Groups

    Annoying pop-ups and 'Antivirus 2009' attacks - advice/links

    Hi, having trouble whenever i connect to the internet (using XP) with Trojan.Vundo.H, Malware.Trace, and regular Trojan.Vundo, and popups relating to 'Antivirus 2009' software that is plainly dodgy. I have installed MalwareBytes Anti-Malware which seems to find them and delete, but i have the same trouble when i reboot, i also get occasionaly AVG pop-ups informing me of a trojan, I am also running Comodo firewell, attacks also turn off windows updates, and try to load possible harmful tmp files, I am wondering whether there is software or a security update i can use to fix the problem for good, thankyou

    16 Comments

    what anti virus are you running

    Try installing avast as your anti-virus and running a boot scan to remove virus', and spybot search and destroy, with spyware terminator to help with adware, also I prefer sunbelt personal firewall.

    you need to use a lot more than that, mbam is great software, but you need to go deeper. Look up majorgeeks for a complete list of the steps. This one is a nightmare i'm afraid

    Original Poster

    bazzaric;3991558

    you need to use a lot more than that, mbam is great software, but you … you need to use a lot more than that, mbam is great software, but you need to go deeper. Look up majorgeeks for a complete list of the steps. This one is a nightmare i'm afraid



    yes, true, just researching now, running avg as listed and spybot, found this, maybe it will help: dslreports.com/for…jan

    xxdelxxx

    I just removed this from a friends pc the other day,Avg removed the Trojan but on startup keps getting 3 DLL not found messages where AVG had deleted them but they were still trying to load at startup,So all i did was go to msconfig and remove them from the startup list ,

    Original Poster

    tonyg1962;3991714

    I just removed this from a friends pc the other day,Avg removed the … I just removed this from a friends pc the other day,Avg removed the Trojan but on startup keps getting 3 DLL not found messages where AVG had deleted them but they were still trying to load at startup,So all i did was go to msconfig and remove them from the startup list ,



    I had that trouble of dll's being delted and the fix AVG came up with pretty naff, seems to have not caused any harm tho, if I keep running malwarebytes and occqasionaly checking for rougue exe files then i'm normally on top of this problem, just a pain when it happens again, may look into registry too, as that should help

    Just had to sort out a mates pc this morning due to this!

    I had to reformat drive and reinstall her windows as i tried to get the removal tools for it etc but every time i tried the sites with the removal tools it wouldnt let me connect to.
    The pc was just going round in circles, couldnt get into a lot of files etc either.

    Thank god now its gone and she can use it swiftly.

    I had exactly the same Anti virus 2009 & pop ups,

    but I googled it and read the forums and then

    I downlaoded and used the following 3 things

    AVG antivirus

    Malwarebytes' Anti-Malware

    Zone-Alarm pro 14 day trial version

    All from download.com

    Had to run all a couple of times, but managed to get rid of the trojan and pop-up windows

    downside was that I had to uninstall my macfee security suite which I bought on 2 year licence and now I can't do a system restore to get it back , and I did not create back up disks when I bought the laptop.


    I was lucky that these 3 worked, but I am going to have to fork out some more money because my zone alarm trial runs out in a few days.

    Good luck mate

    Regardless of what anti-virus and firewall your using you can still get this PC killer from an infected webpage .It will automatically download itself ,if not stopped .There's lots of variations of this software too .
    I've had a few PC's in for repair with this trouble and it can be a nightmare . 2 programs you must have are SUPERAntiSpyware and MalwareBytes . Also download a better anti-virus program , something like Avast , even the trial version will do , after your PC is fixed you can always uni-stall it and revert back to something else . Run the programs I've mentioned . Good idea to get hold of CCleaner to , spyware , malware etc get onto your PC through Internet Explorer /Firefox etc and the files may still be in Temp Internet File . CCleaner , once run will delete all the temp files ,and traces of internet history etc .Also, turn off System Restore ,files are backed in here too including trojans etc . Turn it on again after you get your PC sorted ............if you need it .....I have mine turned off all the time .hth

    Yeah i also treid to download MalwareBytes and also spybot etc etc and it refused point blank to download anything, kept saying the connection was refused etc, i have since tried it since the reformat of the pc and no probs now, its a nasty one to get from looks of it!

    Original Poster

    ricko;3992527

    Regardless of what anti-virus and firewall your using you can still get … Regardless of what anti-virus and firewall your using you can still get this PC killer from an infected webpage .It will automatically download itself ,if not stopped .There's lots of variations of this software too .I've had a few PC's in for repair with this trouble and it can be a nightmare . 2 programs you must have are SUPERAntiSpyware and MalwareBytes . Also download a better anti-virus program , something like Avast , even the trial version will do , after your PC is fixed you can always uni-stall it and revert back to something else . Run the programs I've mentioned . Good idea to get hold of CCleaner to , spyware , malware etc get onto your PC through Internet Explorer /Firefox etc and the files may still be in Temp Internet File . CCleaner , once run will delete all the temp files ,and traces of internet history etc .Also, turn off System Restore ,files are backed in here too including trojans etc . Turn it on again after you get your PC sorted ............if you need it .....I have mine turned off all the time .hth



    some good advice, i have CCleaner so will do a clean with that too!

    I'm also going to buy a HDD from scan, install xp pro on it, add my most used programs then run from that soon, a clean install should be safer

    btw: the site imagevenue whilst looking legit seems to add some of these trojans w pop-ups, stay well away

    ricko;3992527

    Regardless of what anti-virus and firewall your using you can still get … Regardless of what anti-virus and firewall your using you can still get this PC killer from an infected webpage .It will automatically download itself ,if not stopped .There's lots of variations of this software too .I've had a few PC's in for repair with this trouble and it can be a nightmare . 2 programs you must have are SUPERAntiSpyware and MalwareBytes . Also download a better anti-virus program , something like Avast , even the trial version will do , after your PC is fixed you can always uni-stall it and revert back to something else . Run the programs I've mentioned . Good idea to get hold of CCleaner to , spyware , malware etc get onto your PC through Internet Explorer /Firefox etc and the files may still be in Temp Internet File . CCleaner , once run will delete all the temp files ,and traces of internet history etc .Also, turn off System Restore ,files are backed in here too including trojans etc . Turn it on again after you get your PC sorted ............if you need it .....I have mine turned off all the time .hth



    Agreed on the resolution but IMO its actually quicker to format and re-install XP and less messy on the Windows config. anywho good answer

    ricko;3992527

    Regardless of what anti-virus and firewall your using you can still get … Regardless of what anti-virus and firewall your using you can still get this PC killer from an infected webpage .It will automatically download itself ,if not stopped .There's lots of variations of this software too .I've had a few PC's in for repair with this trouble and it can be a nightmare . 2 programs you must have are SUPERAntiSpyware and MalwareBytes . Also download a better anti-virus program , something like Avast , even the trial version will do , after your PC is fixed you can always uni-stall it and revert back to something else . Run the programs I've mentioned . Good idea to get hold of CCleaner to , spyware , malware etc get onto your PC through Internet Explorer /Firefox etc and the files may still be in Temp Internet File . CCleaner , once run will delete all the temp files ,and traces of internet history etc .Also, turn off System Restore ,files are backed in here too including trojans etc . Turn it on again after you get your PC sorted ............if you need it .....I have mine turned off all the time .hth



    SuperAntiSpyware was the one I was forgetting. Great answer. Repped (gave you another Dot)

    XP Antivirus 2009 and Antivirus 2009 are complete nightmares to get rid of. We've seen quite a few cases, with a complete wipe being the solution a lot of the time. I was able to remove XP Antivirus 2008 using a combination of Malware Bytes, AdAware 2008, AVG and CCleaner to remove the debris (not essential, more to clean up the installations etc I had to do) but haven't had the priveledge (/sarcasm) of removing AV2009, although I would attempt to do the exact same as before and see what happens! But it depends on the degree of the infection, and if it's a mutator

    Although not preferred, it's quicker just to reinstall the OS - Helpful if you can back up your data beforehand of course

    *edit* Just reading the replies, I'll have to have a look at SuperAntiSpyware for future reference :P

    Another one to use is combofix. that and superantispyware with malwarebytes have helped me clean 2 laptops with these infections recently. Download them on another pc and save to memory stick, download any update files too. once they have run (in safe mode) get AVG installed, run and make sure all is clean, flush your system restore and you should be good to go.

    Formatting maybe the easiest option, but isn't always practical.
    Post a comment
    Avatar
    @
      Text
      Top Discussions
      1. Win a Slow Cooker with Kikkoman77
      2. Win £1000 @ Capital FM1919
      3. Win £50,000 with ITV7 (Closes 2:25pm Saturday 09/09)22
      4. Samsung Galaxy Note 8 International Giveaway!77

      See more discussions