You don't need to be an 'investor' to invest in Singletrack: 6 days left: 95% of target - Find out more
anyone know how to gt rid of this - microsoft forefront is strugling despite starting in safemode and shutting down all non essential processes before scanning.
forefront tells me its gone then it appears again.
ive searched on google but frankly i dont trust random websites who all want me to download software ( which i aint doing based on a non accredited website telling me to ) .... rather trust a bunch of decent humans who work in IT 😉
Download and use TDSSKiller as per instructions. Should stop it from reinstalling itself on startup.
http://support.kaspersky.com/faq/?qid=208283363
Trampus +1
I had success with the Kapersky stuff used in conjunction with Avast! for a different problem. I'm no IT geek and it was easy to do. It took a couple of rounds of scanning to get it all out though.
Malwarebytes has also proved useful in the past.
cheers trampus i think thats nailed it - i ran that yesterday and it came up with 0 threats - today it found 5. deleted them and the computer now works - thank ****
its my company computer and i need to travel on tuesday and use it for wellbore simulations the last thing i need is for it to be unusable due to virus.
i went to a.n.other cycling related forum that i use and soon as i logged in the computer spazzed out with threats - the owners aware and is working on it !
I do this for a living and would suggest you go to safe mode and download combofix from bleeping computer.
No point in giving you the link as they reset it every 10 mins for security purposes.
Download and run it, even though it may look like your pc is clear it may very well not be. This program is the best i have evre come across and if this doesnt clean your pc nothing will. You will probably be suprised at what it finds. Even if it finds nothing, its no harm being on the safe side.
you were right ian although it wasnt redirecting my browser
was still stopping me from updating my virus definitions due to registry entries
ran combo fix - found 5 other issues. fixed them
job done computer is like new again !.
cheers guys !
I do this for a living and would suggest you go to safe mode and download combofix from bleeping computer.
Hmm.
You want to be careful with Combofix. There's a reason they're cagey about it, it's a truly excellent tool but it has the capacity to really knacker a PC in a big way and there's no way I'd suggest running it 'blind' like that.
This infection is called ZeroAccess, and it's a persistent little bugger that hooks into some creative places. It's similar to the TDSS family, so the TDSS removal tools are a good start but might not be 100%.
ESET have a specific removal tool, I'd run this as a first step. (As an aside, their online virus scanner is excellent, should installed AV get sabotaged.)
http://download.eset.com/special/encyclopaedia/ESETSirefefRemover.exe
After that, run a conventional anti-malware package; I'd recommend MBAM from Malwarebytes.org - this will clean up any secondary infections.
Depending on the nature of the infection you might need to manually rewrite your MBR (google 'fixmbr' or tell me what version of Windows you're running) and you might still have system files which are compromised.
With any rootkit infection, whilst recovery is often possible it's difficult to restore a system with 100% confidence. I'd give serious consideration to backing up your data (which you do already, right?) and reinstalling the OS.
If you're going to see how it goes, as a bare minimum you need to update to the latest version any Adobe products you use (Flash and Reader usually) and Java. This is likely to be how the infection got in in the first place. Then run Windows Update until it stops giving you critical updates.
Good luck.
Actually, I'm going to say that last bit again, cos it's important.
[b]Out-of-date versions of Flash and Java are the single biggest point of entry for drive-by malware on Windows systems currently, by a very very large margin.[/b] It's in every Windows user's best interest to go and download the latest versions from the respective websites immediately.
This is the reason I like working for a small comapny that allows admin access to our machines, if I break it, I know that I can backup any important data, wipe reinstall and no one will mind. (obviously I check the backed up data before it gets copied back).
cougar im hearing you and once i get back from ukraine itll be sent to IT for full OS install. Ill have 3 other peoples computers on site with me and at least 2 of them will have the software i need on it if it goes wrong.
its possible it was that stuff wasnt up to date as ive just found out this afternoon that my auto update was off - all afternoon its been updating.
ive got admin rights but dont have half the software i need at home with me and i wont be in the office for 3 weeks.
i went to a.n.other cycling related forum that i use and soon as i logged in the computer spazzed out with threats - the owners aware and is working on it !
Sure you did, that's the kinda crap my kids come out with. 😉
bruneep - its not worth my job to be caught surfing naughty websites - why do you think i have an ipad.
its possible it was that stuff wasnt up to date as ive just found out this afternoon that my auto update was off - all afternoon its been updating.
Windows Update won't touch third-party software.
Newer versions of Flash and Java will prompt you when updates are available; however, older versions (ie, the ones most badly affected) won't. In any case it's worth checking for (and removing) old versions of Java as you can have multiple copies installed.
bruneep - its not worth my job to be caught surfing naughty websites - why do you think i have an ipad.
Wipe-clean surface?
Right cougar ive caught the culprit its nt connect our network proxy
When ever i open that from our gateway the computer spazzs out and the virus checker points at That file and my browser redirects
So i wont be using that until its fixed - have emailed IT
I hadn long logged into it the other day before i went to the website i mentioned above when it spazzed out 🙁
Bah sunnynday and im sat writimg proceedures 🙁 albe it on the patio 🙂
Haha, nice.
I work for a company who used to let us have admin rights, we've had a new MD and he's now so paranoid we've all been restricted, I handed my lap top back to him, no good having a computer where it won't even let me install printer drivers!
Rather use my own computer for the little bits and pieces I do!
As Matthew Broderick said, "there's ways round that."
(-: