PSGuard and AntiVirusGOld - Techist - Tech Forum

Go Back   Techist - Tech Forum > Computer Software > Microsoft Windows and Software
Click Here to Login
Closed Thread
 
Thread Tools Display Modes
 
Old 06-23-2005, 12:37 PM   #1 (permalink)
True Techie
 
Join Date: Feb 2005
Posts: 235
Default PSGuard and AntiVirusGOld

My client called me up today about a barrage of popups and warnings.. virus.. trojans.. etc..

ran there and found some rather strange software installed..

found out that he was infected with the spywares

PSGuard and AntiVirusGOld

Immediately i did manual cleaning.. after a few hours of tracing etc.. i finally got it cleaned.. suspended the processes and killed them.. (since it can't be killed using regular task manager)

but i have 2 things i can't seem to figure out how to fix..

1) Whenever the internet explorer is started, it redirects the user to the spyware fake website.. and even if i set the default homepage at blank, or something else, it seems that something's redirecting the internet explorer to that site every startup..

2) The desktop settings seems to be missing some tabs.. it only has the screensaver and the settings tabs. the rest are gone..


where do i go to fix these probelms? im suer it's in the registry or some settings somewhere..

please help..

and please dont give me a link to one of them STEP BY STEP removal.. my question here is more of, WHERE to go to fix these things..

thank you
__________________

clever_j is offline  
Old 06-23-2005, 12:51 PM   #2 (permalink)
Super Techie
 
Join Date: Jun 2004
Posts: 330
Send a message via AIM to dumdum8684
Default

the first one can be fixed with HijackThis which can be d/led from www.downloads.com I've run into the same thing. I'm pretty sure you want to look for a BHO and delete it. If you have questions about it please ask. i'm not sure on the second one tho. maybe someone else can help on that one.

-Aaron
__________________

__________________

My Computer:
-UV Reactive Acrylic Mid-Size Case
-Thermaltake 420W
-AMD Athlon XP \"Barton\" 3200+ 400MHz
-Cooler Master Aero7+
-Asus A7N8X-E Deluxe Mobo
-nVidia GeForce FX 5700 128MB
-2x Kingston HyperX 512MB PC3200
-2x 200GB WD 7200 8MB SATA
-2x 12\" UV Cold Cathodes
-5x 80MM 4UV LED Blue UV-Reactive Fans


My Laptop:
P3 750MHz, 512MB, CD-RW/DVD Combo, 15.1\" TFT, 20GB HD, 32MB integrated video
dumdum8684 is offline  
Old 06-23-2005, 01:26 PM   #3 (permalink)
True Techie
 
Join Date: Feb 2005
Posts: 235
Default

thanks dumdum..

for the first one.. i'd like to know how HijackThis fixes the problem.. i want to learn this and do it manually.
clever_j is offline  
Old 06-23-2005, 04:07 PM   #4 (permalink)
Super Techie
 
Join Date: Jun 2004
Posts: 330
Send a message via AIM to dumdum8684
Default

I'm pretty sure it just deletes a registry value. I'm not sure tho.
__________________

My Computer:
-UV Reactive Acrylic Mid-Size Case
-Thermaltake 420W
-AMD Athlon XP \"Barton\" 3200+ 400MHz
-Cooler Master Aero7+
-Asus A7N8X-E Deluxe Mobo
-nVidia GeForce FX 5700 128MB
-2x Kingston HyperX 512MB PC3200
-2x 200GB WD 7200 8MB SATA
-2x 12\" UV Cold Cathodes
-5x 80MM 4UV LED Blue UV-Reactive Fans


My Laptop:
P3 750MHz, 512MB, CD-RW/DVD Combo, 15.1\" TFT, 20GB HD, 32MB integrated video
dumdum8684 is offline  
Old 06-23-2005, 10:57 PM   #5 (permalink)
True Techie
 
Join Date: Feb 2005
Posts: 235
Default

ya.. me thinks so too.. hoping someone around ehre knows..
clever_j is offline  
Old 06-25-2005, 07:14 AM   #6 (permalink)
True Techie
 
Join Date: Feb 2005
Posts: 235
Default

bounce
__________________

clever_j is offline  
Closed Thread

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off




Copyright 2002- Social Knowledge, LLC All Rights Reserved.

All times are GMT -5. The time now is 07:58 PM.


Powered by vBulletin® Version 3.8.8 Beta 1
Copyright ©2000 - 2017, vBulletin Solutions, Inc.