Home > Antivirus Xp > Antivirus Xp 2008/blue Screen(wallpaper)

Antivirus Xp 2008/blue Screen(wallpaper)

We checked the account statement for the card we used to make the purchase to see who was actually listed as the merchant: In this case, it appears that CHRpay.com was Hope this helps! Thanks! Thanks a bunch!   I totally agree. navigate here

It is easy to remove! I'm not sure if this solves the problem for everyone, so this is the one part of the solution that I'm not certain is full, but it certainly worked for me.Once Flag Permalink This was helpful (0) Collapse - Zinky, Registry Entries Are Being Changed.. The actual list of threats and their descriptions as taken from the dat file is shown in the table below: Name of Threat Description of Threat VIRUS.Krnl33 Description of the virus https://www.bleepingcomputer.com/forums/t/159588/win32strationgenmm-removed/?view=getnextunread

C:\WINDOWS\system32\tdsslog.dll (Trojan.Agent) -> Delete on reboot. There are also other way's of removing the rogue, with programs which aren't as questionable as Enigma's Spy Hunter. IT WORKS.   Any leads on what a-holes wrote the virus?

C:\WINDOWS\system32\tdssmain.dll (Trojan.Agent) -> Delete on reboot. This is what I did as per instructions from Avast: 1. at the run command, then opened ?hkey current user, software and deleted ?xpantivirus?. My hosts file even blocks me from getting to the site.

I tried going to "msconfig" and unchecked the two items "rhcnbfj0ecaa" in my case, and it still didn't remove it or stop it from starting.  The best detailed set of instructions C:\WINDOWS\system32\tdssl.dll (Trojan.Agent) -> Delete on reboot. I've tried to provide all the details I can so that this is as painless as possible-- I'm aware that this topic has quickly gotten old-- but I would be deeply https://www.cnet.com/forums/discussions/antivirus-xp-2008-302475/ It doesn't even have to be run in safe mode.

What the virus does: - It places its core file in C:\Program Files\#randomname# - easy to spot. Monday, September 22, 2008 4:47 PM Reply | Quote 0 Sign in to vote  Julie_175 wrote: Malware Bytes really does work. Thank God for you. Logged raman Avast Evangelist Advanced Poster Posts: 1062 Re: *sigh* 'Nother `Antivirus XP 2008' fakeware situation « Reply #1 on: September 15, 2008, 12:12:33 PM » You should also use Mbam

Usually something like rhcgsbj0elj0 - It removes access to the Desktop and Screen Saver tabs in the Desktop Properties window through registry changes. - It places a .bmp and a .scr This will remove your existing AV program so make sure that you have the original disks to re-install afterwards. And that's totally without problems? Lots of errors messages to wade thru to start up, no 'change background' tab anymore in Control Panel, Hotmail will not work (whichever browser I use - cannot see my messages,

by Grif Thomas Forum moderator / July 26, 2008 2:26 AM PDT In reply to: I'll try this next. ...and you may need to do some manual adjustments to fix them.. check over here Installed RogueRemover. Please guide me to how i can confirm my doubts. Don't waste money on useless tools.

Just wanted to clarify that I wasn't making my suggestion for that site as an end-all solution, hence the last sentence suggesting further countermeasures. It blocked me from opening all anti-virus sites. Tuesday, August 26, 2008 8:31 PM Reply | Quote 0 Sign in to vote Mmmm, sounds good, but nice old Antivirus has this on its list of banned websites.  Any other http://100linux.com/antivirus-xp/antivirus-xp-2008-and-now-blue-screening.html Why isn't this program we downloaded from Kioske finding and getting rid of these viruses or whatever they are?

So as long as you don't destroy your computer trying to get rid of the virus, you should be ok. I can change my wallpaper now. Removed.

Trojan VX Downloader 2 Provides remote access to your PC without your notice.

trust me, there is no other manual way to completely get rid of this virus. Some of these files that you delete DO NOT GO TO THE RECYCLING BIN. When they do, the web browser displays the following page: If the user fills out the form and provides their credit card data, they will be taken to this subsequent page: Thursday, August 28, 2008 11:54 AM Reply | Quote 0 Sign in to vote   AndrewBe   If you can restore that file, then boot up run regedit.  Find that wininet.dll

We hope it is gone for good. Make sure that your data is Virus scanned on a separate machine before re-introducing it to the clinical new environment. Sent all to quarantine. weblink Please don't use all UPPER CASE.

i had the same issue that you are having. You can also read a thread at our Computer Help forum, "Some information about Spy Hunter", which should tell you more.Personally, I would stick with Marianna's suggestion to try "Malwarebytes' Anti-Malware" I also cannot load a picture onto my desktop. Tried next to uninstall it using Add/Remove Programs and it wouldn't and gave me a Windows error report screen which I clicked to send.  Tried System Restore to go back and

so i guess try stopping anything that stands out like that. Oh one more thing.  The designer of this virus likes to hide the desktop tabs and screensaver tabs in your desktop properties area.  You may need to go to your registery and change Crap. well anyway, onto more pressing matters..- SAS found 6 items.

Logged For the Best in what counts in Life :www.tacf.org desutoroiyaa Newbie Posts: 6 Re: *sigh* 'Nother `Antivirus XP 2008' fakeware situation « Reply #9 on: September 16, 2008, 09:00:41 PM when you right click and go to properties on the desktop, where you have the `Themes,' `Appearance,' and `Settings,' tabs, should there not be one that says `Desktop' for you to Friday, September 19, 2008 12:44 AM Reply | Quote 0 Sign in to vote Unfortunately, it is NOT THAT SIMPLE. I did a full system scan and it cleaned out everything including the pest Anti virus_2008.