Posted 17 December 2008 - 02:02 PM
Running Dell 4400I computer, 512mb ram, XP Pro sp2
I have taken over a computer my daughter received from a friend and it is riddled with spyware.
The worst one is SPYWARE GUARD 2008, POSSIBLE OTHER NAMES, can't get ride of TREND antivirus either, have physically removed the files after going into safe mode, but still shows up under remove programs and requires a password I don't have in order to remove.
It has taken over the Iexplorer, I can't get out to the web even though my network is up and pinging show the network is sending and receiving, it blocks everything that tries to get out.
I have downloaded tons of suggested software Googling, most claim to be free but they want money after you go thru all of the crap. Most I have downloaded on my other computer and tried to run on the bad one but it defeats everyone I try.
At one point I had Spybot loaded but didn't do anyhing I was aware of to get rid of the infection, I finally deleted it thinking possibly it was cusing problems, now can't get reloaded.
I have loaded and ran CCleaner a register cleaner, looks good, but who knows if it is really making changes or fixing anything. Still have the same problems don't believe it did anything, sure didn't fix it.
I am beginning to think all of this web crap is worthless, just a bunch of bells and whistles to make you think you are getting your moneys worth.
This SPYWARE GUARD 2008 is nothing but a dummy virus software, from Russia? takes over the System virus window popup in right corner of screen, it is fake though. I have read and tried every software download that is out there and available, regedits, taskmgr file fixes etc.
I can't get to Regedit, locked out, even though I have admin rights, has dummy message comeup saying admin has locked me out, same with C-A-D, taskmgr, is locked out.
I have found the software dir and files, deleted them manually, but they immediately come right back, dir and all, even desktop icon.
I have finally defeated this by making a dummy dir under \Programs and put all 0 byte files with the same names, but it still doesn't effect the virus window allert from coming up with a fake one?
I check my firewire and it is on, but this window says it isn't, just bogus crap.
I have been into the servics menu and turn on disabled about anything I thought could be causing this, in my admin user and also in safe mode under the ADMIN log in. This ADMIN log in is not available to normal boot up for login, only when in safe mode. Unfortuneately you can't do much in safe mode to load programs or remove them?
I have deleted all existing users that were on the comp and keep adding new ones over and over trying to trick this piece of crap, but nothing works for long.
At one time I could get to the web, went to microsoft and tried to download some things, it looked like it was doing it but never would complete downloads.
Fortuneately I have never had such a big mess in my life, it must have taken years to get this computer so hosed up?
He was a young kid who used to do a lot of instant messaging and other sources, probably downloaded the spyware thinking it was safe when it wasn't.
Well, I hope I have given someone enough info to see what a mess I am in, possibly someone else has been thru the same problems.
I read thru your beginning advice but not being able to download from the web or run the suggested software items it didn't help, can't print out that file you would like to see.
I need a file I can download and actually run on that computer, I can download on my other computer and thumbdrive it over, but it has to be a complete program, one that doesn't have to go into a run mode to load or go to the web to get definition files.
My DSL link, I tried using my Verizon.net disks to reload the software to this computer, it craps out early and even offsets the info screen so you can't enter the requested login info, what a piece of crap, it really was well written, too bad the guy didn't do it for good purposes instead of evil.
I don't have the original XP PRO certified disks to reload the software so would like to solve this problem and not have to go back to Dell for the software.
I have tried to find any settings that a ADMIN could use to lock out other users from running TaskMgr or Regedit but have found none, so I am pretty sure it is being caused by this software virus.
Welcome to Malwarebytes ANTI-MALWARE.pdf / mbam-setup.exe- it won't even run
SDFix.exe - won't let run
ccsetup214.exe - doesn't do anything
ComboFix.exe - doesn't do anything
Cannot Access Regedit, How to Fix It.pdf - doesn't do anything
TaskManagerFix.exe / Task Manager Has Been Disabled, How to Fix It.pdf - doesn't do anything
FILES IT LIKES TO ADD TO c:\PROGRAMs\SPYWARE GUARD 2008 dir:
I have placed 0 byte dummy files in the dir it likes to put these files, so keeps them from loading, still won't give me back control though?
Any and all suggestions would be greatly appreciated.