Sorry your browser is not supported!

You are using an outdated browser that does not support modern web technologies, in order to use this site please update to a new browser.

Browsers supported include Chrome, FireFox, Safari, Opera, Internet Explorer 10+ or Microsoft Edge.

Geek Culture / SpyFalcon, what a butt head...

Author
Message
JoelJ
21
Years of Service
User Offline
Joined: 8th Sep 2003
Location: UTAH
Posted: 27th Feb 2006 17:53
Link
DON'T go to their site, DON'T download their crap, it's a freaking trojan.

I don't know how i got it. I just turned on my computer this morning, and it won't leave me alone!

every 30 seconds, BAM another balloon.

I found this:
Remove SpyFalcon

and I started doing the manual removal, but none of the stuff on the list is there (none of the reg keys, but all the processes are running, but you can't kill them, because they start each other back up!)

so i'm running spyware doctor, because SB S&D won't let me (process is still running)

anyway, just letting the world know how mad I am right now...ugh


This just in: White lab coats cause cancer in mice. Details comming soon.
Back to top
Profile PM Website
JoelJ
21
Years of Service
User Offline
Joined: 8th Sep 2003
Location: UTAH
Posted: 27th Feb 2006 19:02
Link
and...POOF! nothing on my hard drive.

I got sick of trying to fix it. so i'm reinstalling windows now. just finished formatting

stupid stupid stupid.

Let this be a lesson kids... ask your mommy and daddy before downloading a program!

this is the first time i've actually gotten a nasty virus in a LONG time!


This just in: White lab coats cause cancer in mice. Details comming soon.
Back to top
Profile PM Website
Pincho Paxton
21
Years of Service
User Offline
Joined: 8th Dec 2002
Location:
Posted: 27th Feb 2006 19:04 Edited at: 27th Feb 2006 19:05
Link
'Hijack This' usually finds stuff like this, but not all of them.

This is probably one of those that has to be removed in Safe mode.

Back to top
Profile PM Email Website
Chris Franklin
19
Years of Service
User Offline
Joined: 2nd Aug 2005
Location: UK
Posted: 27th Feb 2006 19:18
Link
Like i said to you on msn joel try dafe mode with system restore off

Theme park simulator wip
http://forum.thegamecreators.com/?m=forum_view&t=71731&b=8
Back to top
Profile PM Website
JoelJ
21
Years of Service
User Offline
Joined: 8th Sep 2003
Location: UTAH
Posted: 27th Feb 2006 21:19
Link
Quote: "This is probably one of those that has to be removed in Safe mode.

Like i said to you on msn joel try dafe mode with system restore off "

didn't work.

so i just formatted


This just in: White lab coats cause cancer in mice. Details comming soon.
Back to top
Profile PM Website
ionstream
20
Years of Service
User Offline
Joined: 4th Jul 2004
Location: Overweb
Posted: 28th Feb 2006 02:01 Edited at: 28th Feb 2006 02:03
Link
Its amazing how windows knows it's infected, but won't do much about it.


Sorry to hear you had to format. How did you get this virus anyways?

And that's such a cool name, too! "Spyfalcon!" It could have been the name of Perfect Dark 3 or a James Bond movie.

Back to top
Profile PM Website
SirFire
19
Years of Service
User Offline
Joined: 4th Apr 2005
Location: North America
Posted: 28th Feb 2006 02:40
Link
That's not a message from windows in that bubble, it's a message from the virus promoting a product. It's designed to look like a windows message so your average grandma will click on it and buy it.

Back to top
Profile PM Website
Xenocythe
19
Years of Service
User Offline
Joined: 26th May 2005
Location: You Essay.
Posted: 28th Feb 2006 02:45
Link
ROFL OMFG LOL!!!!!!


My bro's freind just got the same virus too, and he explained it all to me. First off, this virus is so smart, you'll have to reboot. Thats your only choice. Its just a waste to scam people out of money. First, it creates junk and viruses and threats on your comp, and duplicates them. Then, every 10 secs it pops up saying you should scan. Then you scan, and it shows you all the threats it made, but doesn't tell you where they came from. Next, to clear all the viruses, you must pay for the full version, and that is the scam.

Really, just reboot, thats your only choice, but you should really backup all your important stuff. hiJack this will not do anything. My bro tried every possible way to get rid of it, he got close a couple times, but it just doesn't leave.

"Forgiveness is a good thing"
"Forgiveness is between them, and God. I set up the meeting"
-Man on Fire
Back to top
Profile PM Email Website
re faze
20
Years of Service
User Offline
Joined: 24th Sep 2004
Location: The shores of hell.
Posted: 28th Feb 2006 02:50
Link
you could make a bat script or a vb program to terminate all simotaneously.

Dont code slowly be SWIFT about it!
Back to top
Profile PM Email Website
Van B
Moderator
22
Years of Service
User Offline
Joined: 8th Oct 2002
Location: Sunnyvale
Posted: 28th Feb 2006 12:59
Link
I like to boot up in safe mode, and look for suspicious files, then sorting by date shows all the files that were added in around the same time. It's always possible to get rid of this stuff, you just gotta find the relevant files - Registries don't matter so much because if the file is gone, the threat is gone. The main problem is that these programs are running, so you need a safe mode and a bit of patience to clean up properly.

Using Spyware Doctor is recommended, not buying it - but it'll tell you what files are being naughty, so you can take a note of them for your innevetable safe mode boot.

It's also not a bad idea to completely wipe out all your cookies and temp internet files when your PC is dying.


Van-B

Put away, those fiery biscuits!
Back to top
Profile PM Email
Me!
19
Years of Service
User Offline
Joined: 26th Jul 2005
Location:
Posted: 28th Feb 2006 18:45
Link
which one of those taskbar icons is your AV background scan Joel?, or are you going to say you where not running any AV?



Windows: 32 bit extension/graphical shell for a 16bit patch to an 8bit OS originally coded for a 4bit CPU, written by a 2bit company that can't stand 1bit of competition, now available in 64bits.
Back to top
Profile PM
JoelJ
21
Years of Service
User Offline
Joined: 8th Sep 2003
Location: UTAH
Posted: 28th Feb 2006 20:02
Link
Quote: "I like to boot up in safe mode"

it still would run like and pop crap up.

and it also changes your security settings in IE, so it can download and run ActiveX programs without your permission.

then it starts to pop up adult ads.

eventually i had three or four viruses popping up messages in my notification area, plus more doing who knows what in the background.
and it messed with my Norton AV stuff too.
it was a beauty, I'm really glad that i started up fresh anyway, I was having other problems with my computer, and this virus was just the whip cream

lost all my DBP projects, most of my C# projects (mostly because i didn't want to wait to back them up, and they weren't important)
now my computer is so fresh and so clean clean...but now i can't find any of my visual themes I love so much

anyway, watch out for that virus


This just in: White lab coats cause cancer in mice. Details comming soon.
Back to top
Profile PM Website
Milkman
18
Years of Service
User Offline
Joined: 30th Nov 2005
Location: United States
Posted: 28th Feb 2006 20:11 Edited at: 28th Feb 2006 20:15
Link
i had this about a month ago. i tried everything: spybot, adaware, hijackthis... even a specialty fix designed for it, none of which worked. eventually i had to boot up in safe mode with command prompt, and delete the files through that. turns out the processes didn't run when explorer (not ie) wasn't open. i put dummy exe's in the files' places, and manually cleaned the registry. that finally fixed it
i could have just re-installed windows, but i didn't feel like it.


EDIT:

related files:
c:\windows\system32\mssearchnet.exe
c:\windows\system32\nvctrl.exe
and some more in:
c:\windows\temp

formerly xMik
Back to top
Profile PM Email
Chris Franklin
19
Years of Service
User Offline
Joined: 2nd Aug 2005
Location: UK
Posted: 28th Feb 2006 20:13
Link
lol well here's a nice theme

Theme park simulator wip
http://forum.thegamecreators.com/?m=forum_view&t=71731&b=8

Attachments

Login to view attachments
Back to top
Profile PM Website
Back to top

Login to post a reply

Server time is: 2024-11-16 15:56:29
Your offset time is: 2024-11-16 15:56:29