Virus clean up ???

Skippy

Skippy

Well-known member
UKGSer Subscriber
Joined
Oct 5, 2004
Messages
8,593
Reaction score
2,930
Location
Everywhere and nowhere baby!
Managed to get some nasty virus (trojan) that somehow not only got past my McAfee (auto updated) but also made it impossible to fire it up along with disabling my ability to open a browser.

Anyhow, I managed to delete McAfee from my pc and download a couple of killers (Malwarebytes and AVG) and that seemed to do the trick.

Two Q's:

Can I be sure that I got the little bastids?

Why can't I re-download my McAfee (I have the rights to do so)? - all that happens when I go through the download procedure is end up with an empty Download box. No programme to click on and nothing in the file when I open it from Start.

Any tips please.

Ta.

Skip.
 
Skippy said:
Managed to get some nasty virus (trojan) that somehow not only got past my McAfee (auto updated) but also made it impossible to fire it up along with disabling my ability to open a browser.

Anyhow, I managed to delete McAfee from my pc and download a couple of killers (Malwarebytes and AVG) and that seemed to do the trick.

Two Q's:

Can I be sure that I got the little bastids?

Why can't I re-download my McAfee (I have the rights to do so)? - all that happens when I go through the download procedure is end up with an empty Download box. No programme to click on and nothing in the file when I open it from Start.

Any tips please.

Ta.

Skip.
Click to expand...

use kaspersky.. free download for 30 days..... it will get 99.999999% of things on the computer.

dont use the trial version, go to product updates, choose antivirus or internet security. its the same as the trial versions but u dont need to fill forms in etc.
 
Skippy said:
Can I be sure that I got the little bastids?
Click to expand...

Assuming you're using a version of windoze. Did you turn System Restore off when you scanned the PC? If not then it may still be lurking in there. Turn System Restore off, reboot and rescan with Malwarebytes. Once it's clean turn System Restore back on, reboot and scan again.

HTH :thumb2
 
Sounds like you still have something on there with not being able to download Macafee. Get Microsoft security essentials, its free and highly rated. That said cleaning up is never easy and the only way to be sure is to format and re-install the OS. You can get hijack this which will tell you what is running and where it is. Then post a log on the support forum and the guys there will tell you if its clean or not. Be warned though its a long process but manageable if your PC literate. If you haven't a clue then honestly I would re install or never use your PC for anything sensitive again just in case. By sensitive I mean putting passwords, card details or internet banking.
 
Some of the viruses are damned clever these days, if you can't download McAfee that might indicate things are not quite back to normal yet, as has been said.
Can you browse other sites without any problem? Sometimes the virus will set the proxy server in internet explorer options to point at "itself". It then hides, or subverts, genuine anti-virus programme sites.

There is an online virus checker from McAfee, http://home.mcafee.com/store/freeservices.aspx

I'd also suggest you download a bootable antivirus that can scan the system without needing you to boot a possibly infected copy of windows. Try this http://www.avg.com/us-en/avg-rescue-cd-download. You will need access to another machine to get the file downloaded and burnt onto a CD.

If you can't do this, PM me and I will sort a CD out for you. I owe you a favour for getting that ground anchor for me.
 
So, how do I turn off system restore?

Dansin said:
Assuming you're using a version of windoze. Did you turn System Restore off when you scanned the PC? If not then it may still be lurking in there. Turn System Restore off, reboot and rescan with Malwarebytes. Once it's clean turn System Restore back on, reboot and scan again.

HTH :thumb2
Click to expand...



Bit of a numpty. Found it but it's just a step menu of returning to a previous load. ie removing AVG.

:augie
 
Might have to take you up on it!

shugie said:
Some of the viruses are damned clever these days, if you can't download McAfee that might indicate things are not quite back to normal yet, as has been said.
Can you browse other sites without any problem? Sometimes the virus will set the proxy server in internet explorer options to point at "itself". It then hides, or subverts, genuine anti-virus programme sites.

There is an online virus checker from McAfee, http://home.mcafee.com/store/freeservices.aspx

I'd also suggest you download a bootable antivirus that can scan the system without needing you to boot a possibly infected copy of windows. Try this http://www.avg.com/us-en/avg-rescue-cd-download. You will need access to another machine to get the file downloaded and burnt onto a CD.

If you can't do this, PM me and I will sort a CD out for you. I owe you a favour for getting that ground anchor for me.
Click to expand...



Still having problems. I'll PM you if that's ok. Or, have you still got my number?
 
Skippy said:
Bit of a numpty. Found it but it's just a step menu of returning to a previous load. ie removing AVG.

:augie
Click to expand...

Lifted from Microsoft site for Windows XP -

Steps to turn off System Restore

1. Click Start, right-click My Computer, and then click Properties.
2. In the System Properties dialog box, click the System Restore tab.
3. Click to select the Turn off System Restore check box. Or, click to select the Turn off System Restore on all drives check box.
4. Click OK.
5. When you receive the following message, click Yes to confirm that you want to turn off System Restore:
You have chosen to turn off System Restore. If you continue, all existing restore points will be deleted, and you will not be able to track or undo changes to your computer.

Do you want to turn off System Restore?
After a few moments, the System Properties dialog box closes.

Steps to turn on System Restore

1. Click Start, right-click My Computer, and then click Properties.
2. In the System Properties dialog box, click the System Restore tab.
3. Click to clear the Turn off System Restore check box. Or, click the Turn off System Restore on all drives check box.
4. Click OK.

After a few moments, the System Properties dialog box closes.

Once it's turned off, reboot in Safe Mode (hit F8 while it's booting and choose Safe Mode). You'll need to at least need scan with Malwarebytes. If the virus won't allow you to download Malwarebytes then download on another PC and transfer on a usb stick, install, update and run a full scan. If it clears the infection run it again. Reboot in normal mode and run Malwarebytes again. If it really looks like it's gone then run an online scanner such as the one from Trend Micro.

If that's all ok then restart System Restore, install antivirus of your choice and stop looking at dodgy porn sites. :D

Hope that helps. :thumb
 
Dansin said:
Lifted from Microsoft site for Windows XP -

Steps to turn off System Restore

1. Click Start, right-click My Computer, and then click Properties.
2. In the System Properties dialog box, click the System Restore tab.
3. Click to select the Turn off System Restore check box. Or, click to select the Turn off System Restore on all drives check box.
4. Click OK.
5. When you receive the following message, click Yes to confirm that you want to turn off System Restore:
You have chosen to turn off System Restore. If you continue, all existing restore points will be deleted, and you will not be able to track or undo changes to your computer.

Do you want to turn off System Restore?
After a few moments, the System Properties dialog box closes.

Steps to turn on System Restore

1. Click Start, right-click My Computer, and then click Properties.
2. In the System Properties dialog box, click the System Restore tab.
3. Click to clear the Turn off System Restore check box. Or, click the Turn off System Restore on all drives check box.
4. Click OK.

After a few moments, the System Properties dialog box closes.

Once it's turned off, reboot in Safe Mode (hit F8 while it's booting and choose Safe Mode). You'll need to at least need scan with Malwarebytes. If the virus won't allow you to download Malwarebytes then download on another PC and transfer on a usb stick, install, update and run a full scan. If it clears the infection run it again. Reboot in normal mode and run Malwarebytes again. If it really looks like it's gone then run an online scanner such as the one from Trend Micro.

If that's all ok then restart System Restore, install antivirus of your choice and stop looking at dodgy porn sites. :D

Hope that helps. :thumb
Click to expand...



Ah Ha! What about Vista? :confused:

Can't see the on/off in Vista.
 
Pretty similar for Vista -

1. Open System by clicking the Start button Picture of the Start button, clicking Control Panel, clicking System and Maintenance, and then clicking System.
2. In the left pane, click System Protection. Administrator permission required If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
3. To turn on System Protection for a hard disk, select the check box next to the disk, and then click OK.
– or –
To turn off System Protection for a hard disk, clear the check box next to the disk, and then click OK.
 
Got that and run it.

mrjonesybop said:
Download and install Malware Bytes - give that a crack, it's fantastic.
I use it on a daily basis on customers' PCs.

:comfort Good luck.
Click to expand...


Found something and deleted it for me but can I be confident that it's a permanent fix or should I run in safe mode too?:nenau

Not tried to reload Mcafee yet either though I'll have to give it a go soon because the Free AVG is about to expire.

Skip.
 
Thanks all!

seems to be working ok now, McAfee loaded ok, ran another virus check and nothing found.:clap

I guess I can trust it now.:confused:

:beerjug:
 
Hope you are running OK but it sounds like you may now have more than one anti-virus on your system. Due to the way these programs work that can cause more problems than it can cure.

Before installing a new anti-virus it is important to remove the old one completely and reboot before installing the new.

Also how can free AVG be about to expire. It may be that you have the trial of the paid one but the free goes on forever. I always relied on it until Microsoft produced Security Essentials. Now use a Mac anyway so all this virus stuff is a thing of the past.
 
Virus aftermath??

Ok so my pc got a dose of the clap recently in the form of a rootkit virus as part of the fake Windows Security kit. I had to use a rootkit killer, malwarebytes, superantispyware, did online trend and kaspersky and I think it is now clean, however......
In task manager I now have up to 41 instances of mshta.exe running each on taking about 14mb of ram. I can stop each instance under task manager but over a couple of hours they build up again. Always seems to top out at 41 cases!!
Anyone come up against this or have any idea how to stop it?

I don't have option of using restore as all backups were wiped in cleaning process. Almost at the stage of buying a new hdd and reload the full system:mad:
 
Last edited:
IMPORTANT - STEP ONE

Disconnect from the internet when running a "cleaner". The little bug phones home if you don't and invites itself to another directory.

If you've got 2 confusers you can use one for the step by spep debugging while you beat the barsteward to death!
 
Nippy Normans supply Touratech, Wunderlich, Desert Fox and many other makes of accessories.
You must log in or register to reply here.

Similar threads

Upgrade to Windows 10 - Update or Clean Install
Replies
9
Views
4,196
Santa-2512
Santa-2512
Clean up.
Replies
12
Views
2,671
Mr K
Mr K
(RIP) Kaister
Rear end clean-up
2
Replies
27
Views
4,895
jackassdave
jackassdave
Starter motor clean up and rebuilt help...
Replies
9
Views
2,928
Canuck
Canuck
Smart HDD virus warning
Replies
7
Views
2,105
Nobbyspiles


Back
Top Bottom