At 8/17/2010 6:02:17 PM, tvellalott wrote:
A friend of mine contacted me on monday night saying he needed my help with a computer problem (I'm the go-to guy for computer related problems, blah). He had gotten a computer virus.
WELL! He had the virus I've ever seen.
AV Security Suite doesn't need require voluntary download and within hours completely infects all windows dynamic-link libraries (DLL files). It poses as a virus protection program and constantly pops up phoney virus and windows warnings. It will tell you that you need to upgrade to remove the viruses. Most virus protectors will not protect you and it will make it extremely difficult to install new programs.
I tried for many hours to fix the computer, including creating new admin accounts, deleting old accounts, running rFix, a program which stops the malware from running and scanning the computer three times with Malbyte Anti-Malware, which constantly turned up negative. Everytime I thought I'd got rid of it, it would pop up again.
I eventually had to back up all his stuff, format the hard-drive and install a fresh windows.
The root of his problem was very simple. His admin account didn't have a password, meaning the virus had no trouble computer hijacking all his system files.
ALWAYS put a password on your admin account.
A good virus protection program with up-to-date libraries will help, but I've since found out the AV Security Suite is just a GUI (Graphic User Interface) for one of the worlds most unstoppable trojans. One of my bosses (I call him the Guru) said Microsoft have a $500,000 bounty on this virus for anyone who can crack it. It probably comes from Russia, where (I quote) "all the cool, really dangerous sh1t comes from".
I posted this in the Science forum. Whoops...
Captain Hindsight says "You shouldn't have spent so much time on DDO."