| |||||||
| Technology & Technical Skills Computer skills, hardware, software, internet topics, gadgets, programming |
 |
| | Thread Tools | Display Modes |
10-27-2008, 07:27 PM
| #1 (permalink) |
| Senior Member Join Date: Jul 2008 Location: Cornwall, England
Posts: 317
 |  HELP! Malware/spyware/ trojan/ spyaxe
My computer is coming up with a fake windows baloon on the taskbar saying "your computer is infected" and trys to get you to pay for a program to fix it. I have nortan anti virus and spybot s&d but its making them inposible to open up.. I have downloaded so many things but they either wont open properly or you have to buy them after the scan.. I looked on google for spyaxe remover witch i think it is.. and I get a program that runs.. I did run it and it got rid of it but i turned it on and it was back again... then realised you have to do it in safe mode.. tried that.. and Now when i use the program it doesnt work atall! :S HElp! Any suggestions of other anti malware or spyware or virus programs that are free and might help me.. also Yeah..  just anything this is horible.. Its not even my computer.. I need it fixed!
|
|      |
|
10-27-2008, 11:11 PM
| #2 (permalink) |
| Senior Member Join Date: Nov 2006
Posts: 336
|
In the future you could try "safe mode with networking" instead of just safe mode. That will let you connect to the internet and pretty much use your computer normally but you have to manually start the services. To do that, go into control panel and administrative tools, and then services. Make sure DHCP Client, DNS Client, Network Connections, Plug and Play, and WebClient are enabled and started. You might also need to run some additional programs or start other services depending on your network card or modem. It won't help with your problem but it will let you pretty much use your computer normally in safe mode, and look things up on Google and be able to follow the instructions on a working box. You could also temporary use your computer in safe mode to do work. You could probably just manually get rid of your virus, if you're tech-savvy. Download Process Explorer(free) here: Process Explorer And AutoRuns(also free) here: AutoRuns for Windows If your virus diabled Windows Task Manager, Process Explorer is an alternative that might work. You might also be able to make a copy of taskmgr.exe in the System32 folder and rename it which might make it run, but Process Explorer is easier to use. Basically you run Process Explorer(not in safe mode; with the virus also running), which will give you a list of processes running on your system right now. The virus will probably be one of these. To figure out what each process does, Google it. With some processes like svchost or rundll32 you need to right click on it in Process Explorer, click Properties, and click the Image tab to find the arguments it was invoked with, which I don't think Task Manager can do. Google should tell you what the virus is. Once you've identified the virus, try ending the process which should get rid of it temporarly or make it start up again(the latter is a sign of a virus but some normal programs do that too, most don't). You could also try right-clicking on it and selecting "Suspend" which will freeze the virus if you have the right process. You could skip that step but it will give you more work to do later. Once you've identified it, kill or suspend it and use Autoruns to remove its startup entry, which will make sure it doesn't start up again anymore. You could Google any suspicious entry in Autoruns if you didn't bother to identify the virus. Don't mess around too much in Autoruns or you'll screw up your computer and it won't boot anymore. You could do this in safe mode to make sure nothing sabotages your efforts. After you've disabled the entry, reboot to make sure it's permanently gone. Some viruses will constantly rename themselves or have some hard-to-find program start them, or something, which will make them harder to remove. You don't have to delete the virus but you can if it makes you feel better. |
|
| |
|
10-27-2008, 11:47 PM
| #3 (permalink) |
| Family Member Join Date: Oct 2006 Location: San Rafael, CA
Posts: 4,896
|
I did some work for a company network that got infected with that. It was one of the hardest malwares I ever removed. Try these steps. |
|
| |
|
10-29-2008, 07:36 AM
| #4 (permalink) |
| Banned Join Date: Dec 2006 Location: I'm a traveler everywhere and nowhere.. currently in Denver.. where else?
Posts: 3,618
|
For automatic programs.. I would only recommend.. - roguefix - malwarebytes if you know a thing or to about windows or you can read the command line real well.. - hijackthis If you want what I think is the best malware/virus that would be - nod32 (has a 30 day trial.. so use it for a FREE cleaning if yah want) (and dump norton if you want speed up your computer, get rid of ineffective software and or get nod32) |
|
| |
|
10-29-2008, 06:18 PM
| #5 (permalink) |
| Senior Member Join Date: Jan 2007 Location: Oregon
Posts: 238
|
Used to do this for a living. Programs I used... Hijack this - definitely. Adaware - free Spybot - free Antivira AV - free May need SpyDoctor to get rid of SpyAxe - it was a nasty one if I remember correctly. Turn off Sys Restore. Go into Safe Mode with Networking, and download and run everything. Then reboot to normal and run it again. |
|
| |
|
| Bookmarks |
« Previous Thread
|
Next Thread »
| Thread Tools | |
| Display Modes | |
Linear Mode
| |
Similar Threads | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| best free spyware download | MattUK | Technology & Technical Skills | 8 | 11-18-2006 07:15 AM |
All times are GMT. The time now is 07:08 PM.