PC infection! Need Options

Signals

Signals

Suspicious looking stranger
Messages
4,656
Reaction score
32
It's times like this when I am glad to be a member of a forum with so many bright, knowledgeable and educated people. :D

Now my sorry arsed problem.:confused: :mad:

I have a PC infection on my other PC.

I'll summarize the events leading up to this infection. BTW I have AVG anti virus on this PC, and I am running Windows Vista Home basic.

Yesterday I started a full system scan with AVG before leaving home for three hours. Came home and scan was finished, report showed zero infections and zero problems.

Today's sequence of events

  • logged into my Photobucket account which I've had for 5 years with no problems.

    • Typed in "smiling faces" search.(photos for my business website.)
      (I know what your thinking, likely command to execute a new pandemic) :rolleyes: haven't lost my sense of humor ...YET!
    • As search loaded I noticed unusual disk activity.
    • AVG pop-up indicated that site was attempting to infect PC- threat blocked
    • acknowledged threat from AVG anti-virus and left photo-bucket.
    • Back to Google image search for new query.
    • Typed in"smiling faces"
    • Top of the page paid sponsored link was: Dreams time.com -royalty free images.
    • As I was registering with this site and clicked submit....
    • ALL HELL BROKE LOOSE!!!

I was going to include some screen shots of this infection, but it has disabled every program on my PC so I can't.

  • Here's what it did
  • In about two seconds it installed a program that is running in the system tray that claims to be a anti-virus program.
  • It's not windows based.
  • It's not AVG.
  • It executed itself without requiring any commands.
  • Instantly claimed my PC had 34 infections.
  • disabled ALL programs on my PC.
  • and pissed me off royally.

I rebooted in safe mode try running AVG. That worked and it's scanning now.

If AVG, after it completes cannot identify and remove infection, whats my best options?

Do you think if I can run a 24 hour restore point in my PC, that it will remove infection, or is it likely that it is too embedded on my PC to remove by running a restore point to early yesterday?

BTW my AVG is the FREE version, not paid subscription. :eek::

PLEASE HELP!

Thanks in advance. :D
 
LittleBoyBlue

LittleBoyBlue

Redvolution
Messages
35,766
Reaction score
8,411
Find a program called rkill.exe... download it, install it and run it.
This has been able to stop the running of spyware viruses so I can run the program below.

Find a program called malwarebytes... download it, install it and run it at complete scan

give it a go... I will be here checking in....
 
ethiostar

ethiostar

Well-Known Member
Messages
6,309
Reaction score
46
YoMick;3267509 said:
Find a program called rkill.exe... download it, install it and run it.
This has been able to stop the running of spyware viruses so I can run the program below.

Find a program called malwarebytes... download it, install it and run it at complete scan

give it a go... I will be here checking in....
Click to expand...

I have had the same problem a couple of times and the above suggestion worked well the first time.

The second time it wouldn't even allow me to download anything. I had to backup all my files and do a restore.

Hope you get it worked out. Its a nasty virus.
 
TheCount

TheCount

Pixel Pusher
Messages
25,523
Reaction score
8,849
A co-worker got this on his PC at work and it was a battle to get it off, they called ina tech and ended up replacing his computer entirely. Mostly so he could get back to work and they could fix it on their own time, I suppose.

Is a clean install an option? Thought it might be since it's your "other" computer.
 
theebs

theebs

Believe!!!!
Messages
27,462
Reaction score
9,207
TheCount;3267603 said:
A co-worker got this on his PC at work and it was a battle to get it off, they called ina tech and ended up replacing his computer entirely. Mostly so he could get back to work and they could fix it on their own time, I suppose.

Is a clean install an option? Thought it might be since it's your "other" computer.
Click to expand...


I use malwarebytes all the time. I got stupid malware last week from facebook...on my editing computer no less.....it disabled all my virus scanners and malware bytes.....

but by redownloading malwarebytes as a different name and running it, it caught it in a second.

so yea...malwarebytes kicks butt.
 
Mash

Mash

Active Member
Messages
4,062
Reaction score
0
If this is a virus program running ....telling you too scan your computer and it doesnt let you run anything .........and disabled your anitvirus...

Download hijack this

http://free.antivirus.com/hijackthis/

and malewarebytes

http://www.malwarebytes.org/mbam.php

you can run these programs if you right click on the program and run as.....as Administrator...or a different user...

You can kill the process with hijack this.....and malewarebytes will find it and delete after reboot...

then run a full system virus scan with avg...
 
Yeagermeister

Yeagermeister

Well-Known Member
Messages
47,629
Reaction score
117
Malwarebytes has only let me down once and superantispyware fix it but after the cleaning process was over I ended up formatting and reloading the pc.

Malwarebytes usually cleans in on the first or second try for me.
 
Signals

Signals

Suspicious looking stranger
Messages
4,656
Reaction score
32
Great news! All is well on the home front.

Although I was unable to install and run any of the programs you guys recommended because the malicious program blocked them, I was able to access my system restore point program, and restore back to a point 12 hours ago. Restarted my PC and there is no sign of any of that crap. Everything is back to normal.

SOO I am off to reevaluate my security and dump AVG into cyberspace and replace it with something I can count on.

Thanks again for the help, Gentlemen. :D

:starspin
 
silverbear

silverbear

Semi-Official Loose Cannon
Messages
24,195
Reaction score
25
Bob Sacamano;3267442 said:
I wish I was smart
Click to expand...

We all wish that, Bob... but we've come to accept you just the way you are...

At least you're housebroken...

:D
 
iceberg

iceberg

rock music matters
Messages
34,405
Reaction score
7,932
Faerluna;3267555 said:
p.s. AVG sucks. :)
Click to expand...

i don't think so. i put the free version on all my pc's and leave it at that and to date have not been infected. the problem is in this case someone looking for what they were looking for - spyware is notorious for being in those sites and downloading what they want you to download can be a big mistake.

i'd just do a system restore and back it up say 48 hours and see if it helps.
 
iceberg

iceberg

rock music matters
Messages
34,405
Reaction score
7,932
Signals;3267768 said:
Great news! All is well on the home front.

Although I was unable to install and run any of the programs you guys recommended because the malicious program blocked them, I was able to access my system restore point program, and restore back to a point 12 hours ago. Restarted my PC and there is no sign of any of that crap. Everything is back to normal.

SOO I am off to reevaluate my security and dump AVG into cyberspace and replace it with something I can count on.

Thanks again for the help, Gentlemen. :D

:starspin
Click to expand...

good to hear the restore worked. for my own curiousity - were you using the free or the paid version of AVG? if free, it's very base protection and yes, i'd recommend more for people really wanting protection. but the free version is fine for what it is.

run it and run a few other malware blockers to be sure.
 
Signals

Signals

Suspicious looking stranger
Messages
4,656
Reaction score
32
iceberg;3268203 said:
good to hear the restore worked. for my own curiousity - were you using the free or the paid version of AVG? if free, it's very base protection and yes, i'd recommend more for people really wanting protection. but the free version is fine for what it is.

run it and run a few other malware blockers to be sure.
Click to expand...
I had been using the FREE version of AVG for about a year and it seem to be working just fine. I guess something just happen to make it passed it.
 
CF74

CF74

Vet Min Plus
Messages
26,167
Reaction score
14,623
Faerluna;3267555 said:
p.s. AVG sucks. :)
Click to expand...

Yep I had a laptop crash after trying to use that to clean up a situation...
 
silverbear

silverbear

Semi-Official Loose Cannon
Messages
24,195
Reaction score
25
Hoofbite;3268508 said:
Quit looking at pr0n.
Click to expand...

It's our God-given right as Americans to look at porn... in fact, it's our patriotic DUTY...

It's right there, in the Constitution... you could look it up...
 
You must log in or register to reply here.
Top