Any Computer Experts Here That Can Help With Infected Computer?

[Striker911]

My computer is infected. It wont let me update anything that will help me catch the virus. Updates wont work. When I make a download it goes through the motions then the window goes blank. I cant search the upload. I can save the link to the desktop then when I try to run it that way, windows does not know what created it or how to run it.

I use many programs to help me stop infiltration but they are not really working. For example. I use Malwarebytes and update it all the time. Also run it all the time but in "control panel", "add remove" is says that the program has not been ran since Dec 04 of 2009. Its way out of date since the error code I get when I update is not even used anymore.

Please help if you can. I dont know a lot about computers or computer programing but I have no choice. My cc info was stolen twice in the last 2 months and now I have to get yet another new card and wont be able to use it till this is fixed. Thanks in advance.

 

[DaveP]

Malwarebytes is a good program for keeping rogue programs off your computer, but you have to pay the $24.95 for a registered version that runs in the background to filter and prevent those programs from infecting you. Otherwise, all its good for is letting you know when something has done its dirty work. I run MWB and Microsoft Security Essentials, with the registered version of MWB. The registered version will prevent you from going to known bad sites where these kinds of things are likely to infect your computer. It will also block rogue programs when they try to infect. It's worth the $24.95 for a lifetime license.

First things, boot your computer into safe mode with networking. To get there, shut down the computer, wait 30 seconds, and turn it back on. While it is booting, press the F8 key about once a second to let it know that you want to go to the boot screen. Once it gets there, select "Safe Mode with Networking" and press Enter.

Once it gets into safe mode, viruses won't be able to run because only the operating system is functional and it didn't load any peripheral programs at startup. From there, you can run virus detection programs to find out what has infected your computer and remove them.

Try running Malwarebytes while in safe mode using "Perform Full Scan". You can also download and install Microsoft Security Essentials and run the installation program. You can also run Windows Defender by clicking the Start icon and typing windows defender into the search box. You may have to enable it, but Windows will prompt you if it's disabled.

Another tool that you can use for boot sector viruses is the Microsoft Windows Malicious Software Removal Tool from the link below. Only boot into Safe Mode until you eradicate the bug. Tap F8 while booting and select Safe Mode with Networking.

http://www.microsoft.com/en-us/download/details.aspx?id=16

See what those programs return as infections, write them down, and post what you find here. If possible, highlight and copy the results of the scan and post it here. You can paste it into a notepad file and then copy the contents into a post. It's also possible that you have a boot sector infection and that will require another utility to remove if that's true.

ETA: The credit card thieves upload little crawler programs that search out your files for strings of characters that look like cc numbers and save them. Then they upload the files to a web site where people get involved and put together the information. A real time scanner can help in that regard, especially the registered version of MWB that won't let you go to those sites by accident. Once you are on a rogue site, you are infected without knowing it. Then those little programs do keyboard scans as you purchase something online and they have your info. You never know they are watching.

 

[Striker911]

Tried updating MB and its still giving the old error code. Then I did the search for windows defender and it found the file with out giving the blue screen of death but when I try to run it it says: "System administrator has set policies to prevent this installation" So instead of booting in safe mode under "owner" I booted in safe mode as "administrator" and it says the same thing.

Am getting some progress though. Things that I am downloading are staying in the box when uploads are done and I can now run them. I followed the link you gave me and its doing a scan. I think that program is under attack though cause things are diapering out of the window. Status bar is gone. No more clicks to stop the scan. Its still running but what info is left in the window is flashing a lot. Will have to give it some more time and see. Will update once the scan it done.

I also was able to finally wipe my HD of the old MB program and will try to upload the newer program as soon as I can restart. Thanks

 

[irwink]

Try this - Hitman Pro 3 - SurfRight

It gets malware that Malwarebytes doesn't even detect. Good luck.

 

[Striker911]

No malicious software detected.

 

[moondaddy]

Did that virus pop up as fake anti virus? If so all you have to do is right click on the shortcut it makes on the desktop and click properties. Look and see where the program is saved. Go find the program and rename it. Any name you want to use will work. After you rename the virus restart your PC and run virus scan of your choice. That's it no need to wipe the hdd to get rid of it.

 

[Striker911]

Try this - Hitman Pro 3 - SurfRight

It gets malware that Malwarebytes doesn't even detect. Good luck.

Just did that one too and all it found was around 15 tracking cookies. Wont let me delete them though.

 

[Mac]

Try this: Free Online Virus Scan - Antivirus Software - Trend Micro USA

If that doesn't work download this http://download.cnet.com/windows/anti-spyware/3150-8022_4-0.html?tag=404

Run it and paste the results here: Malware Discussions - Trend Community

Your expert will appear and it's all free.

 

[DaveP]

Safe mode sometimes doesn't let you run certain programs. Did you try to download the Microsoft Windows Malicious Software Removal Tool? I think it will run in safe mode. You may have to install that and Defender by downloading them and running the install yourself. Permissions can lock you out of a lot of things, especially in safe mode.

You can get rid of most anything except a boot sector virus without a lot of trouble, but you have to be able to install and run the utilities to get anywhere. There are some online scanners that work well, but you have to be careful what you allow to run.

You might be better off to go here and follow the instructions step by step. MajorGeeks.com is a trusted and respected forum. You will learn a lot from going through the process and they take you step by step through the process with links to things you will need.

It will also show you how to turn UAC (user account control) on or off . That is the OS function that is telling you you don't have permission to run certain programs to fix your problem. This will be a major help in solving the problem.

READ & RUN ME FIRST Malware Removal Guide (incl. spyware, virus, trojan, hijacker) - MajorGeeks Support Forums

 

[Striker911]

Safe mode sometimes doesn't let you run certain programs. Did you try to download the Microsoft Windows Malicious Software Removal Tool? I think it will run in safe mode. You may have to install that and Defender by downloading them and running the install yourself. Permissions can lock you out of a lot of things, especially in safe mode.

You can get rid of most anything except a boot sector virus without a lot of trouble, but you have to be able to install and run the utilities to get anywhere. There are some online scanners that work well, but you have to be careful what you allow to run.

You might be better off to go here and follow the instructions step by step. MajorGeeks.com is a trusted and respected forum. You will learn a lot from going through the process and they take you step by step through the process with links to things you will need.

It will also show you how to turn UAC (user account control) on or off . That is the OS function that is telling you you don't have permission to run certain programs to fix your problem. This will be a major help in solving the problem.

READ & RUN ME FIRST Malware Removal Guide (incl. spyware, virus, trojan, hijacker) - MajorGeeks Support Forums

I got it. You where so helpful. I was able to update Malwarebytes and it found a Trojan. MB is the best. The only one that found it. I have to pay them after this. Great VP

 

[Iffy]

DaveP, awesome info and help for fellow members!

 

[Striker911]

One more thing. Is the MB $24.99 a once per year or month fee?

 

[wseyller]

Malwarebytes is awesome. One other if you know how to find it is the Geek Squad disk iso. I cant remember what it is called but it has actually has removed the nastiest of viruses. It takes a long time but it doesnt need any interaction once it starts.

Edit: geek squad MRI disk

Sent from my DROID BIONIC using Tapatalk 2

 

[Striker911]

Cant find the cd but found this on Bestbuy.com. To rich for my blood.

Compare
$179.99

6-Month Financing
Get 4% Back in Rewards: See How

Geek Squad® - Online Virus & Spyware Removal with Software Installation
Model: GS-D-VS-REMOVAL+SW
SKU: 3652501
An Agent will remove all traces of malware and potentially unwanted programs, repair virus-related issues, and generally clean up and update the operating system; installation of one antivirus software title (cost of software not included)
Customer Reviews: Be the first to write a review.

 

[Striker911]

Try this: Free Online Virus Scan - Antivirus Software - Trend Micro USA

If that doesn't work download this http://download.cnet.com/windows/anti-spyware/3150-8022_4-0.html?tag=404

Run it and paste the results here: Malware Discussions - Trend Community

Your expert will appear and it's all free.

Thats some BS. They get your name and email addy and then ask you to buy something from an affiliate. No one else try this unless u want a bunch of spam emails.

 

[wseyller]

Cant find the cd but found this on Bestbuy.com. To rich for my blood.

Compare
$179.99

6-Month Financing
Get 4% Back in Rewards: See How

Geek Squad® - Online Virus & Spyware Removal with Software Installation
Model: GS-D-VS-REMOVAL+SW
SKU: 3652501
An Agent will remove all traces of malware and potentially unwanted programs, repair virus-related issues, and generally clean up and update the operating system; installation of one antivirus software title (cost of software not included)
Customer Reviews: Be the first to write a review.

The MRI disk is one that you cannot buy. It was never sold. It was intended for use by geek squad employees only.

 

[DaveP]

One more thing. Is the MB $24.99 a once per year or month fee?

It's a one time lifetime fee that gives you full access to all its features. They send you an unlock key and you can install it on any computer you own. It's definitely worth it. What makes the difference is that it sits in the taskbar and monitors everything that happens. It blocks malware from being downloaded and installed, keeps you from being re-directed to rogue sites, and constantly scans for problems.

I've run MSE and MWB for years and haven't had a thing infect my computers. I get notices that things were blocked here and there. It's running on 4 computers between my wife and I.

You just click the protection tab, click ENABLE PROTECTION, and enter the enablement key.

Once you pay the fee, you get prevention protection instead of notifications that you are infected. It's kind of like having security guards OUTSIDE the house that PREVENT thieves from getting in instead of one sitting inside that works only after the thieves are inside.

Glad you got your computer straightened out!

 

[Striker911]

Well I was a little premature with the celebrations. Tried to DL PC fix from AVG cause on the test run it showed a lot of errors in my system but it wont DL. Also will not let me do anything with AVG in safe mode but a scan. Cant update it or anything but scan. Whatever got into my system has done some work. Cant get into "internet options". Also should a file called "card space" be in the control panel?

 

[DaveP]

Well I was a little premature with the celebrations. Tried to DL PC fix from AVG cause on the test run it showed a lot of errors in my system but it wont DL. Also will not let me do anything with AVG in safe mode but a scan. Cant update it or anything but scan. Whatever got into my system has done some work. Cant get into "internet options". Also should a file called "card space" be in the control panel?

It's a Microsoft product, but I've never needed to use it. You can read about it here.
http://windows.microsoft.com/en-us/windows-vista/Windows-CardSpace

No antivirus program finds or protects against all threats. The more prevalent threats are sensed by their characteristics and the rest are sensed by their signature, such as attaching to certain interrupts and processes, various known files, or invading processes in the OS. Sometimes, you have to run various utilities to find everything. That's why it's important to run real time virus protection that protects against infection instead of warning you after the fact.

I would download and run the Windows Malicious Software Tool and Windows Defender as first steps toward elimination. They are good if you have the particular common known threats that they are designed to find and fix. Get the latest versions. Those will be based on what's going around now.

Get it here: http://www.microsoft.com/en-us/download/details.aspx?id=16

Windows Defender is here if you don't have a good version: http://www.microsoft.com/en-us/download/details.aspx?id=17

Did you disable User Account Control in the MajorGeeks instruction list? That will allow you to run most anything in safe mode without distractions. If you disable UAC, run only in safe mode because any program can run without asking you for permission once you do that.

Before you get serious with removal tools, back up anything you don't want to lose. I'd back up the entire user directory structure that contains the documents, pictures, and other folders you normally store files in. The main folder is usually named for the user when you set up that user. Mine is named Dave and has all my stored files and pictures underneath it. You can right click on the main folder and select "send to" and pick the drive that has a CD in it or the drive letter of a clean thumb drive.

Another issue that pops up is infected restore points. The free Kapersky trial version cleans restore points.
Free Kaspersky Anti-virus Trial | Kaspersky Lab United States

TDSS Killer is a good boot master boot record repair utility. You can get that here: http://support.kaspersky.com/downloads/utils/tdsskiller.zip

Go here to read about it. There's also a clickable list of known boot record viruses. If you have one of those names pop up in a scan, you need TDSS Killer.
http://support.kaspersky.com/viruses/solutions?print=true&qid=208280748

Fixing an infected computer can take lots of time and sweat. Read all you can from the sites I have posted and educate yourself as much as possible.

 

[FantWriter]

For me, there always comes a point where I say it isn't worth the trouble trying to fix it and just reformat my hard drive and reinstall from original disks.

It's a long process (usually takes me about two days and another month getting all my little tweaks/customizations done), but it also clears the garbage that Windows accumulates over time. (I also forget to copy at least one important file and have to work from an old backup.)

I've been thinking of doing that, but I can't find the bookmark folder (I'm using Chrome), and I don't want to have to copy the entire Google folder just for that one thing.