WHO, in this day and age of enlightenment... WHO, I ask, would buy a nice new computer, really pretty well-equipped, with DVD burner, dual-output video card, and some other nice features? Who would buy one of these and NOT BUY ANTIVIRUS?
One of the pastors here.
It's his home computer, but guess who's been fighting with it all morning?
Yeah, me.
His wife was checking email, and saw one FROM their email address, TO their email address, with the suject line of RE:[]. It had an attachment. Guess what she did?
Yeah.
I'm about to give it back to him and tell him he'll need to use the system restore disks. Because I can't get the virus off, because whichever one it is is preventing me from installing Symantec Corporate Antivirus, and that's what we use here.
I'm not being mean (although I am a little miffed); I just don't have any other options.
josh [email] said at 10:17 AM 11-08-2005: might wanna try setting the machine to boot from CD then reboot it with the antivirus CD in the drive... i think most of them can boot into a dos app that will clean the disk without opening windows.
ed [email] said at 10:39 AM 11-08-2005: Tried that. The AV CD saw itself as the C: drive, and didn't see the hard disk.
In happier news, I did find a FREE ANTIVIRUS software package that I could install whilst booted into safe mode (SAV won't install in safe mode), so I have installed that, and am scanning now. So far, it's found Bagle. The scan continues...
ed [email] said at 11:21 AM 11-08-2005: I installed Antivir in safe mode, then ran it booted regularly. Worked like a champ. Virus gone, system no longer hosed.
atchafalaya said at 11:08 AM 11-08-2005: ed, i just had the exact same problem, and i know what virus it is. You can email me at big.atchafalaya@gmail.com and i will give you my number and walk you through what to do. You have two viruses on the machine, from the same email, Lodav A and Lodear C, both bAGLE VARIANTS. Go to this webpage http://securityresponse.symantec.com/avcenter/venc/data/trojan.lodear.removal.tool.html and download the tool, run it in safe mode, and then go from there. The virus blocks all known antivirus software processes, see http://securityresponse.symantec.com/avcenter/venc/data/trojan.lodav.a.html ... email me if you need help . After you run the removal in safe mode you can install your antivirus stuff and take it from there.
ed [email] said at 11:23 AM 11-08-2005: Thanks, dude. It (Antivir) found both the Bagle variants and iced them. I appreciate the info, though! And yep, I uninstalled Antivir and gave him Symantec Corporate. Scanned with that, no worries!
atchafalaya said at 11:26 AM 11-08-2005: ok cool. yeah i just dealt with this bad boy on my secretary's machine and it whipped my ass for a while. good job man.
artnotloggedin said at 11:57 AM 11-08-2005: Ed - there is a great free app called Stinger. It checks for the 55 most prevalent viruses and it runs underneath the radar of the viruses so they dont know its getting run. It will remove the bad guys.
