The Conservative Cave
The Help Desk => Computer Related Discussions & Questions => Topic started by: Thor on July 02, 2010, 11:26:53 PM
-
The first thing to obtain via download from the internet is Malwarebytes Malware remover available at http://www.malwarebytes.org Download the program, install it, upgrade it (for new definitions since its release). You can run this normally, but I recommend that it be run in Safe Mode (press F8 after Power On Self Test). The reason why is because some viruses hide in a part of the hard drive not accessible in the normal user/ admin mode.
Next, one of the many good anti-virus programs is Avast! It can be obtained from: Here (http://download.cnet.com/Avast-Free-Antivirus/3000-2239_4-10019223.html?part=dl-85737&subj=dl&tag=button) Again, download it, install it, update it, register it (it requires registration for a free one year license) and run it. Again, Safe mode is your friend. ;)
Finally, because not everything catches everything, I would recommend that one go grab a copy of Spybot Search & Destroy spyware remover (http://download.cnet.com/Spybot-Search-amp-Destroy/3000-8022_4-10122137.html) Download it, install it, upgrade it and run it.
All of those SHOULD get rid of any nasty bugs that a person may catch. These are not guaranteed, but they are MY choices for virus removal tools.
Also, please note, one may need to boot into safe mode with networking (XP and newer) if the normal log on won't allow you to go to those sites. I'm pretty sure that Malwarebytes & Avast will install in Safe mode. Once installed they will run. A last chance effort may require you to download these programs from a different computer, burn them to CD (or DVD, if that's all you have) and run the install on the affected computer from the cd. You may or may not be able to upgrade them, but at a minimum, run them.
-
The information here is extremely valueble. MalwareBytes saved me a lot of trouble that I would have otherwise had to go the long way around the barn. I forgot to run it in safe mode, but it looks like I only had a few simple viruses. My computer is even faster. I love it.
-
Malware Bytes, as mentioned is a good program to keep around and updated. The virus you're dealing with is a tough one and there are two more progs I would recommend you download and run;
Super Antispyware
http://download.cnet.com/SuperAntiSpyware-Free-Edition/3000-8022_4-10523889.html
That one found several things Malware Bytes missed on a virus I was working on the other day.
Ccleaner
http://download.cnet.com/ccleaner/
That one will clean up several things including your registry.
This link is to a page that explains the virus you probably had. There is a small program on there called rkill.com that you should download and keep on a flash drive. The site will tell you what it does but basically because these 'Ransomware' progs won't let you run executables in many instances this installs and runs an executable from a web site and it kills all the processes the virus is running. Handy tool to have;
http://www.bleepingcomputer.com/virus-removal/remove-security-tool
Hope that helps you. Sounds like you may have gotten it but sometimes these things stay on for a bit .... hiding from you.
You can also search your hard drive for tssd.exe .... nasty bugger.
KC
-
Thor, you might want to put that information about rkill over here too.
KC
-
Does anyone have any recommendations on a good registry mechanic?
Free if possible.
-
Does anyone have any recommendations on a good registry mechanic?
Free if possible.
I don't know what you're looking for, but CCleaner finds broken keys and removes them. As for me, between "regedit" from the command line and CCleaner, those seem to work for me.
-
Does anyone have any recommendations on a good registry mechanic?
Free if possible.
Rich, here's an awesome site this guy has put together. I keep this one bookmarked;
http://www.dougknox.com/xp/file_assoc.htm
My secretary got a virus a few months ago that removed all her file associations. This site saved my ass.
KC
-
I installed spybot...
-
I installed spybot...
Did you run it? Did it find anything?
KC
-
Did you run it? Did it find anything?
KC
I have 2 laptops, I use this one during the day. I just installed it and will run it in a minute. Will let you know for sure.... :popcorn:
-
Let's limit this thread to links and such, not as a "help me" thread. Thanks. Those types of threads would be better served as a separate topic.
-
Rich, here's an awesome site this guy has put together. I keep this one bookmarked;
http://www.dougknox.com/xp/file_assoc.htm
My secretary got a virus a few months ago that removed all her file associations. This site saved my ass.
KC
Lools like a pretty good site. But I'm running Vista and that site seems to be XP specific.
-
Lools like a pretty good site. But I'm running Vista and that site seems to be XP specific.
You may want to try Ccleaner .... just pay attention to what it's wanting to delete or fix.
KC
-
I have a question.
My Aunt's Motherboard blew, I took it to a guy I always go to with my computers and he was going over some things with me.
He replaced the Motherboard, and he uninstalled a few programs I had installed, I installed WIN Patrol and Iobit's Advanced System Care. I'm going to pick up the computer tomorrow and I'm going to install Avast, I have it installed and I love it, but what can I use to search for Spyware? Spybot is mentioned here and for some reason it never found anything on my computer, is there another program to use? or should I just reinstall Iobit? and any opinions about WIN Patrol? Scotty the dog has prevented things from being installed in my Start-up programs so I really like it, but what are your opinions on it? Oh and about Avast, it's always running so if I picked up a virus would it let me know right away? or would it warn me if I went to a site that might have a virus?
Also a question about Malwarebytes, I have it installed on my computers, but everytime I run it it never finds anything, I find it hard to believe that there's nothing on my computer. And what's your opinion on CCleaner?
Thanks!
You can always try another spyware program just as a backup. Since they don't run in the background (usually) you can run them individually to see what they find. Most of them look at things differently.
Ccleaner .... I love it personally.
KC
-
You can always try another spyware program just as a backup. Since they don't run in the background (usually) you can run them individually to see what they find. Most of them look at things differently.
Ccleaner .... I love it personally.
KC
OK, so I'll install CCleaner on her computer, and you think it's OK to put Iobit Advanced System care back on? and do you recommend running more than 1 spyware program?
-
OK, so I'll install CCleaner on her computer, and you think it's OK to put Iobit Advanced System care back on? and do you recommend running more than 1 spyware program?
I've never heard of Iobit so can't comment on it.
It is absolutely fine to run more than one spyware program as long as you don't have any of them running in the background. I think it is an excellent idea to run a couple of different spyware progs. NEVER run more than one virus prog at the same time though. They tend to run in the background and can cancel each other out.
KC
-
I've never heard of Iobit so can't comment on it.
It is absolutely fine to run more than one spyware program as long as you don't have any of them running in the background. I think it is an excellent idea to run a couple of different spyware progs. NEVER run more than one virus prog at the same time though. They tend to run in the background and can cancel each other out.
KC
Thanks for the info, as you can see I'm not very techy LOL. It's OK that I run Avast though when I'm on the net, right? and I don't think my spyware is running while I'm surfing the net, but how do I know it isn't? is there a way to insure it doesn't?
-
I'm still having good luck with AVG free and Superantispyware.
-
I'm still having good luck with AVG free and Superantispyware.
You may, for a while, until that really NASTY bug sneaks through. AVG is OK, but it's let me down in the past.
-
I'm still having good luck with AVG free and Superantispyware.
AVG let 3 really nasty viruses through on my network over the last year. 2 on my secretaries machine and one on mine. It's been replaced.
Right now I'm running the Microsoft Security Essentials .... so far, so good. We'll see how it goes.
KC
PS if you think about getting MSE make SURE you download it from microsoft.com. There is a ransomware by the same name.
-
Gang, I've got something that I accidentally downloaded, called "System Tool 2.12." It says that I've got 38 viruses, and that it'll cost at leat $60/year (1 year) to remove them. Is this below-board? I tried all of the fixes in this thread, and this damned program won't let me execute a single one. Yet, my wife's stuff is unaffected. What gives?
-
http://www.conservativecave.com/index.php/topic,47925.0.html
-
Gang, I've got something that I accidentally downloaded, called "System Tool 2.12." It says that I've got 38 viruses, and that it'll cost at leat $60/year (1 year) to remove them. Is this below-board? I tried all of the fixes in this thread, and this damned program won't let me execute a single one. Yet, my wife's stuff is unaffected. What gives?
Do NOT pay that. Ever. That is a scam plain and simple. Here's a web site that can help you with that but you will need to be very patient. Make sure you read what you need to do before you post. Some of those rogueware/ransomware/scareware programs can be very difficult to remove.
http://www.bleepingcomputer.com
They have some awesome tools and the help is all volunteer. They are very, very good at what they do. Good luck and let us know how it goes!
KC
-
Here is another one similar to the Security Tool thing I dealt with earlier... this one is called HHD Recovery or something similar (and it came from the same user). This one is a little more difficult to get rid of since it mimicks Windows system errors as well (Critical).
http://remove-malware.net/how-to-remove-smart-hdd-fake-security-program/
When you start searching the registry, write down all the different values under HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run “[random]“, because they'll be all over the place. Also, clear out the \user\AppData\Local\Temp folder of any matching file names.
Damn, I'm getting tired of these nasty suckers.
-
mine is all bundled into one program. I also have the CCleaner as well. and I found this. a freebie. ive cleaned off a ton of trash with this. its not an AV or spyware program. its hunts down old programs that are at end of life and more. I run it twice a week. Secunia Personal Software Inspector (PSI) check it out
http://secunia.com/vulnerability_scanning/personal/
-
Great. Thanks for the tip.
-
I run IOBIT Security 360, Superantispyware, Ccleaner, MalwareBytes and Advance System Care. No problems that I know of. I also have older copies of CookieWall and POW! that still work just fine.
I use the same programs on my laptop machine.
-
Well, gang, my McAfee runs out Tuesday. I damned sure don't want to renew with them, as when I updated last year, almost immediately afterwards my computer slowed down immensely.
Could someone help me out with suggestions? I seem to remember that a couple of members here have favorites.
-
Well, gang, my McAfee runs out Tuesday. I damned sure don't want to renew with them, as when I updated last year, almost immediately afterwards my computer slowed down immensely.
Could someone help me out with suggestions? I seem to remember that a couple of members here have favorites.
http://www.conservativecave.com/index.php/topic,45925.0.html
-
I switched all of our computers over to Microsoft Security Essentials last November or so. So far I'm very happy with it. Make sure you d/l it from Microsoft if you get it though. There is a fake out there.
It's very user friendly, small and will allow you to work while it scans the machine. There's a youtube video or two on it ... oh and it is free.
KC
-
avast! (http://download.cnet.com/Avast-Free-Antivirus/3000-2239_4-10019223.html?part=dl-85737&subj=dl&tag=button)
-
well I have Norton and never a problem. this years version also scans facebook as well.
-
I'll second Chris' recommendation. Norton is OK, but it has its flaws, mainly that it is a resource hog and wants to own your computer.
-
New malware tricks users into thinking hard drive failure is imminent (http://www.geek.com/articles/news/new-malware-tricks-users-into-thinking-hard-drive-failure-is-imminent-20110520/)
(http://i237.photobucket.com/albums/ff68/kayaktn/failure-malware.jpg)
More of the same garbage from spammers and thieves.
-
Thanks for the heads up, Chris !!
-
New malware tricks users into thinking hard drive failure is imminent (http://www.geek.com/articles/news/new-malware-tricks-users-into-thinking-hard-drive-failure-is-imminent-20110520/)
(http://i237.photobucket.com/albums/ff68/kayaktn/failure-malware.jpg)
More of the same garbage from spammers and thieves.
download our free version to scan your PC....then
[youtube=425,350]http://www.youtube.com/watch?v=algWjS2yiyE[/youtube]
-
I just saw this and will try your tricks Thor
-
I agree with Thor. But I gotta say that that just Malwarebytes and Spybot do about 99% of what I need to fix others pcs. But you gotta keep these free apps up to date especially spybot as it wont update itself. And then 'immunize'. The pay for v. of malwarebytes will protect very well and update itself. It really does help protect people 'from themselves'.
Personally I usually avoid antivirus apps like the plague on my own machines, but I dont recommend that for customers. I hate em cause they slow me down too much ... plus I can tell when something is trying to attack or attach itself to my system. And some antiviruses are extremely proprietorial (like Norton). Of course my method involves taking the customers pc 'off line' and scanning them after slaving them to different machine. Unfortunately most people cant or wouldnt know how to do that for themselves. But these 2, (malwarebytes and spybot) are a great combo, if I had to choose 2.
Once in a while I need something else (on customers pcs) to clean them but that is only in extreme circumstances. This is when the hdd cannot for whatever reason be removed from the host machine and the infection is so bad that you cannot access or do anything from the desktop. But that is another discussion.
In the meantime I usually just install a free antivirus (MS Security Essentials or Avast or AVG depending on the circumstances) and spybot with instructions after the infected machine has been cleaned. As for the 'pay for' Antiviruses, I guess I do sort of lean towards Kaspersky a bit.
-
Got a problem. My Avast isn't working. Just got on the computer this morning, and tried to work it a little bit. Tried to turn it on. Nothing. Tried to re-install from the linky on page one. Nothing. Tried to go into my control panel, and turn it on, but the message says "File System Shield Provider Not Found." Very important I have this, IMO, and I don't believe I did anything to turn the shields off, or it itself. Help!
Should I just uninstall, and get one of the other computer protection programs suggested in this thread, or what? I'm kinda worried. Avast! has been pretty good to me thus far, but it seems a bit effed up now...
-
Have you tried repairing it from the Add/Remove Program list or downloading an updated copy (I use download.com).
-
Yes. Both have been tried. Still same problems.
-
Rev, do you have Malwarebytes? If so have you ran it? If not I would recommend you go get it and run a scan. (http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html)
KC
-
Doing it now. I just had a thought though. I remember downloading Avast last year. Could the term be up or something? Would that possibly be a reason it isn't working like it should?
-
Doing it now. I just had a thought though. I remember downloading Avast last year. Could the term be up or something? Would that possibly be a reason it isn't working like it should?
I suspect that is the problem......when I installed it I noticed that it was a 12-month free trial. I therefore assume that to get another year, you have to uninstall it and start over.
doc
-
Doing it now. I just had a thought though. I remember downloading Avast last year. Could the term be up or something? Would that possibly be a reason it isn't working like it should?
Not unless you paid for something extra. I'm not even sure what File System Shield is. I never looked that closely.
-
Well, I've got Malwarebytes now, and am scanning for problems. Therefore, I feel I should uninstall Avast, and maybe try it again later.
-
Not unless you paid for something extra. I'm not even sure what File System Shield is. I never looked that closely.
If you open Avast!, on the left you will see a series of tabs.....one of these is for the system shields, which scan all of the files going in our out of the system. The default is "on".
As I mentioned upthread, I think Avast! is a 12-month free trial..........he'll have to uninstall it, and download and install it again perhaps.
doc
-
Oh great, this might not have been the issue. There was an error creating the setup log while trying to re-install Avast. Hmmm. I'm going to keep trying things but as least I am protected with Malwarebytes...
-
http://moralde.com/unable-to-start-the-file-system-shield-shield-unreachable/
(http://moralde.com/wp-content/uploads/2010/04/avast-not-running.png)
A quick nadin of teh innertubes showed this.
-
Will do when I get to reinstalling Avast. Not for nothin' but life has become the 6th circle of hell around here. All I really need to say at this point...
Thanks thundley.
-
I use Avira and Malwarebyte.