Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.


System Restore Virus Aftermath?

  • Please log in to reply
No replies to this topic

#1 grizchicago


  • Members
  • 9 posts
  • Local time:10:47 PM

Posted 23 October 2011 - 09:10 PM

Hi, So about a week ago my computer a Velocity Micro with a Core 2 duo CPU @ 1.86GHz with 2 gigs of RAM was hit by the "System Restore Virus. This was shortly after my Norton subscription ended. I had the new Norton 360 sitting on my counter. Anyways I googled how to get rid of the virus and I was taken here (The Bleeping Computer) where I used Malwarebytes' Anti-Malware to destroy the virus and Unhide.exe to unhide all of my hidden folders. I was hoping this was the end of my virus journey but I am afraid it is not. I installed Norton IMMEDIATELY after I destroyed the virus. Last Wednesday as I was going to bed I started to get these ghost audio coming out of my speakers. I didn't really pay attention to what it was saying but I had every program closed and couldn't find any processes that were out of the ordinary. About 30 secs. later the audio stopped. After this I ran a Norton Scan- Found just a few tracking cookies, Ran MBAM- Nothing, Ran Registry Mechanic by PCTools-Tracking Cookies, Eset Online Scanner-Tracking Cookies. I googled about this random audio and found that some users experienced redirects to other websites when using google. I didn't experience this until yesterday (Saturday). I came home after a long day yesterday and started searching more about my problems when I was redirected to Yellow Pages. This immediately set off my Red Flags. I had my father standing over my shoulder at the time and I told him "This what I was telling you about when I was talking about the random redirects. Eventually I finally got to my target page after 3 tries. I never really got too concerned until it attempted to redirect me to some porn site infested with viruses, I say attempt because Norton Warned me that this website has many computer threats on it. Then I got real concerned that I may have a browser hijacker or rootkit on my computer. This morning as I woke up and turned on my ps3 and started playing some COD I heard in the background the random audio again, I went to investigate on google again and was redirected (again). I ran PcTools' Spyware doctor Free version and it found some tracking cookies, minor adware and a program called "SpyAxe" I looked further into this SpyAxe program and found that it auto downloads/executes its self but it hasnt executed its self which I found odd. Also PcTools and Norton are both owned by Symantec so i'm a bit lost in why spyware doctor picked this SpyAxe program and not Norton. Note that with the free version of Spyware Doctor it just alerts me about the files I have to buy the full version for them to be removed. I do know of the program "HiJack This" but I've heard that it is very complicated to use and you have to have in depth knowledge abt windows. Which I have none of the sort. At this point I have a new computer picked out, its just a matter of getting the money together to buy it. I'm really not sure if this is part of the same "System Restore virus or it's something completely different. What ever it is, it is really clever if it can avoid all of those antivirus programs. Please Help. Thanks.

BC AdBot (Login to Remove)


0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users