| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 115141 | 2011-01-04 09:13:00 | Antivirus 8 spyware removal | Safari (3993) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1166959 | 2011-01-09 09:26:00 | Did you disable system restore / try booting into safe mode / safe mode / networking, then do a scan with malwarebytes?? Yep turned off System restore and did a full scan in safe mode with Malwarebytes. It removed several nasties and antivirus 8 popups and icons have now gone but it has left this so called google redirect virus. I have asked her to try another search engine to see if it only happens with google. Doing a google search for google redirect virus brings up pages of reports and problems but no one thing seems to be able to kill it, even some suggestion that it could be some sort of root kit. |
Safari (3993) | ||
| 1166960 | 2011-01-09 09:54:00 | Bring out the BIG GUNS :devil Use this program at your own risk, its one of the ones I mentioned that "sometimes" will screw your system. I would say from experience, this time it "shouldn't" Meaning it can on a really badly infected PC - and you'd know about it if it were. Turn ON system Restore - make a restore point - download and run Combofix (www.bleepingcomputer.com) - read the instruction on how to use it, ( basically double clik, agree and let it run) WARNING: What ever you do DONT stop it once it starts - sometimes it looks like its doing nothing , but it is actually working once started. Once finished it will tell you to reboot, THEN reboot, once again, touch nothing till the report comes up -- may take a few minutes. The reason it loads in the recovery console, is in case it all turns pear shaped, and you need to repair the system --- hence the warning. |
wainuitech (129) | ||
| 1166961 | 2011-01-09 10:00:00 | Cheers Wainui. Not sure if I should use that as what happens if the computer blue screens and restarts while that is running. I now know why I use Macs. |
Safari (3993) | ||
| 1166962 | 2011-01-09 10:48:00 | Alternatively, you could (now you've got it running sort of) is to save all data, and do a reinstall, from the recovery partition or discs, then you know it's clean.:2cents: (Though now you've come this far, you might as well finish the job :thumbs:). |
feersumendjinn (64) | ||
| 1166963 | 2011-01-09 11:46:00 | Alternatively, you could (now you've got it running sort of) is to save all data, and do a reinstall, from the recovery partition or discs, then you know it's clean.:2cents: (Though now you've come this far, you might as well finish the job :thumbs:). Yeah that is probably the best option except I am doing all this over the phone so really need to be hands on for that. Just had another thought, the hosts file may have been change by this crap so think I may have a look at that. |
Safari (3993) | ||
| 1166964 | 2011-01-09 11:49:00 | Probably easier if u get into the system with teamviewer. Get them to boot into safe mode / networking. And fix it. Use trojan remover if the OS is 32 bit and reset everything. Or get into it and post a HJT log. Or tell them to get teamviewer tell them to give you the ID and pw. And I'll check it out from here | Speedy Gonzales (78) | ||
| 1166965 | 2011-01-09 19:20:00 | Probably easier if u get into the system with teamviewer. Get them to boot into safe mode / networking. And fix it. Use trojan remover if the OS is 32 bit and reset everything. Or get into it and post a HJT log. Or tell them to get teamviewer tell them to give you the ID and pw. And I'll check it out from here Thanks for the offer Speedy I will see how it goes. She was having trouble downloading Trojan Remover for some reason, corrupted file although managed to run Super antispyware which found and removed a lot of infections. Will try downloading Trojan remover again When in Safe mode/networking unable to connect to the internet with the wireless for some reason which does not help. |
Safari (3993) | ||
| 1166966 | 2011-01-09 19:36:00 | Make sure she's getting trojan remover from the right site. www.simplysup.com | Speedy Gonzales (78) | ||
| 1166967 | 2011-01-09 19:40:00 | Make sure she's getting trojan remover from the right site. www.simplysup.com Yep that's where she was. Might try majorgeeks.com that should be ok, yes? |
Safari (3993) | ||
| 1166968 | 2011-01-09 19:49:00 | Try the direct link (www.simplysupersoft.com) | Speedy Gonzales (78) | ||
| 1 2 3 4 | |||||