BleepingComputer.com: AV Protection 2011

Jump to content

Forum Rules

When posting your problem, do not run and post a ComboFix log. ComboFix is a tool that should only be run under the supervision of someone who has been trained in its use. Using it on your own can cause problems with your computer. Any posts containing CF Logs will be ignored.

To receive help, you should instead provide a detailed description of your problem, detailed word-for-word error messages that you are receiving, screenshots of strange behaviour, and your operating system. This information is much more useful to our helpers than a ComboFix log.

If you have not received help after three days, please post a link to your topic HERE.
Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

AV Protection 2011 -has swallowed my laptop whole

#1 User is offline   Qultur 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 1
  • Joined: 19-November 11

Posted 19 November 2011 - 05:55 PM

So my computer's been infected by the whole AV Protection virus deal. I've come here through the magic of Google passageways and have downloaded several things, namely Malwarebytes' Anti-Malware, TDSSKill, RKill, and iExplore. I've unchecked my LAN Network Settings under Internet Options.

I really don't know what I'm doing.

So nothing's particularly worked. Could someone kind of...help me out somehow??

#2 User is offline   YardDog1 

  • Member
  • PipPip
  • Find Topics
  • Group: Members
  • Posts: 91
  • Joined: 21-September 09
  • Gender:Male
  • Location:FLorida

Posted 19 November 2011 - 06:05 PM

Hello. Welcome to Bleeping Computer, the Malware Removal Team will respond, a moderator will move this thread to the proper forum, where you will be instructed . Thank you for using Bleeping Computer.



Please use restore points often



660099

#3 User is offline   Chamomile 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 3
  • Joined: 19-November 11

Posted 19 November 2011 - 09:14 PM

I am also in the same boat. I have tried to follow the instructions here: http://www.bleepingcomputer.com/virus-removal/remove-av-protection-2011 without much luck cuz I am unable to connect to the internet to download anything in safe mode, and tools placed on a stick drive do not seem to be working on the infected laptop:((

View PostQultur, on 19 November 2011 - 05:55 PM, said:

So my computer's been infected by the whole AV Protection virus deal. I've come here through the magic of Google passageways and have downloaded several things, namely Malwarebytes' Anti-Malware, TDSSKill, RKill, and iExplore. I've unchecked my LAN Network Settings under Internet Options.

I really don't know what I'm doing.

So nothing's particularly worked. Could someone kind of...help me out somehow??

#4 User is offline   YardDog1 

  • Member
  • PipPip
  • Find Topics
  • Group: Members
  • Posts: 91
  • Joined: 21-September 09
  • Gender:Male
  • Location:FLorida

Posted 19 November 2011 - 09:34 PM

Hello, i can assist to a degree , read this : http://www.bleepingcomputer.com/virus-removal/how-to-use-malwarebytes-anti-malware-tutorial#tutorial
Also, follow the automated instructions step by step, that link for removal is the one to use. Notice that you may have to use a cd/dvd or flash drive with the programs downloaded on a working computer to use on the infected computer.



Please use restore points often



660099

#5 User is offline   Chamomile 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 3
  • Joined: 19-November 11

Posted 19 November 2011 - 11:26 PM

Thanks lilbit:

I did follow the instructions exactly downloading programs from a healthy computer with a stick drive. But once they were on the infected computer I had issues. The Rkill for example kept saying it cannot be installed, irrespective of what name I used for it.

Another big problem: MWB installed properly, but since I could not access the internet in safe mode, I could not update MWB and the definitions I have on the sick laptop are 80 days old.

View Postlilbit96, on 19 November 2011 - 09:34 PM, said:

Hello, i can assist to a degree , read this : http://www.bleepingcomputer.com/virus-removal/how-to-use-malwarebytes-anti-malware-tutorial#tutorial
Also, follow the automated instructions step by step, that link for removal is the one to use. Notice that you may have to use a cd/dvd or flash drive with the programs downloaded on a working computer to use on the infected computer.

#6 User is offline   YardDog1 

  • Member
  • PipPip
  • Find Topics
  • Group: Members
  • Posts: 91
  • Joined: 21-September 09
  • Gender:Male
  • Location:FLorida

Posted 19 November 2011 - 11:40 PM

I hear ya, that can be a nasty, notice it mentions in the guide that it may include a rootkit. In the first part of the removal guide. http://www.bleepingcomputer.com/virus-removal/remove-tdss-tdl3-alureon-rootkit-using-tdsskiller I am just reminding you of this program, it can be overlooked at times. A Malware Removal Team member should get to you soon.




Please use restore points often



660099

#7 User is offline   Chamomile 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 3
  • Joined: 19-November 11

Posted 20 November 2011 - 02:00 PM

OK,

I may have completely removed the AV protection 2011. I booted in safe mode and did a system restore back to November 1. I then restarted the laptop normally, installed malwarebytes from the stick drive, updated MWB and ran a full scan, which seems to have caught and removed the malware.

I have windows XP FYI.

Share this topic:


Page 1 of 1
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users