MBAM

[ASCII]

Go ahead and call me a careless fool, but earlier tonight I severely
infected myself and out of desperation tried the MBAM utility.
It seems to have cleared the problem, at least all of what it found.
One thing of note was with the enormity of hits it would hang up trying
to clear all of them so I unchecked about half and let it have a go
twice sequentially, then I reconnected the modem (first step was to get
offline PDQ) got the update and after that it found four more, it
successfully got rid of them all. I am Curious about where the 229
quarantined files reside, but will eventually delete them. Another thing
I found four random letter named (without extensions) files on the root
of the C:\ drive and RARed them into an archive.
The machine seems to have regained the functionality it lost when first
hit. I still have the scan logs if someone is interested, and hereby
offer my appreciation to the reformed RaiD for his efforts to eradicate
my woes. If I weren't in such a state of austerity I'd fork some bucks
to the authors of my salvation. otherwise, Thanks Guys!

 

[Dustin Cook]

Go ahead and call me a careless fool, but earlier tonight I severely
infected myself and out of desperation tried the MBAM utility.
It seems to have cleared the problem, at least all of what it found.
One thing of note was with the enormity of hits it would hang up
trying to clear all of them so I unchecked about half and let it have
a go twice sequentially, then I reconnected the modem (first step was
to get offline PDQ) got the update and after that it found four more,
it successfully got rid of them all. I am Curious about where the 229
quarantined files reside, but will eventually delete them. Another
thing I found four random letter named (without extensions) files on
the root of the C:\ drive and RARed them into an archive.
The machine seems to have regained the functionality it lost when
first hit. I still have the scan logs if someone is interested, and
hereby offer my appreciation to the reformed RaiD for his efforts to
eradicate my woes. If I weren't in such a state of austerity I'd fork
some bucks to the authors of my salvation. otherwise, Thanks Guys!

If you'd like to upload those files you preserved, you can send them
here:

http://uploads.malwarebytes.org

You can include the logfile too if you'd like.

And your welcome. It's a team effort tho. I'll pass along your
appreciate to the rest of the guys.

 

[Victek]

Go ahead and call me a careless fool, but earlier tonight I severely
infected myself and out of desperation tried the MBAM utility.
It seems to have cleared the problem, at least all of what it found.
One thing of note was with the enormity of hits it would hang up trying
to clear all of them so I unchecked about half and let it have a go
twice sequentially, then I reconnected the modem (first step was to get
offline PDQ) got the update and after that it found four more, it
successfully got rid of them all. I am Curious about where the 229
quarantined files reside, but will eventually delete them. Another thing
I found four random letter named (without extensions) files on the root
of the C:\ drive and RARed them into an archive.
The machine seems to have regained the functionality it lost when first
hit. I still have the scan logs if someone is interested, and hereby
offer my appreciation to the reformed RaiD for his efforts to eradicate
my woes. If I weren't in such a state of austerity I'd fork some bucks
to the authors of my salvation. otherwise, Thanks Guys!

MBAM does good work, but I would still run at least one or two more AS apps
to see if anything else is found. SuperAntiSpyware Free and Spybot S&D are
good choices.

 

[Clark]

MBAM does good work, but I would still run at least one or two more
AS apps to see if anything else is found. SuperAntiSpyware Free and
Spybot S&D are good choices.

a-squared Emergency USB Stick files, (half way down the page) that tool is
great too, also works to remove XP Antivirus 2008 rouge software.
http://www.emsisoft.com/en/software/download/

Clark...

 

[ASCII]

If you'd like to upload those files you preserved, you can send them
here:

http://uploads.malwarebytes.org

You can include the logfile too if you'd like.

I didn't save the logs before I lost access to everything

As I remember there were quite a few random lettered, extensionless
files, which I presume were the Quarantined ones, especially amongst
system files, but I managed to get the thing so corrupted trying to find
and save all of them that it would no longer even boot. Not having a way
to reload any previous images, I ended up returning it in exchange for
another computer. As it was less than a week old I was able to swap it
straight across as an inoperative unit.
The DOS version of format.com I had on floppy was wrong so I couldn't
use it but was able to fdisk away the NTFS partition leaving a bit of
obscurity for anyone that tries to see what's on it.
I know that MBAM was able to overcome all the crippling the Vundo and
other Trojan Downloaders had wreaked so that I wouldn't hesitate to
recommend it to careless (yes, that's how that shit happens) clickers.

 

[Beauregard T. Shagnasty]

... but I managed to get the thing so corrupted trying to find and
save all of them that it would no longer even boot. Not having a way
to reload any previous images, I ended up returning it in exchange
for another computer. As it was less than a week old I was able to
swap it straight across as an inoperative unit.

This is pretty amazing.

Begs the question: what are you going to do with the new unit when it
too becomes infested in its first week?

I read somewhere recently (possibly the NY Times) that people actually
throw their computers in the dumpster each time they get corrupted, and
buy new ones. An example was given about some high-level executive in
New York City... Boggles the mind.

 

[ASCII]

ASCII wrote:
[...]

The DOS version of format.com I had on floppy was wrong so I couldn't
use it but was able to fdisk away the NTFS partition leaving a bit of
obscurity for anyone that tries to see what's on it.

[...]

Quick (ie 1st page results) for "disk formatting software":

Tools:
http://www.partition-manager.com
http://www.sofotex.com/download/PC_Utilities/Back_Up/
http://www.freebyte.com/filediskutils/
http://www.topshareware.com/disk-format-software/downloads/1.htm

Info on how and why:
http://www.webopedia.com/DidYouKnow/Hardware_Software/2005/harddrive_format.asp

Low-level formatting:
http://hddguru.com/content/en/software/2006.04.12-HDD-Low-Level-Format-Tool/

I suggest making a bootable barebones-XP CD, and installing some of
these tools on it, as well as stand-alone AV software.

HTH

Good stuff,
Thanks

 

[ASCII]

This is pretty amazing.

fortunate is a better word

Begs the question: what are you going to do with the new unit when it
too becomes infested in its first week?

I guess we'll just have to wait and see.

 

[buddyb]

I read somewhere recently (possibly the NY Times) that people actually
throw their computers in the dumpster each time they get corrupted, and
buy new ones. An example was given about some high-level executive in
New York City... Boggles the mind.

Post the addresses of these wastrals:>)
Regards
buddy b

 

[Dustin Cook]

This is pretty amazing.

Begs the question: what are you going to do with the new unit when it
too becomes infested in its first week?

I read somewhere recently (possibly the NY Times) that people actually
throw their computers in the dumpster each time they get corrupted, and
buy new ones. An example was given about some high-level executive in
New York City... Boggles the mind.

Perhaps instead of spending so much funds to build several new needed pcs
(vm work, malware.. ugh), I should checkout some dumpsters for equipment.
I don't mind if it's infected. hehehe.