malwarebytes.org
AVG 8.0
I fixed this on my daughter’s laptop yesterday. It’s pretty simple to do manually. I would not suggest to download any automated freeware fixer.
http://www.xp-vista.com/spyware-removal/antivirus2009-antivirus-2009-removal-instructions
If your infection is proving hard to remove run SmitfraudFix following the guide below.
Malwarebytes: http://www.malwarebytes.org/mbam.php
SuperantiSpyware: http://www.superantispyware.com/
Avast Anti-Virus: http://www.avast.com/eng/avast_4_home.ht...
SmitfraudFix: http://siri.geekstogo.com/SmitfraudFix.e...
Guide to using SmitfraudFix: http://www.bleepingcomputer.com/forums/t...
To protect your PC in the future you need to use anti-virus software and a firewall, id recommend using Avast and Comodo Pro firewall both are very effective and completely free, you should also switch to Firefox 3 if you are browsing with IE as its much safer.
Also, Spybot Search and Destroy will get it without a problem (I use it a lot).
Lastly, download HIJACK THIS run it first to log the registry and boot info for stuff running. After the PC appears to be clean, run HiJack this again and compare the 2 logs making sure not to have assigned the logs the same name.
If you are not got with this operation, find a friend who knows a little.
If this is the Vundo virus ... I’ve been there. Post #2 lists the ONLY program that will get rid of it. I highly reccommend you downloading that “free” program and running it. You’ll need to run it several times to fix the problem. Good luck!
If you know when you got the malware, I’d first try running a system restore (under programs/accessories/system tools) to the day prior (if malware hasn’t wiped out the restore points). That might be enough to at least stop the malware from running. You could then do a free online scan from trendmicro.com or bitdefender.com to remove the files that are left behind.
bump for later
I use combofix.exe (bleepingcomputer) just google combofix.exe and also found
Malwarebytes: http://www.malwarebytes.org/mbam.php to be very effective along with combofix
I sue a two pronged approach. Whenever I have Internet stuff to do, like banking, I use Linux only on the net. Only if I must, do I ever use windows. I always try IE4Linux if the site requires IE.
Looks like you got it bad. If you have comcast, Macafee is free download from their member site.
AVG for windows, free version
The “anti-spyware” viruses are extortion-ware. They infect your system and will “clean it up” only if you pay them.
Screw them.
Download malwarebytes anti-malware and run it. If it won’t run (the virus will sometimes block it from running), slave your drive onto another system and run it there.
Then download Spybot Search and Destroy and run it. This should rip out the TDSS viruses that “anti-virus” uses as it’s trojans.
Then download AVG 8.0 and run it. Using these three programs, in this order, has been very successful for me in cleaning up clients systems when hit with this virus. I would honestly run malwarebytes and spybot multiple times (reboot after each run) until you get 3 clean runs in a row. Then hit it with AVG.
This virus is nasty, has a lot of variants, and likes to hide and remain dormant after it’s been detected the first time.
Important: Once you download both programs, remove your system from access to the Internet or the bug may attempt to reinstall itself when it detects that you are attempting to remove it. Once your system is off the network and can no longer access the Internet you can begin the above procedure.
I use ccleaner to clean junk, remove programs, fix registry
I also use spybot search & destroy, adaware, avg8.0, Avista, and xp registry cleaner. Also SuperAntivirus free edition.
They are all free
I rarely get a virus
Wow, 26 replies and not a single “Get a Mac”????
Go over to www.bleepingcomputer.com, set up a free account, log in and go to forums, am I infected, and post your problem.
The techs there are all volunteers so be PATIENT. They will get back to you. Also read some of the other posts as they may point you in the right direction.
I work on computers for a living, (hardware) but if I have a virus/malware problem I turn to them.
I tried to make sure her system was updated but couldn't download Microsoft updates because automatic updates were disabled.
The problem was that the registry keys were missing. I added the registry keys and still couldn't enable it. I manually downloaded XP SP2 and SP3. I installed a paid version of AVG 7.5 and it found hundreds of problems but never could find this problem until the ads started spawning and AVG would complain and say it fixed the problem but it really didn't.
log files from programs such as "hijackthis" showed nothing out of the ordinary.
I bought a copy of "Registry Mechanic" and it found and fixed hundreds of problems but I still couldn't enable automatic updates. By this time, it appeared that the virus had been badly damaged as the ads weren't showing anymore.
I ran "registry mechanic" daily for about a week but still couldn't enable automatic updates.
I was ready to reformat her drive and do a fresh install when suddenly, automatic updates enabled. FM is all I can say. Perhaps she had an exorcism performed on the PC while I was away. I have no idea what suddenly allowed automatic updates to enable.
Ccleaner? Have you tried that? It’s free, and easy. It will ask you if you want to back up your registry before cleaning it.
A quick summary:
Download Spybot Searcxh and Destroy (freeware)
Download MalwareByte's Ant-Malware (freeware)
Download AVG Tech Free Edition (must be ver8+)
Install all three and update them to be sure you have all the latest virus registries
Disconnect your computer from the internet
Turn off System Restore
Run Disk Cleanup
Run all three tools in order (AVG, Malware and then Spybot)
Shut down computer, restart in Safe Mode
Run all three tools in order (AVG, Malware and then Spybot)
I just had a nasty variant of Vundo on a machine here at work - this solved it fast