Computer Help and Spyware Removal Computer Help and Spyware Removal Computer Help and Spyware Removal Computer Help Forums Windows Startup Programs Database Spyware and Malware Removal Guides Computer Tutorials Uninstall Database File Database Computer Glossary Computer Resources
 

Welcome Guest ( Log In | Click here to Register a free account now! )



Register a free account to unlock additional features at BleepingComputer.com
Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

 
Reply to this topicStart new topic
> Antivirgear ... Clogging The Gears Of Computer Security.
Grinler
post Sep 14 2007, 03:20 PM
Post #1


Bleep Bleep!
******

Group: Admin
Posts: 28,265
Joined: 24-January 04
From: USA
Member No.: 3



As you know, here at BleepingComputer.com we are at the forefront of discovering and releasing guides about various Rogue anti-spyware infections that are released. We take particular notice to a group of programs that are installed via the Zlob Trojan infections.

Yesterday, we have seen a new rogue anti-spyware program called AntiVirGear start infecting people's computers over the Internet. This infection, just like its predecessors, are installed by a Zlob infection which masquerades a legitimate video or audio codec that you need installed in order to view a particular multimedia.


AntiVirGear Screenshot
AntiVirGear Screenshot

When AntiVirGear is installed, it immediately scans your computer and finds the malware that actually installed it in the first place. In order to clean these files, and for the most part this program cleans nothing, you need to first purchase it.

As far as I am concerned these programs are complete scams and fraud and should be under investigation by the FBI. Unfortunately, the developers of these software are not located in the USA, but rather in countries that have less favorable Internet security laws.

If you see this program, save yourself some trouble and just stay away from it.




--------------------
Lawrence
Go to the top of the page
 
+Quote Post
lawebster1966
post Sep 21 2007, 11:44 PM
Post #2


New Member
*

Group: Members
Posts: 1
Joined: 21-September 07
Member No.: 158,323



thumbup.gif thanks for the info.....i was able to fix my computer
Go to the top of the page
 
+Quote Post
ajxd22
post Sep 23 2007, 09:40 AM
Post #3


New Member
*

Group: Members
Posts: 1
Joined: 23-September 07
Member No.: 158,599



thank you. it worked. what a lousy programme this antivir.gear is. Unfortunately i have ukrainian family and if this programme really was written in kharkov, then that is a sad reflection on Ukraine. But congratulations to you and thank you for a well written piece of advice which was easy to read and follow. spasiba.
Go to the top of the page
 
+Quote Post
HelpME!!!!
post Sep 24 2007, 07:43 PM
Post #4


New Member
*

Group: Members
Posts: 1
Joined: 24-September 07
Member No.: 158,953



hey grinler can you help me that same thing happend to me but i cant figure out how to remove it. is there a way to remove it without spending money on a antivirus software thing like spyhunter. thanks please get back to me as soon as possible im desprate! mellow.gif
Go to the top of the page
 
+Quote Post
Yourhighness
post Sep 24 2007, 11:28 PM
Post #5


The BSG Malware Fighter
******

Group: HJT Team
Posts: 4,083
Joined: 20-April 06
From: Hamburg
Member No.: 64,788



HelpME,

did you look at this link?
This does not need any payware.


--------------------
- "How did I get infected?" - "Safe-hex" - Member of UNITE -
- The HJT forum is very busy. If I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
- HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason! Thanks-
Go to the top of the page
 
+Quote Post
CammieB62
post Sep 25 2007, 07:33 AM
Post #6


New Member
*

Group: Members
Posts: 6
Joined: 23-September 07
From: 92345
Member No.: 158,745



YEAH!!!
I used your automated fix and it worked great! Very easy to follow instructions, and at the end, the nasty little bugger was gone. You guys are the greatest. I searched and scanned for 2 days before finding your site. Thanks Again. thumbup.gif

This post has been edited by CammieB62: Sep 25 2007, 07:36 AM
Go to the top of the page
 
+Quote Post
china
post Sep 25 2007, 07:44 AM
Post #7


New Member
*

Group: Members
Posts: 1
Joined: 25-September 07
Member No.: 159,042



I tried to download the smitfraudfix.exe file that you recommend to remove the AntiVirGear and it had a virus. Did anyone else find a virus there?
Go to the top of the page
 
+Quote Post
Yourhighness
post Sep 25 2007, 08:44 AM
Post #8


The BSG Malware Fighter
******

Group: HJT Team
Posts: 4,083
Joined: 20-April 06
From: Hamburg
Member No.: 64,788



QUOTE
I tried to download the smitfraudfix.exe file that you recommend to remove the AntiVirGear and it had a virus. Did anyone else find a virus there?
China, please refer to this site: http://siri.geekstogo.com/SmitfraudFix.php, which warns you about the following:
QUOTE
process.exe is detected by some antivirus programs (AntiVir, Dr.Web, Kaspersky) as a "RiskTool". It is not a virus, but a program used to stop system processes. Antivirus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.
http://www.beyondlogic.org/consulting/proc...processutil.htm


--------------------
- "How did I get infected?" - "Safe-hex" - Member of UNITE -
- The HJT forum is very busy. If I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
- HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason! Thanks-
Go to the top of the page
 
+Quote Post
esparzatj
post Sep 27 2007, 11:34 AM
Post #9


New Member
*

Group: Members
Posts: 1
Joined: 27-September 07
Member No.: 159,481



I used you automated fix and it worked great!!! thumbup2.gif
Go to the top of the page
 
+Quote Post
carstenzpyramid
post Oct 3 2007, 06:40 PM
Post #10


New Member
*

Group: Members
Posts: 1
Joined: 3-October 07
Member No.: 160,707



Grinler rocks, he took care of mine with Smitfraud. Worked well and fast. So easy.

Thanks grinler.

Justin
Go to the top of the page
 
+Quote Post
KateB
post Oct 8 2007, 03:58 PM
Post #11


New Member
*

Group: Members
Posts: 4
Joined: 30-August 07
Member No.: 153,784



Thank you! thumbup2.gif thumbup2.gif

I expect it says this somewhere, but we found that after running Smitfraudfix and removing the bulk of AntiVirGear, AdAware 2007 discovered about 17 registry entries that it then deleted. I think we're clean now. Thank you again.
Go to the top of the page
 
+Quote Post
L.Lives
post Oct 10 2007, 07:46 AM
Post #12


New Member
*

Group: Members
Posts: 1
Joined: 4-October 07
Member No.: 160,872



You guys are great. Thanks thumbup2.gif


--------------------
"正義は必ず勝つ" ~L.Lawliet
Go to the top of the page
 
+Quote Post
PatrickDSouza
post Oct 14 2007, 03:20 AM
Post #13


New Member
*

Group: Members
Posts: 6
Joined: 6-May 07
Member No.: 129,203



Just a few days back I had also read about rogue 'Microsoft AntiSpyware' and a dummy "Microsoft Antispyware Center" at www.winvistaclub.com . I guess users will just have to stick to the usual KNOWN anti-spy's, to be safe !
Go to the top of the page
 
+Quote Post

Reply to this topicStart new topic
1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)
0 Members:

 



Lo-Fi Version Time is now: 24th July 2008 - 08:19 PM


Advertise   |   About Us   |   Terms of Use   |   Privacy Policy   |   Contact Us   |   Site Map   |   Chat   |   Tutorials   |   Uninstall List
Discussion Forums   |   The Computer Glossary   |   Resources   |   RSS Feeds   |   Startups   |   The File Database   |   Malware Removal Guides

© 2003-2008 All Rights Reserved Bleeping Computer LLC.