Just a little warning. This is the biggest scam/virus/malware of the year. I've had several friends make the mistake of clicking on one of their popups and it is a major pain to remove. I think there are other variations of the name.
Oh my gosh i just finally got rid of this virus after 5 days. If you do get it go to the CNET website and do a search for Antivirus2009 and there is a great forum that explains how to get rid of it. Definitely watch out though!
How are people getting the virus on their computer to begin with? What's their scam?
How are people getting the virus on their computer to begin with? What's their scam?
Well looks like there's a new "version" of this *****. It's called Antivirus 2010 now (original huh). My buddy brought me his computer on Sunday and I have been unable to get rid of the damn thing. I got it so there's no popup and all the warnings are gone but there's something that keeps changing permissions on apps so that you can't run them anymore. Last time I just had to get rid of something called TDSServ but I'm not finding that this time. All the forums I've read about this suggest certain tools (Malwarebytes, etc..) but I can't run any of them because of this. Any suggestions?
Can you get to them from safe mode?
I can't run them in safe mode either.
I can't run them in safe mode either.
Exact same problem. It's a rootkit that has dug deep into the system.
Try running Combofix from safe mode. It was basically our last resort before nuking it and starting over.
Here's the link, part-way down the page. Just make sure you know what you're doing because this can also seriously mess things up.
Combofix download