger MSN Messenger
Strider
Brown Belt
Brown Belt


Joined: 30 May 2003
Posts: 399

PostPosted: Mon Dec 19, 2011 4:38 pm    Post subject: Reply with quote

evasive,

Thanks for the information. That is indeed the beast, and if I ever find the author he/she is going to have a baaaaaaad day.

Removal looks like a major task but I may attempt it later this week.

Otherwise I might just get a new SATA HDD and a SATA/IDE connector and reinstall XP on that.

Thanks again and have a Merry Christmas.




Strider
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    The Mother Board Forum Index -> Virus/Spyware/Security All times are GMT - 8 Hours
Goto page 1, 2  Next
Page 1 of 2

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum


Powered by phpBB © 2001, 2002 phpBB Group