 You don't need to be an 'investor' to invest in Singletrack: 6 days left: 95% of target - Find out more
I've been going on some of those anti virus forums, but it just makes my head spin to be honest. I need a bit more basic advice.
About a month ago I started to get a lot of pop up messages from my Avast anti virus saying that they are blocking this or that trojan or malware, and something seems to have slipped through. I get redirected ( to pharmacuticals and chinese on line movie sites) and streaming is slow and internet disconects and i have to restart.
It's been slowly getting worse, but most worrying is that when I try to download anti malware programs I am blocked, or re directed to fake downloads (more viruses I guess). I also get a fake window that looks like the windows my computer page, but is actually a web page...
Anyway. What are my options? Am I going to have to buy a new computer? Spend hours frying my mind on internet geek forums? Or can I just pay someone to fix it?
Anyone been through this? What did you do?
the good news is that its probably not terminal, so you wont have to fork out for a new computer. have you tried running the antivirus in safe mode? also, if you can/have got [url= http://www.malwarebytes.org/ ]malware bytes[/url] run that, again in safe mode if you cant run it normaly.
or have you already tried all that?
Malwarebytes gets rid of stuff that Microsoft Security Essentials doesn't spot. PK Ripper can help too. Other than that reload your Windows. And all the programs. Try and save off all your data (My Documents and Outlook.pst) first. They won't be infected.
Malwarebytes is pretty good as mentioned but can miss stuff too.
The online scanner from Kaspersky seems very good, is free and doesn't need downloading so that may work for you.
If all that fails I really can recommend [url= http://www.geekstogo.com/forum/forum/121-malware-removal-guides-and-tutorials/ ]geeks to go[/url]. Their advice is easy to follow and if that doesn't fix it you can post a forum topic and you get your own dedicated volunteer who guides you through the fixing process. They did wonders on my machine using custom and bespoke scanning and fixing programmes and didn't ask for a penny. Amazing website.
Actually, one thing the malware is doing is blocking windows security from updating. When I try to do it manualy, it says there is no internet connection. Does the same with most of the free anti virus, malware downloads. Although I got some on. I'll try the above advice. Thanks. Geeks to go sounds good.
Boot the computer into safe mode and download the antimalware / run the virus checker then
http://www.pchell.com/support/safemode.shtml
BORING!
Spongebob - someone has a problem that needs solving - well done for not helping.
Did the thread title lull you into a false sense of hope that there might be some interesting 'annoying malware advice wanted'?
Malwarebytes sorted me out, although I had a lengthy process of ****in about before I got there - had to boot in safe mode and use Rkill, or something along those lines.
I found that hitman was one of the most effective at tracking and killing nasties, but you need net access for it.
Check your hosts file and your DNS to see if it's been changed, if they have it may well stop you being able to download antivirus software.
Re boot in to safe mode above, first try "boot in to safe mode with Networking" - soyou can connect to the net to download and run Malwarebytes etc.
If you're still hijacked or redirected,download them on someone elses PC and copy them on to a memory stick.
To fix it you may well have to do some pretty low level stuff with the likes of RKill and Hijackthis but it's straightforward (though often lengthy) if you print off the instructions.
Do you have vista or 7? If you're running recovery mode you could try loading an earlier image of the machine if the AV / malware products don't work.
Which "fake" AV site / product is it redirecting you to ?
Been there, done that.
Download and run TDSSKiller.exe from Kaspersky here -> http://support.kaspersky.com/viruses/solutions?qid=208280684
This should hopefully stop the blocked download of AV updates etc. (You may need to be in Windows Safe Mode with Networking to download/run TDSSKiller)
Then get Malwarebytes MBAM as mentioned above, do an "update" in MBAM to ensure you've got the latest data and do a full scan.
Then hopefully your AV program will be able to do an update and remove any other cr@p. I'd also consider using Microsoft Security Essentials over Avast etc.
Good luck.
Some of these nasties change your internet connection settings. They can untick the Automatically Detect Settings flag and tick the Proxy Server box. That will stop some programs accessing the web.
So far so good with malwarebytes and kapersky. Did the safe mode reboot. Windows is now able to update and scan and says that my computer is protected. Don't want to speak too soon, but no re-directios yet. Internet is slow, but that my be my provider. Think i need to do a big clean up. Really, i wouldn't mind saving my photos and word docs and wiping the whole thing clean if that would help. Thanks everyone. Good to know you can count on mountain bikers to fix your computer...
biker66 - Member
So far so good with malwarebytes and kapersky. Did the safe mode reboot. Windows is now able to update and scan and says that my computer is protected. Don't want to speak too soon, but no re-directios yet. [b]Internet is slow, but that my be my provider.[/b] Think i need to do a big clean up. Really, i wouldn't mind saving my photos and word docs and wiping the whole thing clean if that would help. Thanks everyone. Good to know you can count on mountain bikers to fix your computer...
I fixed my old laptop, but unfortunately it has been as slow as hell ever since.
Cool! Did the Kaspersky thing identify any problems ?
Knowing what it's found by name would be helpful.
This basically, if it means anything to you, was in the malwarebytes log.
(Trojan.DNSChanger) -> Bad: (93.188.164.72,93.188.166.222) Good: () -> Quarantined and deleted successfully.
(Trojan.DNSChanger) -> Bad: (93.188.164.72,93.188.166.222) Good: () -> Quarantined and deleted successfully.
No log for the Kapersky, but it did find and remove one thing, can't remember what. I think they both helped. I'm not tech at all, so just glad I could follow some basic advice and get it sorted
I'm really happy. Tea's are on me.
Ah, excellent. MBAM should get rid of that completely. That could've been a lot worse.
I'd suggest a bit of preventative maintenance now. Make sure you're Windows Updated to death, and make sure things like adobe flash / shockwave and java are on their latest versions (they're really common attack vectors at the moment).