Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

No anti virus will download!


  • Please log in to reply
7 replies to this topic

#1 AlenNez

AlenNez

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:05:41 PM

Posted 14 April 2016 - 09:35 PM

Hello, I have an issue with my computer. There apparently is a trojan on my computer and malware which I assume is severing any attempt to download anti-malware or anti-virus programs. I have tried numerous downloads, such as TDSSKiller, MalwareBytes, Advanced system care, AVG, etc. and they do not work.
The issue is when I install them. I install them perfectly fine, the pop-up opens asking if I want to open the file. I click Run, and the window closes like normal but doesn't show any installation.
I would be very grateful if I could get tech support with this issue.

Edited by Queen-Evie, 14 April 2016 - 09:53 PM.
moved from Windows 7 to Am I Infected


BC AdBot (Login to Remove)

 


#2 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:41 PM

Posted 15 April 2016 - 10:35 AM

Please download RKill from the Bleeping Computer option and install it.
                              
Attention:  While running RKill you may see a message stating that the program could not be run because it is a virus or is infected.  This is the malware trying to protect itself.  Two methods that you can try to get past this and allow RKill to run are:
 
1)  Rename Rkill so that it has a .com extension.
 
2)  Download a version that is already renamed as files that are commonly white-listed by malware. The main Rkill download page contains individual links to renamed versions.  
 
When RKill is run it will display a console screen similar to the one below:
 
RKill_zps2e34d4b8.png
 
When RKill has finished running a log will be displayed showing all of the processes that were terminated by RKill.
 
Attention:  At this time you need to run your security applications listed below.  Do not restart the computer until all of the requested scans have been run and the logs posted in your topic.
 
After the application has run successfully you should reboot the computer to restore the processes and Windows Registry entries.
 
================

Please run TDSSKiller.
 
Please download TDSSKiller from here and save it to your Desktop.
 
The log for the TDSSKiller can be very long.  If you go to the bottom of the log to where you find Scan finished you will see the results of the scan.  If it shows Detected object count: 0 and Actual detected object count: 0, this means that nothing malicious was found and you will not need to post the log.
 
1.  Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
 
tdss1_zps90132559.png
 
2.  Check Loaded Modules, Verify Driver Digital Signature, and Detect TDLFS file system.
 
If you are asked to reboot because an "Extended Monitoring Driver is required" please click Reboot now.
 
tdsskillermultiple_zps472c18eb.png
 
3.  Click Start Scan and allow the scan process to run.
 
tdss4_zps6792a13c.png
 
4.  If threats are detected select Cure (if available) for all of them unless otherwise instructed.
 
***Do NOT select Delete!
 
Click on Continue.
 
tdss5_zps98fc5887.png
 
5.  Click on Reboot computer.
 
Please copy the TDSSKiller.[Version]_[Date]_[Time]_log.txt file found in your root directory (typically c:\) and paste it into your next reply.
 
Note:  The log may be very long.  You may need to break it into parts to post the whole log.
 
================

Please run Malwarebytes AntiMalware
 
Please download Malwarebytes Anti-Malware
 
1)  Double-click on mbam-setup.exe, then click on Run to install the application, follow the prompts through the installation.
 
2)  Malwarebytes will automatically open.  You will see an image like the one below, click on Update Now.  
 
mbam1_zps98e7fba9.png
 
3)  Click on Settings, you will see a image like the one below.
 
malware%20settings_zpsixkea5sd.png
 
When Settings opens click on Detection and Protection, then under Non-Malware Protection, click on the down arrow for PUP (Potentially Unwanted Programs) detections and select Treat detections as malware.
 
4)  Click on Scan (next to Settings), then click on Scan Now.  The scan will automatically run now.
 
5)  When the scan is complete the results will be displayed.  Click on Delete All.
 
malwarenew_zps34b58fdc.png
 
6)  Please post the Malwarebytes log.
 
To find your Malwarebytes log,download mbam-check.exe from here and save it to your desktop.
 
To open the log double click on mbam-check.exe on your desktop.  Copy and paste the log in your topic.
 
================

Please run the ESET OnlineScan

This scan takes quite a long time to run, so be prepared to allow this to run till it is completed.

***Please note. If you run this scan using Internet Explorer you won't need to download the Eset Smartinstaller.***

ESET Online Scanner

  • Click here to download the installer for ESET Online Scanner and save it to your Desktop.
  • Disable all your antivirus and antimalware software - see how to do that here.
  • Right click on esetsmartinstaller_enu.exe and select Run as Administrator.
  • Place a checkmark in YES, I accept the Terms of Use, then click Start. Wait for ESET Online Scanner to load its components.
  • Select Enable detection of potentially unwanted applications.
  • Click Advanced Settings, then place a checkmark in the following:
    • Remove found threats
    • Scan archives
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • Click Start to begin scanning.
  • ESET Online Scanner will start downloading signatures and scan. Please be patient, as this scan can take quite some time.
  • When the scan is done, click List threats (only available if ESET Online Scanner found something).
  • Click Export, then save the file to your desktop.
  • Click Back, then Finish to exit ESET Online Scanner.

Edited by dc3, 15 April 2016 - 10:36 AM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#3 AlenNez

AlenNez
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:05:41 PM

Posted 03 May 2016 - 09:47 PM

Thanks for trying to help.

None of the links worked or even downloaded for me. As I said earlier, I pressed RUN, and after that the window closes like normal but nothing happens.

I have tried all of those options but to no avail. I am getting very tired of having to deal with a slow and dying computer. 

One of the viruses I found with Windows Malicious Software Removal Tool was "abaddon.exe" or something similar. WMSR literally told me it decided to do nothing about it and just leave it there.



#4 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:41 PM

Posted 04 May 2016 - 09:57 AM

Follow the instructions below and run RKill.  Once it is running try doing the downloads and run the scans.  Do not restart the computer until you have completed the scans or they fail to download and install.

 

 
Please download and run RKill
 
RKill is an easy to use tool that kills known processes and removes Windows Registry entries that stop a user from using their normal security applications.  These settings will remain until the computer is rebooted, for this reason you must run your security applications before the computer is rebooted.  
 
Please download RKill from the Bleeping Computer option and install it.
                              
Attention:  While running RKill you may see a message stating that the program could not be run because it is a virus or is infected.  This is the malware trying to protect itself.  Two methods that you can try to get past this and allow RKill to run are:
 
1)  Rename Rkill so that it has a .com extension.
 
2)  Download a version that is already renamed as files that are commonly white-listed by malware. The main Rkill download page contains individual links to renamed versions.  
 
When RKill is run it will display a console screen similar to the one below:
 
RKill_zps2e34d4b8.png
 
When RKill has finished running a log will be displayed showing all of the processes that were terminated by RKill.
 
Attention:  At this time you need to run your security applications listed below.  Do not restart the computer until all of the requested scans have been run and the logs posted in your topic.
 
After the application has run successfully you should reboot the computer to restore the processes and Windows Registry entries. 

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#5 AlenNez

AlenNez
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:05:41 PM

Posted 14 May 2016 - 09:09 PM

As stated before, attempting to run any of the RKill type downloads will not do anything. I have downloaded them multiple times, and refreshed FireFox and other browsers multiple times. I download it fine, I press Run, and the box closes normally but does not show anything.



#6 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:41 PM

Posted 15 May 2016 - 10:50 AM

Try doing this in Safe Mode.


Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 


#7 AlenNez

AlenNez
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:05:41 PM

Posted 22 May 2016 - 04:03 PM

Unfortunately, I have tried Safe Mode as well but to no avail. As we speak, I'm using Safe Mode right now and attempted the previous steps but still stays the same. Is it possible that you or anyone else could help me via Remote Assistance?

#8 dc3

dc3

    Bleeping Treehugger


  • Members
  • 30,714 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Sierra Foothills of Northern Ca.
  • Local time:04:41 PM

Posted 22 May 2016 - 04:12 PM

Absolutely not.  All assistance has to be done in the topic where this belongs.

 

There are tools which cannot be used in this forum which will be needed to clean your computer.  For this reason you will need to open a topic in the Virus, Trojan, Spyware, and Malware Removal Logs forum.
 
Before posting your topic you will need to read and follow the instructions in the Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help.
 
The members of the Malware Response Team who respond to these topics are constantly inundated do to the high volume of requests for help in this forum.   For this reason it may take a couple of days before a Team member may be able to get to your topic.  
 
Do not add anything or bump your topic once you have posted your log.  The Malware Removal Team members look for topics which have not been addressed, if you post any additional information it will make it appear that the topic is being addressed.
 
After you have posted your new topic a Moderator will close this topic.  If it is determined that there is a softare or hardware problem after cleaning the infection you can contact a Moderator to have this topic reopened.

Edited by dc3, 22 May 2016 - 04:13 PM.

Family and loved ones will always be a priority in my daily life.  You never know when one will leave you.

 

 

 

 





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users