I keep getting a window appear trying to sell me the microsoft xp anti virus program. At the same time it warns me that my system is being attacked by a virus. I can’t get rid of it.
This entry was posted by wwdn_admin on August 27, 2012 at 1:44 pm, and is filed under . Follow any responses to this post through RSS 2.0.You can leave a response or trackback from your own site.
that’s a hijacker,
do not click to run there ‘virus check’ you’ll download more viruses.
you need to get a good virus scanner and run it.
you can try malwarebytes.com for their free version to clear it up but you need to buy a good virus scanner.
You were wrong! That program is not anti-virus but its a malware…
If it just happened in these days there is a chance to cure it by doing system recovery.
To do so:
a. Login with one of your ‘administrator’ id
b. Start> Programs > Accessories > System Tools > System Restore
c. Then the selection ‘Restore my computer to an earlier time’ and next
d. Choose a ‘restoration point of date’ prior to the incident ( the date just before the installation that malware) , and continue
e. After restoration process and reboot , your computer will be ok
Note: This will not work well if it happened many days before, as that particular malware willbe trying to delete all previous restoration points.
Update your antivirus if you dont have one first install and update it. Then boot your PC in safe mode without networking. Then scan your wholw computer. If you can not install or update antivirus just backup your data and format your hard disk (All drives).
Dont install any virus removal softwares that are not standard and dont change your registry with that software.
Use avast antivirus. It will scan at boot time also so it is easy to detect before the virus run.
the best solution for internet related viruses is Kasperski (dnt mind my spelling)
Well it’s probably any troyan. You’d better buy antivirus software. I use Kaspersky Internet Security 2010. It’s better antivirus and anti-hacker software. 8 monthes – no problems with viruses at all.
to avoid more problem , u better format ur laptop
but make sure u have the backup
or the 2ndary
u can do system restore , if u remember when is the last time ur computer work well
u can do system restore
but the bad side is
u will lose some of your data if u do system restore
so its all up to u
u can check more info in deanbaka.blogspot.com
Shows you how to remove rogues, but works for other viruses too (By me):
Use combofix from bleepingcomputer.com, then download malwarbytes(you may need to rename the installer/setup to something like winlogon.exe to be
able to run or install it) from malwarebytes.com or softpedia.com, then clean the rest of the virus with superantispyware and Hitman Pro 3.5 from
softpedia.com/cnet.com and just in case you do have a rootkit on your system use GMER from majorgeek.com(Use gmer to scan and anything in red
Future Protection use this wizard to recommend security protection for your system:
or go to safe mode and then do the above:
To get into Safe Mode with Networking:
1. Log out and reboot your machine.
2. When the machine starts the reboot sequence, press the F8 key repeatedly.
3. Select Safe Mode with Networking from the resulting menu.
Note: Rogue security software is a form of computer malware that deceives or misleads users into paying for the fake or simulated removal of malware.
Terminating the process:
1.I verify that a Rogue is present. This isn’t hard, since it’s usually popping up just about every few seconds.
2.Click CTRL-ALT-DELETE (if it’s available)
3.Click Task Manager
5.Find a process that usually contain all numbers. For example 2342342.exe. If you do not see all numbers then your rogue has a name
like…SystemSecurityPro.exe or GreenAV.exe…etc.
6.Select that process and click end process.
7.At this point the rogue process has been terminated.
Removing Rogue Anti-virus that is named with random numbers.
or If you can’t open task manager then use Rkill from http://download.bleepingcomputer.com/grinler/rkill.com
2.Click Run (or for Vista/Win7 type in the start search box)
3.For windows xp type: C:documents and settingsall usersApplication Data and click OK. A window will open containing a folder with about 8
numbers. Your Rogue is in there. Delete that folder/Rename it (Restart the computer).
4.For Windows Vista/Win7 type C:usersall users (C:UsersUserAppData) in the “start search” box and click enter. Your randomly named folder with
about 8 digits should be in there. Delete it/Rename it (restart the computer).
Removing Rogue Anti-Virus that has a name like System Guard Pro, AV2010, etc
1.Open Windows Explorer.
2.Open your C: drive.
3.Open Program Files
4.Find the Rogue and Delete the folder.
This will eliminate the rogue from running, but not clearing everything from your system. Use malwarebytes to clean the rest and the method I show you at
first to remove all the virus you have if neccessary.
If not seek an expert. Good Luck!
Didn't find any related posts :(
© 2012 WWDN.org | All Rights Reserved | RSS Feeds