| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 136471 | 2014-03-03 05:59:00 | Possible Trojan? | Poppa John (284) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1369212 | 2014-03-04 19:40:00 | Ugggh, cleaned 2 of these yesterday, not pretty. The win 7 laptop, I used a live CD and deleted svc-gkgn.exe from users\<username>\Appdata\Roaming. Win 8 was another story, one site had a fix that gave you the serial# for the software, so you had about a 2 second window to click about/register to enter it. That allowed the software to "run/fix" - it does nothing. Mbam then nuked it. It started too fast on the Win7 so I couldn't put in the serial. | Renegade (16270) | ||
| 1369213 | 2014-03-04 20:31:00 | Edit, just cleaned #3. This is a popular infection :D These people got it by clicking on a Speed Up Your Pc ad on Radio Live :groan: |
Renegade (16270) | ||
| 1369214 | 2014-03-05 05:54:00 | Try the bootable version of Hitman Pro | Agent_24 (57) | ||
| 1369215 | 2014-03-05 06:20:00 | Try the bootable version of Hitman Pro :thumbs: Got one of those infections on a customers PC today, it was svc-aabg.exe Ran Hitman Pro via bootable USB drive, which removed it and one other trojan and also repaired MANY altered/ infected reg files ( all disabling various other programs msconfig etc) No exe would run till after that. Then ran AdwCleaner, Rogue Killer ( or for Billy T - rouge) :p & JRT, all finding many results the others missed, still a few more programs to run, BUT they Claim to have had MSSE :groan: It totally toasted it. |
wainuitech (129) | ||
| 1369216 | 2014-03-05 07:57:00 | This may restore the reg settings etc (www.tweaking.com). BUT obviously you have to know how to use it / what to select Trojan remover if it could get online may also reset whatever. After you update it |
Speedy Gonzales (78) | ||
| 1369217 | 2014-03-05 08:26:00 | There is a WinFix feature in IObit Advanced System Care 7 Professional (Toolbox section) Just appeared recently,1 year license key at bottom malwaretips.com |
Lawrence (2987) | ||
| 1369218 | 2014-03-07 04:20:00 | All fixed. Called a local techie who called in & sorted it. Only cost $30. Back to normal now. Thanks for the help & advice. PJ | Poppa John (284) | ||
| 1369219 | 2014-03-07 09:42:00 | All fixed. Called a local techie who called in & sorted it. Only cost $30. Back to normal now. Thanks for the help & advice. PJ Just curious PJ, how long was the tech there ? $30 seems VERY cheap for a real business, either that or Wanganui techs dont charge like the rest of the country - or they haven't done it properly. If they only removed that one exe file that was listed, its still not clean. Got a call today, one person had a similar infection, one of the other companies in wgtn ( wont mention who) was meant to have cleaned it, was there for about 15 minutes the lady said and charged for an hour, two days later it was back, she was accused of reinfecting it again and they were going to recharge to clean it again -- wont repeat what she said she told them. Heard and seen this sort of thing happen from them before. The one I took back today, took 5 minutes to get the main infection out, and a further 4 hours of scanning to remove the rest and repair the damage it had done. MANY system files were altered, many things didn't work right away.:2cents: |
wainuitech (129) | ||
| 1369220 | 2014-03-08 06:35:00 | Just curious PJ , how long was the tech there ? $30 seems VERY cheap for a real business, either that or Wanganui techs dont charge like the rest of the country - or they haven't done it properly. If they only removed that one exe file that was listed, its still not clean. Got a call today, one person had a similar infection, one of the other companies in wgtn ( wont mention who) was meant to have cleaned it, was there for about 15 minutes the lady said and charged for an hour, two days later it was back, she was accused of reinfecting it again and they were going to recharge to clean it again -- wont repeat what she said she told them. Heard and seen this sort of thing happen from them before. The one I took back today, took 5 minutes to get the main infection out, and a further 4 hours of scanning to remove the rest and repair the damage it had done. MANY system files were altered, many things didn't work right away.:2cents: W...45Mins. He arrived with a very expensive looking dongle with all his programmes. First he opened in safe mode & got rid of the rogue. Then he looked t the HD & cleaned it. Removed stuff from startup. We DO keep our comps cleaned regularly. The laptop is onlya 160GB HD with 750MB ram. We have had hi before & our neighbour uses him as well. PJ |
Poppa John (284) | ||
| 1369221 | 2014-03-08 07:36:00 | W...45Mins. He arrived with a very expensive looking dongle with all his programmes. First he opened in safe mode & got rid of the rogue. Then he looked t the HD & cleaned it. Removed stuff from startup. We DO keep our comps cleaned regularly. The laptop is onlya 160GB HD with 750MB ram. We have had hi before & our neighbour uses him as well. PJ Hmmm 45 minutes still sounds to short a time to do full scans correctly. Having an expensive looking flash drive means nothing :) I have 3 that I carry with various programs. Some infections will even infect the drive when plugged in, hence theres always a backup at home. It may have been a slightly different infection you had, all the ones I have dealt with wont let you boot into safe mode, in fact a few even kill the booting from USB & CD, and the One I took back on Friday had killed all the exe's so I couldn't even open msconfig to disable anything. A normal clean out can easily need to run 4-5 or more programs each will find infections the others miss, some can take hours to run sometimes depending on the amount of data and speed of computer. MANY techs only run quick scans, which often miss infections. The one I took back HAD MSSE, which the infections totally destroyed :( MSSE simply cant cut it these days. |
wainuitech (129) | ||
| 1 2 3 4 | |||||