All right I had this b*stard virus and only avast could get rid of it after a LONG scan. Malwarebytes didn't find it. Now I got another one that keeps redirecting me to bogus anti virus ware sites from google/bing searches, anybody know how to get rid of it? I can't exactly google an answer.
Avast probably nabbed it because it scans rootkits. Those require scanning right after booting. I think Avira scans rootkits too. People like COMODO because it gives you a tight ship on what goes in and out of your computer. The scanner is average though. All are free for you to give a try.
You should get combofix and run it right after your computer boots up. This is how I fixed my computer. I hope this helps.
yup it was in the rootkit, that's exactly what it was. F I think the google redirect virus was something left over in the cookies, i delted them all and cleared the cache and it seemed to go away.
It's not just p*rn sites. I just got it from visiting a small-potatoes small business website that sells oil rig parts.
Anybody been getting a new version of this that sends you to the "DCOM Server Process Error" shutdown countdown? what a pain in the ass.
Yes, shuts my computer down every ten damn minutes. This is getting ridiculous. I've been trying to fix it for hours now.
Yeah I've still got it bad - I rebooted to Safe Mode and I ran both AVAST and Malware bytes mega hardcore thorough scans that took 4-5 hours and though I removed about 4 pieces of malware - the goddamned thing came back. I don't know what to do now.
My parents' computer had it too, and none of the scans were running all the way through so I backed up all the data and did a System Recovery.
I can't even get that to work because it gives me the stupid "administrator" BS... Seems like lots of people are getting this so hopefully somebody comes up with a fix over the next few days. oh sweet it just happened again...
Just follow this. It's easy to remove. EDIT: If you know how to edit the registry...pretty easy, just follow the guide. http://www.bleepingcomputer.com/virus-removal/remove-security-tool The malware changes an important part of the .exe of malwarebytes, so you have to redownload it but from the link in the guide from Bleepingcomputer.com. It'll have a random name, but follow the directions and save it to the correct folder. ALSO, bleeping computer has a fantastic executable called rkill, which kills all known malware processes so you can clean your computer of them.
These Malwares, rogue antivirus programs.....are getting ridiculous. I removed 15 in the last week, and still have like 8 to go as of yesterday....I was off from work today. If it comes down to it where you can't get rid of it, with out formatting etc....pony up the $$$ to a friend, or take it to a store like Staples.
FYI, Avast will block malwarebytes from bringing it up in results because it will 'ID' it first, even during a malwarebytes scan. I would load into safe mode, and run a malwarebytes full scan in these instances. Or, have avast ignore it during the MWB scan so MWB will pick it up. Malware has been really really solid. Of course, if things are too far gone even for scans it's time for a reload.
yeah even in safe mode malwarebytes can't get this one. And to make matters more awesome, system restore was disabled (I don't remember doing that ever) and there's nothing to reboot to. Lots of people on other forums seem to be getting this ****ing **** of a virus, i guess I'm just going to reinstall windows. Oh and as I write, this, I just got the ****ing reboot message.
I know Windows 7 has an XP compatibility mode with is basically a virtual XP machine running inside 7. They should make a virtual IE browser which would allow you to browse websites in a virtual environment so you can't risk infecting your main system. If you do happen to download malware in the virtual environment you could simply restore it.
If you guys have a system restore point use it. You should always try to create a system restore point. Best anti virus to use is Nod32 and Kaspersky. Try to have more then 2 anti virus running on your computer if the programs allow.
have you tried it in safe mode with command prompt? it usually works for me. safe mode still loads up a lot of services the former doesn't. it loads the bare minimum required to boot. Try this... 1. Restart your computer, and then press and hold F8 during the initial startup to start your computer in safe mode with a Command prompt. 2. Use the arrow keys to select the Safe mode with a Command prompt option. 3. At the command prompt, type rsturi.exe or %systemroot%\system32\restore\rstrui.exe, and then press ENTER. 4. Follow the instructions that appear on the screen to restore your computer to a functional state.
