Malware, Grrrr!

[Boomyal]

Both my wifes computer and mine have contracted a good case of malware. They seem to be somewhat different in their particular affectations but both involve bogus anti spyware programs and both are search engine redirect problems.

In my case I was able to find and delete the anti spyware program but on my wifes the only thing I can find is a prefetch file.

On my computer I have run every program I can find, including Malwarebytes, MS OneCare, Trend Micro, Avast, Super AntiSpy and SpyNoMore. Some find no problems, others find a few bad guys but the problem goes unresolved.

On my wifes computer, I have tried every way but sunday to run Malwarebytes but it will not open up. I was able to run MS OneCare and as on my computer it finds some issues but does not identify them nor fix them.

As is the case with other malware that I have contracted and been able to resolve, these cases cause all of the usual periodic lock ups, slower than snot internet performance and various other goofy messages.

I am looking for the next step before the computer performance grinds to a total halt.

Any ideas?

 

[hicr_nut]

Re: Malware, Grrrr!

http://www.bleepingcomputer.com/forums/

Check out the Am I Infected forum and take the advise of the Mods with the most posts.

 

[jlinder]

Re: Malware, Grrrr!

I have run spybot and been happy with it. (Careful, there is someone out there pretending to be Spybot Search and Destroy. They always seem to find a lot of spyware that can only be removed if you buy their full version. The real version is at http://www.safer-networking.org/en/download/ )

In advanced mode you can see what is run on startup. That might help you find the problem. Look for programs with weird names, especially if the name is a lot of random characters.

For the computer that will not run your anti malware software see if you can boot from a CD. That might let you run the cleaners you want.

 

[tx1961whaler]

Re: Malware, Grrrr!

Are you booting to safe mode to run malwarebytes?
Many tips here: http://www.bleepingcomputer.com/forums/forum55.html

 

[metalwizard]

Re: Malware, Grrrr!

http://www.bleepingcomputer.com/forums/

Check out the Am I Infected forum and take the advise of the Mods with the most posts.

This is GREAT advice. go to the link he posted, download "combo fix" save it to a flash drive on another computer if you have to.

Now start your computer in SAFE MODE. that means turn it on while repeatedly pressing f8 one it boots in safe mode. run the combo fix .

the malware you got is a NASTY one but Combo fix should take care of it.

when it prompts you to answer stuff go with the default. except when it asks about making a recover partition (or something like that) . click NO.

This should clear it up. no problem.

With all the kids here (we have 7 between us) plus grandma we have about 8 computers, most of them run ALOT. this malware has hit most of the computers at one time or another. combo fix has taken care of it every time.

Once you have the fix done. dump the file. if you ever have a problem again redownlaod it. they update the software like weekly!

Best of luck to you.. pm me if you have any troubles.

 

[metalwizard]

Re: Malware, Grrrr!

one more thing once you run combo fix. I would recommend a disc cleanup, a defrag and run whatever virus protection you do have..

Good luck

 

[Boomyal]

Re: Malware, Grrrr!

...am working on all the suggestions, I will keep ya'll posted.

 

[Boomyal]

Re: Malware, Grrrr!

So far Bleepingcomputer seems to have a lot of good advice. One of the two computers may be healed, my main one, not so sure yet. I'll keep you all posted.

I have had redirects before and they were always solvable with normally available malware scans but not this time.

 

[Vlad D Impeller]

Re: Malware, Grrrr!

Hey Boomer, glad to see you, your brine turkey recipe have been showing up more than you in the last couple of years.

It seems that i'm having a somewhat similar problem, quite often when i click on a different site, i am redirected to some place other than my intended page, it all started soon after a scheduled automatic windows update, it is annoying as hell.
I ain't as savy as you blokes, so even though i'll be having to get a tech to sort out my problem, i am interested to know how you solve yours.

 

[Haffiman]

Re: Malware, Grrrr!

Most people only look a the net to get infected, but memory sticks and cell phones are even worse these days.
One thing to prevent, another to get rid of when it hits.
What I have found as a rule is never to let the cleaning programs quarantine or delete infections automatic.
First find the exact location and if hidden within another program.
Then instead of just cleaning or uninstall that prg normal way, I use:
Revo uninstaller (free) with maximum cleaning.
In very few cases format is needed.
In some cases, hooking the drive as 'slave' to another comp and then scan from there have been the only solution.
I've been running Avira (free), Threatfire (free), occasionally scan with Malwarebytes for a couple of years.
Looking at the Threatfire log in my wife's/sons computer is great entertainment!!!
However the best security blocker is NOT to run on admin account!!

 

[dlindeblad]

Re: Malware, Grrrr!

Also in the bleepingcomputer website there should be listed a tool called hijackthis. It is used to remove browser hijacking tools that cause auto/search redirects.

 

[98Shabah]

Re: Malware, Grrrr!

I've started using Microsoft Security Essentials on the home computers.. haven't had any infections since I switched, and the best part, it's free.

 

[Haffiman]

Re: Malware, Grrrr!

One annoying thing happening quite often is the installation of 'tool-bars' when installing new programs.
Before you know, they change both homepage and search engine.
If toolbars comes together 'bundled' in software you like to have for some reason, install it if no other alternative, but DO NOT open the program.
Go directly into Revo uninstaller and uninstall the toolbar!!
Remember you need an uninstaller that even remove registry keys which the normal Windows uninstaller leaves behind.
Any toolbar, even Yahoo and Google are nothing but spyware!
Installed Google Earth not long ago, and got Chrome as well.
Lagged my comp down, even if I dd not use it.
Got it out, and speed back up again.

 

[dolluper]

Re: Malware, Grrrr!

Why not set the date back in the restore feature ...start/accessories/system tools/restore....to a date it ran well then go to microsft updates after

 

[robert graham]

Re: Malware, Grrrr!

A strong 2nd on the system restore, it's worked great for me several times!

 

[korygrandy]

Re: Malware, Grrrr!

If internet explorer is being redirected to these anti-virus pages try this:

Tools > Internet Options > Connections > Lan Settings > Make sure there is nothing listed or checked under the Proxy Settings. If there is remove it and then delete all your browsing history MANUALLY.

Tools > Internet Options > Browsing History Settings > View Files and manually delete all those files. When you use Internet Explorers built in file deletion it doesn't truly delete all files. This should help.

 

[QC]

Re: Malware, Grrrr!

Good to see you Boomer!!

 

[Xcusme]

Re: Malware, Grrrr!

Hey!!! Glad to see ya!!

 

[Tail_Gunner]

Re: Malware, Grrrr!

Im glad to see you back...I will no longer threaten to pour some whoop a@@ on that old barge of yours..i promise...

By the way rename malware bytes the file should then open..

 

[JustJason]

Re: Malware, Grrrr!

My personal opinion is those caught writing viruses, maleware should all be taken out back and shot!
If that's to harsh then take them out back and cut their fingers off so they can't type anymore!!!