Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Someone set me up the Bomb (Help I got a virus and I can't get up)
Today | Me

Posted on 08/26/2005 5:36:48 AM PDT by Mad Dawgg

Hello I got a virus that won't go away. I've tried several programs but none have been able to get it.

Virus is Virtool.Mediainject.A

Anyone got any fixes or programs that will deal with it?


TOPICS: Your Opinion/Questions
KEYWORDS: help; windowsxpvirus
Any Help would be greatly appreciated.
1 posted on 08/26/2005 5:36:48 AM PDT by Mad Dawgg
[ Post Reply | Private Reply | View Replies]

To: Mad Dawgg

What ever the doc gives you, make sure you take the full course of meds.


2 posted on 08/26/2005 5:38:07 AM PDT by ctlpdad (Liberals - weeds in the lawn of society.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg
Hello I got a virus that won't go away.

Yikes, I've heard of that one. It takes all of your sentences and makes them a grammatical mess.

3 posted on 08/26/2005 5:38:25 AM PDT by ShadowDancer (Stupid people make my brain sad.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

Firewall and antivirus scan should kill it.


4 posted on 08/26/2005 5:38:42 AM PDT by AppyPappy (If you aren't part of the solution, there is good money to be made prolonging the problem.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

Can you isolate the infected file(s) and write them to a removable media?


5 posted on 08/26/2005 5:39:35 AM PDT by JoeSixPack1
[ Post Reply | Private Reply | To 1 | View Replies]

To: AppyPappy
"Firewall and antivirus scan should kill it."

Nope I get a message from several Virus programs that cannot delete or disinfect. I've went down into DOS to try and directly remove it and no luck whatsoever.

6 posted on 08/26/2005 5:40:39 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 4 | View Replies]

To: JoeSixPack1
"Can you isolate the infected file(s) and write them to a removable media?"

Could you repeat that in Captain Dummy talk?

7 posted on 08/26/2005 5:41:46 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 5 | View Replies]

To: Mad Dawgg
This should get you there:

Click here

8 posted on 08/26/2005 5:42:04 AM PDT by acad1228 (Free The West Memphis Three!!!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

Maybe you could Google up a fix?


9 posted on 08/26/2005 5:42:46 AM PDT by ErnBatavia (Cindy, ya shoulda stuck with "offshore drilling")
[ Post Reply | Private Reply | To 6 | View Replies]

To: acad1228
"This should get you there:"

Thar she blows!

(I did like ten google searches and did not find this.)

Thanks

10 posted on 08/26/2005 5:43:35 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 8 | View Replies]

To: Mad Dawgg

Did you boot into safe mode and scan it?


11 posted on 08/26/2005 5:43:51 AM PDT by AppyPappy (If you aren't part of the solution, there is good money to be made prolonging the problem.)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Mad Dawgg
Nope I get a message from several Virus programs that cannot delete or disinfect. I've went down into DOS to try and directly remove it and no luck whatsoever.

It sounds like you're trying to "clean" the infected files. You will need to delete them.

If you're using WinXP or WinMe, Windows is probably reinfecting your computer. You will need to turn off "System Restore" before trying to run the AV software.

Mark

12 posted on 08/26/2005 5:46:19 AM PDT by MarkL (It was a shocking cock-up. The mice were furious!)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Mad Dawgg

1. google how to boot up in safe mode, write down the instructions

2. install a virus scan disk if you haven't already.

3. turn machine off, wait a minute, turn back on in safe mode

4. run virus scan


13 posted on 08/26/2005 5:46:55 AM PDT by japaneseghost
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg
MediaInject is adware. You just nee a program called Adaware. I'll be back with the link.
14 posted on 08/26/2005 5:48:15 AM PDT by The_Victor (If all I want is a warm feeling, I should just wet myself.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg
Here's the link for Adaware. It's free and is very good at nuking adware programs.

http://www.lavasoftusa.com/software/adaware/

15 posted on 08/26/2005 5:49:46 AM PDT by The_Victor (If all I want is a warm feeling, I should just wet myself.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: acad1228
Oh and BTW I was told to goto Dell for help with this issue by my ISP/Virus providers.

They tried to sell me a $235.00 a year Plan to fix this.

I asked him if this conversation was being recorded. He said yes and I said well please make sure it is, and he said there was no doubt.

Then I went off on a 10 minute rant replete with dripping sarcasm on the fact of them wanting me to pay over half the price of a new computer each year for software support. I then thanked him for his time and hung up.

I got no problem paying for support but that price is ridiculous.

16 posted on 08/26/2005 5:50:01 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 8 | View Replies]

To: Mad Dawgg
In addition to running an anti-virus software also try a good spyware remover such as one from this site
17 posted on 08/26/2005 5:50:05 AM PDT by The Great RJ (q)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

Yep! I love their computers, and their service is usually pretty good, but they have some people on their service line who've forgotten what "customer service" means. I don't know, maybe they're getting commision on service packages.


18 posted on 08/26/2005 5:53:52 AM PDT by acad1228 (Free The West Memphis Three!!!)
[ Post Reply | Private Reply | To 16 | View Replies]

To: Mad Dawgg

http://pchell.com


19 posted on 08/26/2005 5:54:11 AM PDT by azhenfud (This tag line is currently experiencing technical difficulties. Please stand by.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg
I don't know if you've tried some of the online scanners. But here's a couple that are pretty good:
Trend Micro Free Online Scan (http://housecall.trendmicro.com/)
Bit Defender Online Scan (http://www.bitdefender.com/scan8/ie.html)
RAV Single File Scanner (http://www.ravantivirus.com/scan/indexn.php)
Panda Active Scan (http://www.pandasoftware.com/products/activescan/com/activescan_principal.htm)
I've tried the Trend and the Bit Defender. Both of those seem to work reasonably well. The other two I haven't tried but I've used RAV's email scanning for quite a while. Panda I have no idea about, but I did see some good reviews.
If the virus you're talking about is the same one I think it is, most (if not all) of these free online scans should be able to detect and delete the infection.
Let us know how everything turns out.
20 posted on 08/26/2005 5:56:32 AM PDT by fmonkey
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

MD,

FIRST - you HAVE to DISABLE your system's restore feature - otherwise the virus will continue to restore at boot.
SECOND - you need to kill the running process associated with the virus. HijackThis is a good program to accomplish this.
THIRD - eliminate the virus by running TREND MICRO's virus scan from http://housecall.trendmicro.com/


21 posted on 08/26/2005 5:59:07 AM PDT by azhenfud (This tag line is currently experiencing technical difficulties. Please stand by.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg
If you need help removing, both McAfee and Norton maintain virus info and removal instructions.

Norton - http://securityresponse.symantec.com/avcenter/vinfodb.html#threat_list

McAfee - http://us.mcafee.com/virusInfo/default.asp?cid=10371

From these pages you can search their virus databases and get info on how to clean up you machine, and how to avoid infection in the future.

22 posted on 08/26/2005 5:59:15 AM PDT by The_Victor (If all I want is a warm feeling, I should just wet myself.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

TDS-3 is one of the better ones.


23 posted on 08/26/2005 6:00:09 AM PDT by xcamel (Deep Red, stuck in a "bleu" state.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

What's the filenam? Most virus scanners will report the filename.

If it's Zip, exe or cab, the scanner probably can't remove the virus because it's one of many files in an archive.

You'll have to figure out whether you need the file and then delete it manually.

The other possibility is runninur scanner in Safe Mode.


24 posted on 08/26/2005 6:03:25 AM PDT by js1138 (Great is the power of steady misrepresentation.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

I had run Bit and Trend micro.

But I had not done so with restore of. Trying it now.


25 posted on 08/26/2005 6:06:14 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

The Virtool.Mediainject.A you listed is supposedly adware. So virus scanners will not touch it.

You need adware removal software.


26 posted on 08/26/2005 6:09:41 AM PDT by JoeSixPack1
[ Post Reply | Private Reply | To 25 | View Replies]

To: Mad Dawgg

Get a Mac......


27 posted on 08/26/2005 6:11:19 AM PDT by aviator (Armored Pest Control)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

bttt


28 posted on 08/26/2005 6:16:24 AM PDT by ZOOKER ( <== I'm with Stupid...)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg
"I had run Bit and Trend micro.

But I had not done so with restore of(f). Trying it now."

That'll do her in for good.

29 posted on 08/26/2005 6:25:06 AM PDT by azhenfud (This tag line is currently experiencing technical difficulties. Please stand by.)
[ Post Reply | Private Reply | To 25 | View Replies]

To: Mad Dawgg

Hate to say it, but how about you get a MAC?


30 posted on 08/26/2005 6:25:57 AM PDT by Casloy
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg
NOD32

If that doesn't work, Save what you can and reformat/reload windows from scratch.

31 posted on 08/26/2005 6:26:09 AM PDT by Clock King ("How will it end?" - Emperor; "In Fire." - Kosh)
[ Post Reply | Private Reply | To 1 | View Replies]

To: azhenfud
"MD,

FIRST...

OK I did all the steps you listed. Bitdefender is running now. I will get back to you all when it is done.

(I went with bitdefender because Trend did not list it last time. Bit did and tried to remove it, but apparently could not because it was RUNNING. If Bit Doesn't get it I will try Trend)

32 posted on 08/26/2005 6:27:05 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 21 | View Replies]

To: Mad Dawgg

Your virus might be a variation of this:
"Linux.Hyp.6168 is a parasitic virus that infects Linux kernel modules.
Also Known As: VirTool.Linux.Infect [AVP], Linux/Virtool.6168 trojan [McAfee] "...(Info from Symantec website). If so, Norton / Symantec AntiVirus should zap it. Follow instructions on the Symantec web.


33 posted on 08/26/2005 6:32:39 AM PDT by bobsatwork
[ Post Reply | Private Reply | To 1 | View Replies]

To: Casloy
"Hate to say it, but how about you get a MAC?"

Yeah.

Been There.

Done That.

Bought the T-shirt

Sold it after it crashed for the third time. (I use some different software that will not run on the damned things apparently because tech help gave up and told me to search for some different software. No thanks tooooo expensive. ANd the software runs fine on my XP machine.)

34 posted on 08/26/2005 6:33:25 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 30 | View Replies]

To: Mad Dawgg

bummer


35 posted on 08/26/2005 6:34:20 AM PDT by WKUHilltopper
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

Go to bed for a week ....if that doesnt work try a month


36 posted on 08/26/2005 6:35:03 AM PDT by woofie
[ Post Reply | Private Reply | To 1 | View Replies]

To: Mad Dawgg

Two sites for future reference:

http://www.diydatarecovery.nl

and

http://www.ihatedell.net

Good Luck!


37 posted on 08/26/2005 6:37:55 AM PDT by Mad Mammoth (Cindy Sheehan = Possessed by the Rachel Corrie demon. Same Hate, Same Foul Taste, Less Calories.)
[ Post Reply | Private Reply | To 16 | View Replies]

To: Mad Dawgg

Well done! It's not the poor guy on the phone's fault, but by making sure it got recorded you got the right words up the chain where the people who do make idiot decisions can hear ya.

And yes, losing repeat business &/or word of mouth business in trying to sell ripoff 'service' plans is an idiot decision.

Hope you nuked that adware as well as you've nuked Dell :)


38 posted on 08/26/2005 7:23:55 AM PDT by No.6 (www.fourthfightergroup.com)
[ Post Reply | Private Reply | To 16 | View Replies]

To: Mad Dawgg
These people have a fix for just about everything and it's free, (donations optional). Just follow the directions before posting in their forum.

http://www.help2go.com/
39 posted on 08/26/2005 7:26:54 AM PDT by DocRock (Osama said, "We love death, the U.S. loves life, that is the main difference between us.")
[ Post Reply | Private Reply | To 1 | View Replies]

.


40 posted on 08/26/2005 7:33:39 AM PDT by firewalk
[ Post Reply | Private Reply | To 39 | View Replies]

To: All

I've got one that Adaware can't seem to get rid of--Adblaster.

When I go to the sites that tell you what to delete, there is one file in Windows system folder that I can't delete--it's apparently protected by Windows file protection. I have the program blocked from accessing the internet, but I can't get rid of it. It keeps popping up now and then trying to access the internet.

If anyone has any suggestions, I'd appreciate your help.


41 posted on 08/26/2005 7:57:33 AM PDT by B.Bumbleberry
[ Post Reply | Private Reply | To 14 | View Replies]

To: B.Bumbleberry

Try SpyBot S & D

HolyMoly has links for all the stuff you need on the his homepage


42 posted on 08/26/2005 8:03:08 AM PDT by ChefKeith ( If Diplomacy worked, then we would be sitting here talking...)
[ Post Reply | Private Reply | To 41 | View Replies]

To: ChefKeith
FYI Spybot and Adaware did not delete this one.

It is a bugger. Puts a folder and program on your HD called Micore that so far I cannot delete. No Matter what I have tried including all of the suggestions listed here (save for one and I am trying it now)
43 posted on 08/26/2005 8:16:35 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 42 | View Replies]

To: azhenfud
"That'll do her in for good."

12:02:59 Firewall preventing micore to access 66.94.230.39 port 80 (World Wide Web HTTP) over tcp
12:04:43 Firewall preventing micore to access 66.94.230.47 port 80 (World Wide Web HTTP) over tcp
12:05:01 Firewall preventing micore to access 66.94.230.50 port 80 (World Wide Web HTTP) over tcp

That is what my Firewall console is showing me this little bitch of a bug is trying to connect every 2 seconds (I am not fast enough to copy each instance as it goes zipping by on my firewall console)

This program is apparently installed somehow using a trojan and uses the cookie/spyware listed above.

Looks like a total re-install when I get back from the Browns game.

44 posted on 08/26/2005 9:11:06 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 29 | View Replies]

To: azhenfud

Nailed it had to do the steps you had, then go into safe mode (after removing the cookies and adware/spyware with tthe Scanner program) then remove the MICORE Program manually. Geesh there should be a death penalty for these damn adspammer/malware idiots.


45 posted on 08/26/2005 10:25:51 AM PDT by Mad Dawgg ("`Eddies,' said Ford, `in the space-time continuum.' `Ah,' nodded Arthur, `is he? Is he?'")
[ Post Reply | Private Reply | To 29 | View Replies]

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson