IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
My daughter's computer is infected with a fake "security alert" virus that keeps her from using internet explorer, fills the screen with pop-ups that won't close and launches websites that cannot be closed either. We are both novices. Help us!
Here is the file generated by my running the program. I am sorry about the format. I was not able to send it from the infected computer so I emailed it to myself and have copied it here from a differnt computer. Please let me know if there is something else I should be doing.
The P2P programs you have installed expose you to risks because of the nature of the P2P file sharing process. File sharing/P2P programs rely on members giving and gaining unrestricted access to computers across the P2P network. This practice can make you vulnerable to data and identity theft. It also exposes you to very malicious worms and trojans. You change those risky default settings to a safer configuration but the act of downloading files from an anonymous source greatly increases your exposure to infection.
Go to add/remove programs and remove all P2P programs from your machine!
Also remove these remove these if you did not install them: ViewpointService
Viewpoint Manager
Download ComboFix from Here or Here to your Desktop.
**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
--------------------------------------------------------------------
1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results". Click onthis linkto see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
This is my daughter's computer so pardon my ignorance. How do I identify P2P programs? I assume AIM is one because that's where she got this virus in a link "sent " from one of her contacts, but not really from that person, just from that person's computer which is also infected. What a surprise.
Then, her new virus protection is from TrendMicro. How do I disable that? She also has Spybot and Adaware without icons on her systray or desktop. They are just listed in her programs. How do I disable those?
Thank you so much for this help. I will follow all your instructions. I have been struggling to get the same support from TrendMicro, but their online chat is not functioning, even from my uninfected computer, and their telephone support answers my e-mail every other day with instructions that, when followed, don't have the same results as I get on the screen.
By the way, should I be doing all this in safe mode?
Run HijackThis and click Open the Misc Tools section
Click Open Uninstall Manager, Save list and save the log to your Desktop.
A list of programs will open in Notepad. Post the contents of the log here in your next reply.
Status
Not open for further replies.
You have insufficient privileges to reply here.
Related Threads
?
?
?
?
?
Tech Support Guy
9.9M posts
860K members
Since 1998
A forum community dedicated to tech experts and enthusiasts. Come join the discussion about articles, computer security, Mac, Microsoft, Linux, hardware, networking, gaming, reviews, accessories, and more!