Jesse Custer
Cancelled
I have trend micro installed on my pc as an anti virus/anti spyware program. Is it ok to run adaware and spybot type of programs as well?
-
Tip Round 23 in Tipping - Weekly Platinum Membership prize.
Presented by The Golden Ticket - For Medallion Club tickets and Corporate Box tickets at the MCG and Marvel.
Round 22 Winner: 4 winners
Getting rid of spyware
- Thread starter Scottroo
- Start date
- Tagged users None
Jesse Custer
Cancelled
Thanks Borgsta, appreciate it.
Macca19
Moderator
- Moderator
- #229
I have a strain of this at the moment. Absolutely ludicrous virus. Ive run 4 different anti virus/anti spyware software and it cant get rid of it. I manually deleted some of the files which started the program (if the program started, it wouldnt let you open task manager, explorer, or any program that would help shut it down) but its still effecting the internet, changing any site I click on after a search in google to some shitty advert sites.
Im also trying malwarebytes as well to see if it fixes it. If it doesnt then I may have to re-format.
Geelong_Sicko
Brownlow Medallist
Any idea how it spreads? E-mail? Banner ads?
Donakebab
Premium Gold
This should be on everyone's PC. A combination of this and NOD 32 or Kaspersky should see your computer bullshit free.
Macca19
Moderator
- Moderator
- #232
malwarebytes fixed the majority of it and deleted 32 infected files (others could only find 2-6 infected files and couldnt delete them), but I still have the issue of google search results being hijacked, which is most annoying.
Not sure how it spread or how I got it....it seems most likely that someone got into an open port, as I wasnt browsing or downloading at the time.
Not sure how it spread or how I got it....it seems most likely that someone got into an open port, as I wasnt browsing or downloading at the time.
did you run malwarebytes in safe mode? failing that, have you tried 'hijack this' or ccleaner?
Geelong_Sicko
Brownlow Medallist
Disconnect from the internet (unplug the modem), run msconfig and see if there's any unusual programs listed in the startup checklist. If any unusual s**t pops up you may have to search for its name in the registry editor and delete the keys manually.
SammyFish25
All Australian
Okay, Ive got a tricky one here..
AV Security Suite (Virus)
Ive tired everything and anything that Ive seen online, AVG/Malwarebytes etc.
and nothing has worked, PC is currently operating in safe mode, where I can access everything, however when back in normal mode, I can open anything with a box popping up saying
(*insert file name*).exe is corupted, download latest/full version of AV Security Suite to fix this problem..
Ive tried using RKill, before scanning with Malwarebytes, but as soon as I run that (RKill) I get a pop up box saying "pev.rkexe" is infected.
Im at a loss of what to do next, and some help would greatly be appreciated
AV Security Suite (Virus)
Ive tired everything and anything that Ive seen online, AVG/Malwarebytes etc.
and nothing has worked, PC is currently operating in safe mode, where I can access everything, however when back in normal mode, I can open anything with a box popping up saying
(*insert file name*).exe is corupted, download latest/full version of AV Security Suite to fix this problem..
Ive tried using RKill, before scanning with Malwarebytes, but as soon as I run that (RKill) I get a pop up box saying "pev.rkexe" is infected.
Im at a loss of what to do next, and some help would greatly be appreciated
Mobbs
A Large Portion, Yes
Same deal, Malware Bytes fixes it (mostly). Stay tuned, instructions coming in a sec.
Mobbs
A Large Portion, Yes
1. Get MalwareBytes (impossible if you are running your own infected computer in unsafe mode). Try to get it via safe mode, or using a diff computer, file on USB stick, try again (in safe mode).
Once its there and installed, I have found a handy trick for avoiding the safe mode tiresomeness.
When you reboot your computer, stand right over it and wait for the very second your desktop appears. Slam your mouse into malwarebytes as fast as you can ...
The AV Security Suite virus kicks in a bit further down the startup process. About a minute after desktop appears. So if you can beat it to your Malwarebytes files, before it tells you its corrupted, Malwarebytes will open and run perfectly fine, removing the virus.
Once its complete. Reboot again, wait for the complete booting. Note wether the virus returns. It shouldn't. Then just re-run Malwarebytes a second time, and let it clean out whatever else it can find.
Also ... the new MS little castley housey thing also seems to have AV Security Suite covered now, so make sure you're updated with that resource-guzzling prick of a thing
Once its there and installed, I have found a handy trick for avoiding the safe mode tiresomeness.
When you reboot your computer, stand right over it and wait for the very second your desktop appears. Slam your mouse into malwarebytes as fast as you can ...
The AV Security Suite virus kicks in a bit further down the startup process. About a minute after desktop appears. So if you can beat it to your Malwarebytes files, before it tells you its corrupted, Malwarebytes will open and run perfectly fine, removing the virus.
Once its complete. Reboot again, wait for the complete booting. Note wether the virus returns. It shouldn't. Then just re-run Malwarebytes a second time, and let it clean out whatever else it can find.
Also ... the new MS little castley housey thing also seems to have AV Security Suite covered now, so make sure you're updated with that resource-guzzling prick of a thing
Mobbs
A Large Portion, Yes
If you already have RKill (dunno what that it, maybe it'll work), do what I suggested with that. hopefully you have a shortcut to it on the desktop.
Reboot, and dbl-click RKill as soon as you see it appear onthe deskptop. This should sneak it in before the AV Security Suite starts up.
Reboot, and dbl-click RKill as soon as you see it appear onthe deskptop. This should sneak it in before the AV Security Suite starts up.
SammyFish25
All Australian
Mobbenfuhrer = LEGEND!
Took your advice, and went nuts when it loaded, opened up and ran the scan.
Virus = Gone
Thanks heaps buddy, I Owe you one.
sblack
Brownlow Medallist
- Apr 23, 2007
- 21,377
- 4,753
- AFL Club
- Brisbane Lions
- Other Teams
- Sixers, Eagles, Man Utd, Georgetown
I had this mofo.
MalwareBytes left a folder with a rogue file in it. Was not happy.
Did the same kinda thing as you explained though Mobbs. Opened up Task Manager before the ****er could load. Stopped the virus' service (pretty easy to recognise), which then allowed me full access to Explorer. Already new where he was hiding and deleted that bitch.
All well again.
Annoying that Avast didn't pick it up.
MalwareBytes left a folder with a rogue file in it. Was not happy.
Did the same kinda thing as you explained though Mobbs. Opened up Task Manager before the ****er could load. Stopped the virus' service (pretty easy to recognise), which then allowed me full access to Explorer. Already new where he was hiding and deleted that bitch.
All well again.
Annoying that Avast didn't pick it up.
Mobbs
A Large Portion, Yes
sblack, your brilliant concept of locating and ending the process is second only to the most entertaining use of Chopper terminology to describe a manual approach to virus threats.
SammyFish you're welcome, but had I noticed you were a Saints man I'd have just sent you more viruses instead dammit Probably something rife with thumbs up if Ray sent you for free on kookica
SammyFish you're welcome, but had I noticed you were a Saints man I'd have just sent you more viruses instead dammit
Probably something rife with thumbs up if Ray sent you for free on kookica
Geelong_Sicko
Brownlow Medallist
Also, after an infection it's wise to turn OFF the System Restore (for XP anyway, dunno about Linux, Windows 7 or Vista) of all your drives, as quite a few viruses hide themselves within the restore points and will just reboot themselves at their own leisure if you don't nail the bastards right there and then.
Right-click 'My Computer', select 'properties' at the bottom of the list, click the 'System Restore' tab then click the 'turn off System Restore on all drives'. This will delete all your restore points as well as any hidden viruses that may be lying in ambush.
Reboot your computer, then turn System Restore back ON and immediately create a new restore point.
Right-click 'My Computer', select 'properties' at the bottom of the list, click the 'System Restore' tab then click the 'turn off System Restore on all drives'. This will delete all your restore points as well as any hidden viruses that may be lying in ambush.
Reboot your computer, then turn System Restore back ON and immediately create a new restore point.
sblack
Brownlow Medallist
- Apr 23, 2007
- 21,377
- 4,753
- AFL Club
- Brisbane Lions
- Other Teams
- Sixers, Eagles, Man Utd, Georgetown
Also, just remembered.
Check your Internet Options, as it usually sets you to connect through a proxy.
Go into Control Panel > Network and Connections, or whatever it is called, and find the 'Internet Options' option. Goto the Connections tab, then LAN Settings. Uncheck the box (if it is still checked) that says use a Proxy for LAN connections.
Check your Internet Options, as it usually sets you to connect through a proxy.
Go into Control Panel > Network and Connections, or whatever it is called, and find the 'Internet Options' option. Goto the Connections tab, then LAN Settings. Uncheck the box (if it is still checked) that says use a Proxy for LAN connections.
Mobbs
A Large Portion, Yes
Oh yeah yeah that particular AV Suite thingy does that.,
yeah that particular AV Suite thingy does that.,
If you are tired of virus you can install linux ubuntu and install general software like office, nero, adobe reader and so
Caesar
Ex-Huckleberry
Every week I run my virus-scanner, I get the same 3 threats pop up. I quarantine/delete them but the next week they are back again.
I don't visit any dodgy sites so I can only presume I picked up something nasty at some point and the virus scanner is only detecting/deleting part of it, and leaving something that keeps on reinstalling it. Any tips how to get rid of it?
FWIW I use AdAware Antivirus (free version), Microsoft Security Essentials and Spybot Search & Destroy.
I don't visit any dodgy sites so I can only presume I picked up something nasty at some point and the virus scanner is only detecting/deleting part of it, and leaving something that keeps on reinstalling it. Any tips how to get rid of it?
FWIW I use AdAware Antivirus (free version), Microsoft Security Essentials and Spybot Search & Destroy.
