Technology, Support, and News Forum

[kd1966 Profile YIM]

Scene: Home where some elderly folks have lived over 35 years........... got a Dell about 2 years ago and everything works great! Introduce some grand-kids.......... unknown computer savvy............ anyhow I arrive on the scene............

Apparantly all the problems started when this "red icon" started popping up, which is/was the WinAntiVirus 2006............. I didn't make the mistake of trying to "run" the program fortunately...........

I went into safemode and ran some standard scans (Ewido, AdawareSE) and deleted much of what was causing problems.........BUT there seemed to be something that kept coming back.............

I checked for rootkits and such - thankfully none - and I eventually got this one "licked"...... but not without much hassle. Using my online research skillz I could not locate the "offending" files for a description of the originator, as stuff just kept coming back over and over..........

I finally traced some of the files to names:
pafmb.dat
jdpjpm.exe
ckckv.exe
ALL UNDER %windir%\system32 (except ckckv.exe which was %windir%\PSS)
Not only that, but this was causing a process to run 3X, amhnp.exe, but although I could see it in TaskMgr initially, it was INVISIBLE to processexplorer (Sysinternals) for a good awhile.

I think I ran rootkit identifier programs about 3 or 4 times........ NOTHING came up. I thought I would run an online scan, but the best one I had (Panda) would ONLY REMOVE VIRUS, NOT a DANG THNG ELSE!! Unless you paid, of course.......

I was finally able to get rid of this through registry editing in safemode, along with renaming/moving the resulting files after deleting........... and also installing Avast! after removing Mcafee Virus scan (It a Dell, dude..lol) and running a boot scan on restart to remove the offending files that I did not have "permission" to remove, even after renaming.........

[NT50 Profile]

Instead of Avast ..... I understand it is free..... why didn't you intsall trail NOD32 and let it take care of it for you??????

[augie]

Scene: Home where some elderly folks have lived over 35 years........... got a Dell about 2 years ago and everything works great! Introduce some grand-kids.......... unknown computer savvy............ anyhow I arrive on the scene............

Give the kids a Guest account. Period. I'm sure the folk there won't like that answer, education along with supervision is the answer, But I doubt the seniors could do that. Set up a guest account that can't install squat! Problem solved, for the Dell at least. As for the grankids, well: , not really but they should be stopped!

[kd1966 Profile YIM]

Instead of Avast ..... I understand it is free..... why didn't you intsall trail NOD32 and let it take care of it for you??????

I asked them about that, but they were "hesitant" about trialware after this fiasco. Avast! did a fine job of killing this beast during the bootscan, and I didn't want to really "burden" them with having to call me back in 30 days when it expired (Even though I don't mind making a $$ or 2...)
I have a feeling I'll be getting called back there anyhow (Not for the Virus stuff, but more of a "tutor" role)

[augie]

Instead of Avast ..... I understand it is free..... why didn't you intsall trail NOD32 and let it take care of it for you??????

I asked them about that, but they were "hesitant" about trialware after this fiasco. Avast! did a fine job of killing this beast during the bootscan, and I didn't want to really "burden" them with having to call me back in 30 days when it expired (Even though I don't mind making a $$ or 2...)
I have a feeling I'll be getting called back there anyhow (Not for the Virus stuff, but more of a "tutor" role)

LOL, look up!