MichaelJackson Posted September 18, 2014 Share Posted September 18, 2014 Apparently this is a nasty piece of malware. Have done searches but cant find a way to remove it successfully, any ideas ? Tried some programs but it still remains !!!!........ recommendations please ? Link to comment Share on other sites More sharing options...
GuyL Posted September 18, 2014 Share Posted September 18, 2014 (edited) What have you tried already (antimalware programs)?When I have to get rid of very nasty pieces of malware (usually from my friends' computers), I either use Hiren's Boot CD (which allows you to boot on another operating system and contains many antimalware tools among other utilities) or I put their hard disk in an external enclosure and then run several antimalware programs from one of my own computers with the external enclosure connected to it. The goal is to not boot on the infected operating system (nasty malware tend to replicate themselves at startup).For more information about Hiren's Boot CD: http://en.wikipedia.org/wiki/Hiren%27s_BootCD http://www.hiren.info/pages/bootcd http://www.hirensbootcd.org/download/ Edited September 18, 2014 by GuyL 1 Link to comment Share on other sites More sharing options...
phazey Posted September 18, 2014 Share Posted September 18, 2014 Yep, it's malware. remove with malwarebytes. https://forums.malwarebytes.org/index.php?/topic/156959-removal-instructions-for-web-protect-for-windows/ Link to comment Share on other sites More sharing options...
MichaelJackson Posted September 18, 2014 Author Share Posted September 18, 2014 Malwarebytes plus a others wont even install ? Gives runtime error tried Avg 2015, doesnt see it for removal, but throws warnings its trying to connect to the internet. Avast, doesnt see it. IObit wont remove it. Any other suggestions ? No drive to use dvd or cd solutions. Link to comment Share on other sites More sharing options...
GuyL Posted September 18, 2014 Share Posted September 18, 2014 (edited) Malwarebytes plus a others wont even install ? Gives runtime error tried Avg 2015, doesnt see it for removal, but throws warnings its trying to connect to the internet. Avast, doesnt see it. IObit wont remove it. Any other suggestions ? No drive to use dvd or cd solutions. Maybe try to launch the Hiren's Boot CD tools from a USB flash drive then: http://www.hirensbootcd.org/usb-booting/ You still have the external enclosure solution (mentioned in my previous post, it's a few hundred bahts investment if you don't have one yet) if you can use another computer to scan your current HDD. Edited September 18, 2014 by GuyL 1 Link to comment Share on other sites More sharing options...
MichaelJackson Posted September 18, 2014 Author Share Posted September 18, 2014 Found some files in the system32 folder, they wont delete, file handle error! Stubborn s.o.b ! Seems its creators have covered many angles to stop removal. Link to comment Share on other sites More sharing options...
GuyL Posted September 18, 2014 Share Posted September 18, 2014 Found some files in the system32 folder, they wont delete, file handle error! Stubborn s.o.b ! Seems its creators have covered many angles to stop removal. If you follow my previous suggestions, it should not be a problem to delete them. Link to comment Share on other sites More sharing options...
mikebell Posted September 19, 2014 Share Posted September 19, 2014 Whilst on this subject, my friends keep getting a message from my email address, especially after FB use, giving details of a New Year sale at 'Ohwit' - this has been going on for 3 years on & off. I've scanned with Malawarebytes/Avast etc in vain. I've changed my email password but the problem persists. Any advice would be appreciated; please bear in mind that I'm not very computer literate. Link to comment Share on other sites More sharing options...
GuyL Posted September 19, 2014 Share Posted September 19, 2014 (edited) Whilst on this subject, my friends keep getting a message from my email address, especially after FB use, giving details of a New Year sale at 'Ohwit' - this has been going on for 3 years on & off. I've scanned with Malawarebytes/Avast etc in vain. I've changed my email password but the problem persists. Any advice would be appreciated; please bear in mind that I'm not very computer literate. Could be a malware, but also, email spoofing: http://en.wikipedia.org/wiki/Email_spoofing In the case you are infected by a malware, there are numerous free tools that may help you: http://www.techsupportalert.com/best-free-spyware-and-adware-remover.htm I would start with free versions of Malwarebytes antimalware and SuperAntiSpyware, and of course, by running a full scan of your computer with your current antivirus software (if you haven't one yet, free versions of Avast, Avira or AVG are decent solutions), but if it doesn't work, you might have to do what I have suggested previously too with a bootable CD or USB flash drive or external enclosure and another computer for not launching your current operating system before the scan. Check first with your friends that it is not just email spoofing now (as much as they can and this may help them: http://www.askdavetaylor.com/how_to_tell_if_email_is_spoofed_or_legit/). Edited September 19, 2014 by GuyL Link to comment Share on other sites More sharing options...
russ1 Posted September 19, 2014 Share Posted September 19, 2014 To the OP you could try spybot. I usually use that if Malwarebytes doesn't do it. Also ccleaner after you have removed it. Link to comment Share on other sites More sharing options...
Chicog Posted September 19, 2014 Share Posted September 19, 2014 You need to boot into a clean environment to stop the malware interfering with your attempts at running antimalware programs.The advice above about Hiren's is spot on, or you can try one of these:http://pcsupport.about.com/od/system-security/tp/free-bootable-antivirus-software.htm 2 Link to comment Share on other sites More sharing options...
MichaelJackson Posted September 19, 2014 Author Share Posted September 19, 2014 (edited) Thanks for replies so far..... The problem with running the various anti virus tools etc is they just dont see the problem, its not recognised as a threat. The folder and files are all somehow protected from detection/deletion, any attempt to remove them results in a "handling error". I found the folder and files from searching the net and knowing what to look for as they are renamed from the onvious, I got the source of the issue, just need to remove it. So anti-virus tools dont see it, any ideas or suggestions on how to remove these files "manually" ? Edited September 19, 2014 by MichaelJackson Link to comment Share on other sites More sharing options...
MJCM Posted September 19, 2014 Share Posted September 19, 2014 (edited) Thanks for replies so far..... The problem with running the various anti virus tools etc is they just dont see the problem, its not recognised as a threat. The folder and files are all somehow protected from detection/deletion, any attempt to remove them results in a "handling error". I found the folder and files from searching the net and knowing what to look for as they are renamed from the onvious, I got the source of the issue, just need to remove it. So anti-virus tools dont see it, any ideas or suggestions on how to remove these files "manually" ? READ POST #2 !!! Hiren's boot CD, will boot into a clean environment and thus you can remove those files I will paste that post here for you to read <snip>When I have to get rid of very nasty pieces of malware (usually from my friends' computers), I either use Hiren's Boot CD (which allows you to boot on another operating system and contains many antimalware tools among other utilities) or I put their hard disk in an external enclosure and then run several antimalware programs from one of my own computers with the external enclosure connected to it. The goal is to not boot on the infected operating system (nasty malware tend to replicate themselves at startup). For more information about Hiren's Boot CD: http://en.wikipedia.org/wiki/Hiren's_BootCD http://www.hiren.info/pages/bootcd http://www.hirensbootcd.org/download/ Edited September 19, 2014 by MJCM 1 Link to comment Share on other sites More sharing options...
GuyL Posted September 19, 2014 Share Posted September 19, 2014 Thanks for replies so far..... The problem with running the various anti virus tools etc is they just dont see the problem, its not recognised as a threat. The folder and files are all somehow protected from detection/deletion, any attempt to remove them results in a "handling error". I found the folder and files from searching the net and knowing what to look for as they are renamed from the onvious, I got the source of the issue, just need to remove it. So anti-virus tools dont see it, any ideas or suggestions on how to remove these files "manually" ? READ POST #2 !!! Hiren's boot CD, will boot into a clean environment and thus you can remove those files I will paste that post here for you to read <snip>When I have to get rid of very nasty pieces of malware (usually from my friends' computers), I either use Hiren's Boot CD (which allows you to boot on another operating system and contains many antimalware tools among other utilities) or I put their hard disk in an external enclosure and then run several antimalware programs from one of my own computers with the external enclosure connected to it. The goal is to not boot on the infected operating system (nasty malware tend to replicate themselves at startup). For more information about Hiren's Boot CD: http://en.wikipedia.org/wiki/Hiren's_BootCD http://www.hiren.info/pages/bootcd http://www.hirensbootcd.org/download/ Thank you, MJCM! I also previously explained that Hiren's Boot CD tools may be also launched from a USB flash drive: http://www.hirensboo...rg/usb-booting/ 1 Link to comment Share on other sites More sharing options...
Chicog Posted September 19, 2014 Share Posted September 19, 2014 Thanks for replies so far..... The problem with running the various anti virus tools etc is they just dont see the problem, its not recognised as a threat. The folder and files are all somehow protected from detection/deletion, any attempt to remove them results in a "handling error". I found the folder and files from searching the net and knowing what to look for as they are renamed from the onvious, I got the source of the issue, just need to remove it. So anti-virus tools dont see it, any ideas or suggestions on how to remove these files "manually" ? In the post before yours I said: You need to boot into a clean environment Do you understand what that means? Link to comment Share on other sites More sharing options...
MichaelJackson Posted September 19, 2014 Author Share Posted September 19, 2014 (edited) Dont have any form of cd disc drive, dont know how to do from usb. The instructions state copy files from cd to usb, I CANT DO THAT , no cd drive. Edited September 19, 2014 by MichaelJackson Link to comment Share on other sites More sharing options...
MJCM Posted September 19, 2014 Share Posted September 19, 2014 (edited) Dont have any form of cd disc drive, dont know how to do from usb. The instructions state copy files from cd to usb, I CANT DO THAT , no cd drive. Oke Fair enough, What about a Friends Computer, Internet Cafe, Computer Repair Shop etc ? Edited September 19, 2014 by MJCM Link to comment Share on other sites More sharing options...
MichaelJackson Posted September 19, 2014 Author Share Posted September 19, 2014 aREQUIRES CD ! Link to comment Share on other sites More sharing options...
MJCM Posted September 19, 2014 Share Posted September 19, 2014 (edited) I changed my post after you CHANGED YOURS. So read my Changed post Dont have any form of cd disc drive, dont know how to do from usb.The instructions state copy files from cd to usb, I CANT DO THAT , no cd drive. Oke Fair enough, What about a Friends Computer, Internet Cafe, Computer Repair Shop etc ? Edited September 19, 2014 by MJCM Link to comment Share on other sites More sharing options...
MichaelJackson Posted September 19, 2014 Author Share Posted September 19, 2014 Then we posted same time...lol Link to comment Share on other sites More sharing options...
GuyL Posted September 19, 2014 Share Posted September 19, 2014 (edited) Dont have any form of cd disc drive, dont know how to do from usb. The instructions state copy files from cd to usb, I CANT DO THAT , no cd drive. You can extract the files locally (Hiren's Boot CD is stored in a zip file at the download location that I have mentioned earlier), for instance with 7-zip (it's free and it allows you to extract .iso files too). http://www.7-zip.org/download.html Edited September 19, 2014 by GuyL 1 Link to comment Share on other sites More sharing options...
MichaelJackson Posted September 19, 2014 Author Share Posted September 19, 2014 (edited) Think I will just take off what I want to keep and format the HDD, start again from fresh. Edited September 19, 2014 by MichaelJackson Link to comment Share on other sites More sharing options...
GuyL Posted September 19, 2014 Share Posted September 19, 2014 Think I will just take off what I want to keep and throw the HDD out! Less hassle, easier and less time consuming to replace the HDD than try and repair this problem. If it's too difficult for you and are planning to go to Udon Thani or Nong Khai one of these days, send me a private message. Or maybe other people in your area could help you too. Link to comment Share on other sites More sharing options...
MJCM Posted September 19, 2014 Share Posted September 19, 2014 Think I will just take off what I want to keep and throw the HDD out! Less hassle, easier and less time consuming to replace the HDD than try and repair this problem. Don't give up. !!! It's quite easy. Just download 2 things Hiren Boot CD (from Post #2) and 7 Zip. After you download both, and installed 7 Zip you can extract the contents of the CD on your Hard Disk and create the USB stick. If you do it and you succeed, you will be "On Top of the World" And please remember if you run into difficulties there are a lot of TV members here to help !! Good Luck Link to comment Share on other sites More sharing options...
Chicog Posted September 19, 2014 Share Posted September 19, 2014 Think I will just take off what I want to keep and format the HDD, start again from fresh. never hurts. Just make sure you get fresh copies of your favourite programs. Link to comment Share on other sites More sharing options...
bartender100 Posted September 28, 2014 Share Posted September 28, 2014 I recently got this virus, found this tool removed it, just for reference https://toolslib.net/downloads/viewdownload/1-adwcleaner/ Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now