|
| wow theese virus writers have no life |
|
|
| The FatsoA virus got into my computer and wouldn't enable me to do anything let alone run my anti virus to get rid of them. It took 2 days to finally get my computer back to normal. Norton anti virus was no help whatsoever. It said I was virus free but AVG anti virus picked up 44 viruses all Fatso A.
This si the case of the free being better than the paid for. |
|
|
| how can my computer be rid of this virus?
|
|
|
| i noticed a virus thing that spread within an hour nearly my entire list had it, but it wasnt sending links it was sending files. I knew it was a virus because it had corny file names like "lesbo couples" or "my webcam porn" and also it wasnt an image or text document or anything, it was an unknown type file, labeled: ".sdfs" or something
If you ever get something sent to you like that, it's quite obviously mal-ware of some sort |
|
|
| This is the case of the free being better than the paid for.
What version of Norton were u running at the time the Fatso A attacked yo system? Plus were yo virus definitions up to date? |
|
|
| The new MSN Messenger virus takes on many names such as:
Fat Elvis
Crazy Frog gets hit by train
Jennifer lopez..........and other names. It is spread through msn messenger in the form of a hyperlink that always ends with .PIF and if you click on it, it will open up a internet page and download the worm onto your computer.
The virus is around 17kb in size
It will be passed onto your online contacts when you sign onto msn Messenger
The worm closes all virus protection and any drive such as cd drive when you open them, which removes most ways to install new combating software.
The file where the virus originates form is called serbw.exe and is usually found at c:\windows\ (%systemroot%) or C:\windows\system32\ (%systemroot%\system32)
This virus also adds itself on your computers registry and if you remove it unefficently it will remake itself the next time you restart your PC
I removed this program with a program called winpatrol (found at http:\\www.winpatrol.com). This program is free and fits onto a floppy (so if you want to install it without the virus closing the floppy drive, start-up your computer and hit F8, enter safemode with command prompt and type copy A:\*.* C:\ This will copy the contents of the floppy to your hardrive) once winpatrol is installed use it to close the active task serbw.exe and disable serbw.exe from startup. Then delete Serbw.exe from your harddrive following the path I mentioned earlier. This should remove this virus from your computer
David Meyer |
|
|
| BE CAREFUL OF ANY FILES SENT ON MSN AND ASK THE PERSON SENDUING THEM TO U IF THEY SENT IT BECAUSE AS SOON AS THE FILE GETS ON IT SENDS ITSELF TO EVERYONE.TOOK ME ALL DAY TO GET RID OF MINE AND IT TOOK MY NORTON OUT STRAIGHT AWAY. BE CAREFULL PEOPLE ITS A BITCH OF A VIRUS. |
|
|
| The first thing you need to do is to boot your computer in safe mode
(Hold f8 when computer boots up) After you sign in to your user or administrator
User in safe mode you need to search your hard drive for a text file
Named 'hosts' this file, when you open it will have a bunch of IP addresses
Along with some websites. You will want to delete this text file. After you
delete the file you will be able to open up your anti-virus and ad-aware software
again. I suggest using TweakNow RegCleaner 2.0.7. This software
can be accessed by anyone for free at http://www.download.com/3000-2094_4-10262639.html
Once you download this software you will need to install it. (Note: software might not
install while in safe mode, if this is the case just restart your computer
In normal mode and install software. Then boot back into safe mode)
After you install it run the full system scan and delete all registries
Found. After you do this you will need to go to my computer then click your main hard disc 'Local Disc(C:)'
You should now see different DOS short cuts. The name of the short cut may
be something like 'my vacation pic!! lol!!'Delete all short cuts you find
plus a 'screen saver file' After you delete these short cuts it's a good
idea to restart your computer in normal mode. Once you have done this,
you need to, once again, search your computer for a file named 'msmbw.exe'
(without the quotes) Once you have located this
file, Delete it. After you have done all this restart your computer one last
time and the virus should be all gone. But your computer is still in bad
shape. You need to reset all anti-virus program settings (I even had to re-install
Norton Anti-Virus 2003 Pro.) And run any extra ad-aware/Registry programs.
Once you have completed this last step your computer should be looking a
little better. If you have any questions please feel free to e-mail me at mrtomcef@yahoo.com
and I'll try to get back to you as soon as possible.
-To God be the Glory forever.
NOTE: This is for the newest virus I've got through MSN Messenger-3/12/2005 |
|
|
| How do you get rid of it, it has infected everyone's msn. |
|
|
| mine are called "the death of crazy frog" "my piccy" "me at the beach" "Saddam song" "Shoot Bill Gates" "hot babe" and loads more and theres no point in telling us what the virus is called because it changes its name on different computers! |
|
|
| Recently had one of the kelvir worms. I had to format and reinstall windows to remove it as i couldn't open my anti virus or spyware programs. |
|
|
| I am a novice at computer technology but my new computer has been invaded with a virus and I have no Idea how to get rid of it...was downloaded by my daughter from her msn contact. name of file is: serbw.exe If anyone can help me get rid of this please feel free to send email to: bettyboop278@yahoo.com
I use McAfee and it has basically taken it offline...
Thank you for your help and good luck to all of you who are like me and know nothing about this stuff! Have a great day. |
|
|
| Hi, you have [url="http://www.sophos.com/virusinfo/analyses/w32sumoma.html"]W32/Sumom-A[/url].
Please follow [url="http://www.sophos.com/support/disinfection/worms.html"]these instructions[/url] for removing worms.
|
|
|
| i have one physical address of the source of one of the links that were sent to me....i will now start saving a list of these physical addresses and when i get an organization set up, we will now PHYSICALLY go after these PEOPLE and phisically "TAKE CARE OF THE PROBLEM" this is the first warning.............. |
|
|
| please can anyone tell me how to get rid of this virus in plain english? it keeps logging me into msn messenger and has sent it to over 80 of my friends! |
|
|
| Please see the [url="http://www.sophos.com/support/disinfection/worms.html"]instructions for removing worms[/url].
|
|
|
| Please please help. I got the 'death of crazy frog' virus. and my computer is playing up. is there any way i can get rid of it? pease please please help |
|
|
| Hi, you have the [url="http://www.sophos.com/virusinfo/analyses/w32sumomc.html"]W32/Sumom-C[/url] virus.
W32/Sumom-C drops and runs a file called l0ser.Html on your machine, this file can be deleted. However recovery could be tricky due to Sumom-C terminating a large number processes related to anti-virus and security programs, including REGEDIT.EXE, TASKMGR.EXE and MSCONFIG.EXE
We recommend you get yourself some anti-virus software installed.
If you're running Windows XP, you might be able to use the "System Restore" feature.
|
|
|
| Thank-you Mr Meyer. I am extremely grateful, not only could I understand your instructions, they worked!
Noelle |
|
|
| damn..............thats ****ed up |
|
|
| how can you remove the worm fatso A |
|
|
| I think i got a virus on msn messenger where someone's name offered to let people see who blocked and deleted them. What is the offical name of it? Cause my computer is starting to get popups and freezes all the time now! help |
|
|
| Kelvir.B, Kelvir.C and Fatso.A
|
|
|
| yeh... i got the freeking virus... the problem is my firewall has stopped all outgoing connections and therefore i carnt update >.<, if u know how to get rid of it send me an email at long__log@hotmail.com (double underscore) dont expect a responce baecause it has already shut down msn, hotmail ect..... however suprizingly Yahoo still works...interesting. thanks ta |
|
|
| and what do we do if we found out this information to late...as in i clicked on the link? |
|
|
|
|
| Ok AVG finally released a new update, and I ran the scan and found Trojan Horse Proxy.AAF, in C:\Windows\system32\ztrsdpqq\winsp3.exe and C:\Windows\system32\ztrsdpqq\dark.exe.
It found the winsp3.exe one twice, durring scan, and 2 more times it found it by catching it trying soemthing.
I still can not access regedit unless in safe mode, and the links on this page still wont work, and any links in google searches that have to do with viruses and scans, will not work either.
before this scan I noticed msn messenger attempts to send out the link to my online freinds, but when i asked one if they got it, they said that they didnt get a link from me, so I believe its being blocked now somehow by msn, After the antivirus update and scan it seems that the attempts to send are not happening now, I also believe that the virus detections were caused by attempts, but no windows poped open and closed again.
So even though I am finding the Trojan Horse Proxy.AAF, I believe that the worm is still infecting me and that my scanner can not find it as of yet. I still do not know what worm it is, and I really would like to get rid of it without having to format and reinstall.
Please anyone who knows what worm this is and how to remove it, please help.
again the worm had sent links to members on my list,
"hey, look at this: ht (this space fill added for your safety) tp://vbulettin.com/msn.php?email=(Recipients e-mail address here)"
and my AVG found Trojan Horse Proxy.AAF, in winsp3.exe and dark.exe.
|
|
|
| My winsp3.exe virus was in a link that had my own pesonal e-mail address in it. It was accompanied by dark.exe and came through my msn saying "check this out!! this is sooo cool!" and it tryed to send to other people i know to. It would change my online status from "appear offline" to "online" then send the same thing with that person's e-mail address in it. it's located in several different places on my computer, in C: and the link is currently in Windows Prefetch. |
|
|
| I got a bug with windows, this effects MSN.
When you try to send files you get a browser screen, right?
Well when I try, the application using the browser closes. It happened when I was using internet explorer too.
IT'S REALLY ANNOYING!!!
I CAN'T UPLOAD OR SEND!!! |
|
|
| Hey, I did a google search on the virus worms that infect msn messenger, and came here, I'm not very computer literate, but I did read the earlier posts on how to get rid of the worms, and tried what was suggested, but it hasn't worked.
I downloaded winpatrol and that seems to be no help-there is no "serbw.exe" file on my computer, active or inactive, so I can't figure out what to do-I know I have a damn virus worm, I signed into msn messenger 5 minutes ago and it still coded itself to my contacts.
Can anyone suggest anything else other than the winpatrol or the sophos antivirus? I have AVG 7.0 but it isn't recognising that there is a virus either. Any help that anybody could offer would be greatly appriciated, please email me at m_crue88@yahoo.com . Thanks! |
|
|
| I got rid of the virus quite easily
I found a decent website that gets rid of the problem using MSCONFIG
I had a Worm called 'Block-Checker'
http://www.freewebs.com/michaelbrunsdon/block-checker.htm
It gives clear instructions on how to get rid of that certain virus...
But now I'm stuck on a certain virus myself
A trojan that keeps closing MSconfig, Regedit and Task Manager when I open them
Can someone help me to find out how to get rid of it? I can now open regedit etc.. I made a copy of msconfig, regedit and Taskmanager, and the virus only targets the name of Msconfig.exe
Not ''Copy_Of_MSconfig.exe''
Help!! |
|
|
| I have one that tells ppl "Wow, is this you?" with a link. How can i get this off my cmputer?
|
|
|
| How do you get rid of it? i deleted it on the programs list
|
|
|
| omg omg omg plz plz plz plz plz plz help me on this one..a few weeks ago i was on msn and a friend sent me this code for "new Msn 11 Plus" and when i was finished downloading it mt msn went all weird after i logged in, the virus logs into my account and then it sends a messege all on its own to all the ppl on my account list it says "Check This out lol :P New Msn 11 Plus! msn11plus.shizero.com" or smth like that and i've tried EVERYTHING to get rid of it, i've virus scanned it, restored i did a repair and recovery on my msn but it doesn't work. Even when i'm not logged into my msn it still affects the web page it types it in and the screen goes crazy..plz help me on this one, i REALLY dun want to get a new computer cuz i just got one :(
much love xoxo |
|
|
