XP Antivirus 2008 anyone?

Talk about "WhatEVER !"..
Post Reply
Message
Author
GomJabbar
Moderator
Moderator
Posts: 9765
Joined: Tue Jun 07, 2005 6:57 am

XP Antivirus 2008 anyone?

#1 Post by GomJabbar » Wed Sep 10, 2008 8:48 pm

I have had three acquaintances recently acquire XP Antivirus 2008 malware. Turns out one place you could get it is from a Google ad download button on CNET.com. :shock:
http://blogs.pcmag.com/securitywatch/20 ... _ads_h.php

For any of you that are affected, one of my coworkers used the following two scanners to remove XP Antivirus 2008 from his laptop.
http://www.majorgeeks.com/Malwarebytes_ ... d5756.html
http://www.bleepingcomputer.com/combofi ... e-combofix

EDIT Update: MS Antivirus 2008 morphed from XP Antivirus 2008
DKB
Top
sarbin
ThinkPadder
ThinkPadder
Posts: 1146
Joined: Sat Apr 17, 2004 11:56 pm
Location: Central VA

#2 Post by sarbin » Wed Sep 10, 2008 10:44 pm

[soapbox mode=on]
:evil: frack, i hate malware... and it's purveyors. :evil:
[soapbox mode=off]
Current: X1CT-G3 / Helix-G1 / X220 / T61p / T60p / X301 / X200T / Yoga 3 Pro
Support: T520 / T510 / T420 / T400 / R400 / T61 / Yoga 2 Pro / Yoga 13
Hall of Fame: A31p --- Retired: T43 / T30 / T22 / 600X / 380XD
Top
carbon_unit
Moderator Emeritus
Moderator Emeritus
Posts: 2988
Joined: Sat Apr 24, 2004 9:10 pm
Location: South Central Iowa, USA

#3 Post by carbon_unit » Thu Sep 11, 2008 6:03 am

Another good tool to remove it is malwarebytes Rouge remover.
T60 2623-D7U, 3 GB Ram.
Dual boot XP and Linux Mint.
Registered linux user #160145
Top
RealBlackStuff
Admin
Admin
Posts: 17508
Joined: Mon Sep 18, 2006 5:17 am
Location: Mt. Cobb, PA USA
Contact:
Contact RealBlackStuff

#4 Post by RealBlackStuff » Thu Sep 11, 2008 6:18 am

carbon_unit wrote:Another good tool to remove it is malwarebytes Rouge remover.
LOL. As the rogue removed his make-up...
Lovely day for a Guinness! (The Real Black Stuff)

Check out The Boardroom for Parts, Mods and Other Services.
Top
Purcy
Senior Member
Senior Member
Posts: 921
Joined: Mon Oct 02, 2006 7:29 pm
Location: Pittsburgh PA, USA

#5 Post by Purcy » Thu Sep 11, 2008 6:56 am

That Rogue Remover is a nice tool, thanks. Did the scan and my T23 is squeeky clean. I did see that XP Antivirus 2008 in the list of targeted apps to remove.
IBM T23 (2648-4NU) 1.13Ghz Pentium III, 1GB, 60GB 5400rpm, CD/DVD-RW, Internal Wireless, Windows XP Pro SP2 [DONOR]
Top
carbon_unit
Moderator Emeritus
Moderator Emeritus
Posts: 2988
Joined: Sat Apr 24, 2004 9:10 pm
Location: South Central Iowa, USA

#6 Post by carbon_unit » Thu Sep 11, 2008 8:47 am

RealBlackStuff wrote:
carbon_unit wrote:Another good tool to remove it is malwarebytes Rouge remover.
LOL. As the rogue removed his make-up...
Oops! :oops:
T60 2623-D7U, 3 GB Ram.
Dual boot XP and Linux Mint.
Registered linux user #160145
Top
mikey pizano
Junior Member
Junior Member
Posts: 251
Joined: Sat Feb 17, 2007 8:41 am
Location: Yatesville, PA
Contact:
Contact mikey pizano

#7 Post by mikey pizano » Thu Sep 11, 2008 11:10 am

Installed Rouge scan and am doing a quick scan on my Toshiba since its my main computer first, Thanks!
Mikey Pizano has approved this message.
Top
tfflivemb2
Moderator1
Moderator1
Posts: 5532
Joined: Thu Sep 01, 2005 1:17 pm
Location: Wisconsin
Contact:
Contact tfflivemb2

#8 Post by tfflivemb2 » Thu Sep 11, 2008 1:31 pm

I have had the unfortunate luck of dealing with several computers that have had either the XP Antivirus 2008 OR the Vista Antivirus 2008.

Each of these had MySpace in common....

Norton and Ad-ware couldn't remove it. By the third computer, I found an awesome program called MalWareBytes...AWESOME!!!
Top
Purcy
Senior Member
Senior Member
Posts: 921
Joined: Mon Oct 02, 2006 7:29 pm
Location: Pittsburgh PA, USA

#9 Post by Purcy » Thu Sep 11, 2008 3:05 pm

tfflivemb2 wrote: I found an awesome program called MalWareBytes...AWESOME!!!
You mean the :oops: Rouge Remover :oops: ?? LOL, I love that and that's what I'm calling it.
IBM T23 (2648-4NU) 1.13Ghz Pentium III, 1GB, 60GB 5400rpm, CD/DVD-RW, Internal Wireless, Windows XP Pro SP2 [DONOR]
Top
carbon_unit
Moderator Emeritus
Moderator Emeritus
Posts: 2988
Joined: Sat Apr 24, 2004 9:10 pm
Location: South Central Iowa, USA

#10 Post by carbon_unit » Thu Sep 11, 2008 5:46 pm

Malwarebytes also makes Malwarebytes Anti-Malware. It is good too.
T60 2623-D7U, 3 GB Ram.
Dual boot XP and Linux Mint.
Registered linux user #160145
Top
GomJabbar
Moderator
Moderator
Posts: 9765
Joined: Tue Jun 07, 2005 6:57 am

#11 Post by GomJabbar » Thu Sep 11, 2008 9:59 pm

carbon_unit wrote:Malwarebytes also makes Malwarebytes Anti-Malware. It is good too.
So what is the difference between Malwarebytes Anti-Malware and Malwarebytes Rogue Remover?

Any Idea?
DKB
Top
Purcy
Senior Member
Senior Member
Posts: 921
Joined: Mon Oct 02, 2006 7:29 pm
Location: Pittsburgh PA, USA

#12 Post by Purcy » Thu Sep 11, 2008 10:15 pm

GomJabbar wrote:
carbon_unit wrote:Malwarebytes also makes Malwarebytes Anti-Malware. It is good too.
So what is the difference between Malwarebytes Anti-Malware and Malwarebytes Rogue Remover?

Any Idea?
Malwarebytes' Anti-Malware
Malwarebytes' Anti-Malware is an anti-malware application that can thoroughly remove even the most advanced malware. It includes a number of features, including a built in protection monitor that blocks malicious processes before they even start.

RogueRemover FREE
RogueRemover FREE is an application that can remove rogue antispyware, antivirus, and hard drive cleaning applications with ease. It removes rogue applications such as WinAntiSpyware, AVSystemCare, and SpySheriff.
IBM T23 (2648-4NU) 1.13Ghz Pentium III, 1GB, 60GB 5400rpm, CD/DVD-RW, Internal Wireless, Windows XP Pro SP2 [DONOR]
Top
GomJabbar
Moderator
Moderator
Posts: 9765
Joined: Tue Jun 07, 2005 6:57 am

#13 Post by GomJabbar » Thu Sep 11, 2008 10:45 pm

Yeah Purcy, I did see the information you posted on malwarebytes website. Seem like similar tools. But why two?
I notice the first one includes a protection monitor - I guess like Spybot. The second one appears to be just a scanner.

I have not tried either one. Haven't needed to. :)
DKB
Top
carbon_unit
Moderator Emeritus
Moderator Emeritus
Posts: 2988
Joined: Sat Apr 24, 2004 9:10 pm
Location: South Central Iowa, USA

#14 Post by carbon_unit » Fri Sep 12, 2008 6:30 am

Malwarebytes anti-malware has been my replacement for AdAware. I use it in conjunction with Spybot S&D as general protection. It scans for a lot of different things and takes a while.
Rouge Remover is just for removing specific infections, not general protection. Rouge Remover only scans for ~418 items. It doesn't take very long.
T60 2623-D7U, 3 GB Ram.
Dual boot XP and Linux Mint.
Registered linux user #160145
Top
GomJabbar
Moderator
Moderator
Posts: 9765
Joined: Tue Jun 07, 2005 6:57 am

#15 Post by GomJabbar » Thu Sep 25, 2008 10:09 am

Just got an e-mail from Avira (my current A/V software) yesterday...
Avira wrote:A fake anti-virus solution that reports phantasy threats is currently spreading massively and causing annoying alerts. AntiVir protects computers against the phantasy program.

Tettnang, 29 August 2008 – Internet criminals are using aggressive methods to push fake anti-virus solutions on innocent victims. They gain success by targeting people with little computer knowledge or occasional users and make victims of such people.

A fake anti-virus solution such as “Antivirus XP 2008" annoys the users with permanent security alerts, it changes the desktop background and it reports imaginative threats on the system. There are very few other real anti-virus solutions that recognize this infection – because the fake anti-virus solutions create files with data trash, for instance in the Windows folder or the system folder, they consequently report as a threat. The fake anti-virus solutions force the user to purchase the fraudulent software in order to remove the fake threats.

The fake security programs access the computer through drive-by-downloads. A (hacked) website takes advantage of vulnerabilities in the web browser or outdated software such as Flash-Player, QuickTime, RealPlayer or other plug-ins, in order to install a harmful program on the Internet user’s computer.

Avira recognizes the fake security programs that are currently in circulation. They belong to the Trojan family TR/FakeAlert. Users should always keep their system up-to-date, in order to protect against attacks from undesired software. It is not enough to install all product updates provided by Windows. Users should update all data that has encountered the Internet.
http://www.avira.com/en/security_news/f ... ution.html
DKB
Top
denisky
Freshman Member
Posts: 98
Joined: Thu Jun 26, 2008 1:36 pm
Location: Jakarta, Indonesia
Contact:
Contact denisky

#16 Post by denisky » Thu Sep 25, 2008 12:53 pm

This malware infected my dad's T41. Then I backed up the My Documents folder, and restore the whole system using IBM Rescue & Recovery. If someone made this thread earlier, I wouldn't have to wait for hours restoring the system. :(
Current:
IBM ThinkPad R51e
IBM ThinkPad X22
Past:
IBM ThinkPad T43
Top
Post Reply
  • Similar Topics
    Replies
    Views
    Last post

Return to “Off-Topic Stuff”

Who is online

Users browsing this forum: No registered users and 0 guests