Re: Total Security Trojan

That email bounced because my mailbox is full. I use that email only for newsgroups to capture spam messages which I then use to update my hosts file and Remove-it definitions. If you need to email me then use the email link at the bottom of my web page http://www.ms-mvp.org or use this news group. Or wait a few weeks until I clean it out.


--
The Real Truth http://pcbutts1-therealtruth.blogspot.com/
*WARNING* Do NOT follow any advice given by the people listed below.
They do NOT have the expertise or knowledge to fix your issue. Do not waste your time.
David H Lipman, Malke, PA Bear, Beauregard T. Shagnasty, Leythos.




"timOleary" <timothy.w.oleary@xxxxxxxxx> wrote in message news:9f8b61a9-328b-4efb-b011-6aa278157f4a@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx
On Aug 21, 9:16 am, Jim <bojimbo...@xxxxxxx> wrote:
On Thu, 20 Aug 2009 21:43:27 -0700 (PDT), timOleary



<timothy.w.ole...@xxxxxxxxx> wrote:
>On Aug 21, 12:38 am, timOleary <timothy.w.ole...@xxxxxxxxx> wrote:
>> On Aug 21, 12:01 am, ??ç?l <l...@xxxxxxxxxxxxxxxxxxxxxxxxx> wrote:

>> > Hello Tim,

>> > I recommend downloading and installing MalwareBytes' Antimalware >> > (MBAM) and
>> > SUPERAntiSpywa?e (SAS).

>> > Do a full scan with Malwa?eBytes' and SUPERAntiSpywa?e.

>> > <http://www.superantispyware.com/>

>> > Reboot
>> > -=-

>> > <http://www.malwarebytes.org/mbam.php>

>> > Reboot
>> > -=-
>> > The programs are free. (There is a paid version but you don't need to >> > buy it
>> > to remove malware.)
>> > -=-

>> > Good luck

>> > ??ç?l
>> > ???
>> > -=-

>> > "timOleary" wrote:
>> > > Any info on origins and how to get rid of this beast?

>> Thankyou all for for replying

>> this program somehow got into one of the workstations at my place of
>> business. It placed a message which took over the desktop, produced a
>> pop up which looked like a process occurring, and lots of balloons
>> saving security monitor detected this or that. also occassional
>> bluescreens and shutdowns. I was unable to open task manager, a local
>> virus scan did not detect it, add-remove programs would not open,
>> what a mess. never saw anything like it b4. this is a company trying
>> to sell something?

>> I googled total security an saw several sites. One site described a
>> manual cleaning process and listed a number of files and a reg entry
>> which needed to be removed, along with an app download option; but was
>> wary of downloading anything unknown
>> so
>> I called Norton and complained.
>> They gave me a case #.
>> I handed the issue off to the user of the workstation at that point.
>> The fix involved remote log on by them. But they soon got frustrated
>> by the frequent interruptions caused by the malware.
>> the user says they logged onto the system in safe mode, and removed
>> files, and now it will be necessary to re-register certain apps.
>> now i got to figure out who is who.
>> i want to have a defense for the next attack. I wonder how this thing
>> got in the
>> pc
>> thanks again

>one more thing: real truth MVP emailed me privately with essentially
>the same info as in the above posted reply. I replied to it and my
>email went undeliverable with an unusual error report message and a
>phone number to call. i didn't call it

Hi Tim , can you post here the email contents ?

Jim: is this what you wanted to see?

BEGIN CONTENT OF MY EMAIL TO REALTRUTH "Use my Remove-it software, it
will remove that malware from your system. Choose yes for all options
when prompted. Download it here http://www.ms-mvp.org/


--
The Real Truth http://pcbutts1-therealtruth.blogspot.com/
*WARNING* Do NOT follow any advice given by the people listed below.
They do NOT have the expertise or knowledge to fix your issue. Do not
waste your time.
David H Lipman, Malke, PA Bear, Beauregard T. Shagnasty, Leythos."END
CONTENT OF MY EMAIL"
next
BEGIN CONTENT FO DELIVERY FAILURE REPORT"We're sorry. There's a
problem with the e-mail address(es) you're trying
to send to. Please verify the address(es) and try again. If you
continue
to have problems, please contact Customer Support at (480) 624-2500.

<trt@xxxxxxxx>:
child status 100...The e-mail message could not be delivered because
the user's mailfolder is full.

--- Below this line is a copy of the message."END CONTENT OF DELIVERY
FAILURE REPORT.
==========================
there was a lot of header stuff too.

BTW: I just upgraded my superspyware to professional lifetime, two
licenses, and a CD copy. It was about $10 per license, and another $10
for the CD

When I told my wife about the crisis at work, she told me that she had
an attack on her PC (here at home) that sounded remarkably similar. We
subscribe to Verizon Internet Security Suite, which is offered by our
DSL provider (obviously)
She called them and got them to remote logon and clean out the
malware. So now I'm getting in touch with the reality that virus
protection isn't enough. (DUH!)

.

Quantcast