Question:

Please help with malware issues!?!?

by | earlier

My brother went to one of "those" sites and I'm sure downloaded malware. It's one of the more vicious kind that randomly pops up telling me that I need malware/adware/spyware software. I've already downloaded a remover called Ad-aware and the pop ups are STILL happening after a full scan, deletion and restart. What else is there?! It's on Windows XP. Each time I click to get rid of it, it will just pop up 5 minutes later. There's also a yellow yield sign telling me it's an "Alert" but it's a lie as it pops up with a baloon again telling me to download software to remove an "infection." Please help! I can hardly type without an interruption!

Tags:

Report

Answer The Question I've Same Question Too

Follow Question

5 ANSWERS

Sort By: Date | Rating

It is very likely a Smitfraud infection. Fake and phony 'warnings' to try and con you into purchasing a rogue software to 'fix' the problem.

It should actually be called extortion-ware. First they infect your computer and then they want money to 'cure' it.

All of these are specialised removal tools for this type of fake, rogue advertising of useless malware removal softwares. (Zlob/Smitfraud infections.).

RogueRemover:

http://www.softpedia.com/get/Antivirus/R...

RogueFix:

http://www.internetinspiration.co.uk/rog...

SmitfraudFix:

http://siri.urz.free.fr/Fix/SmitfraudFix...

Almost all "general purpose","all-in one" spyware and virus removal programs such as AVG Anti-virus, Norton, McAfee or AdAware cannot remove it, as you have already found out.

To prevent re-infection:

This type of infection (Smitfraud) is often spread by tricking the user into downloading and installing something, often a "codec" or a "media player" at some site in order to make the site work. Usually a video site. Never allow a website to force a download on you to make something unless you 1000% know and trust the site. A great many of these downloads are trojans or other malware. Always know exactly what you are downloading! If you are not sure, DON'T!

Or it can be caused by a website exploiting vulnerabilities in Windows. Keeping Windows 100% patched and updated with all Windows updates will stop most of this infection avenue. To check, in IE click Tools > Windows Updates.
Report (0) (0) | earlier
I'm sorry to tell you this, but this particular malware infection is extremely difficult to clean if you're not an expert. If you're willing to spend another night at it, I recommend a 1-2-3-4-5 punch.

Do a web search, then download all of these to your computer, then update, then run them one at a time, but run all of them before rebooting the computer.

Once you reboot, run 1, 2, 3, and 4 again and see if they come back clean. If not, try rebooting in safe mode and running them again.

1. SDfix

2. malwarebytes Anti-malware

3. Spybot Search and Destroy 1.6

4. Up-to date antivirus

5. Combofix

Good luck--and if it doesn't work, you may have to bring it in to a shop. This particular malware infection is pretty widespread, so the shops all know about it.
Report (0) (0) | earlier
1. Download AVG Anti-Virus Free

2. Download Spy-Bot Search and Destroy

Run scans and updates and removals.

That should get rid of most of it.

If it does not try Spyware Terminator, that will get rid of it.

When you are finished getting rid of it uninstall Spyware Terminator and leave Spy-Bot installed on the computer. That will prevent you from ever getting it again.
Report (0) (0) | earlier
Do you have a restore point on your computer? Go to your control panel and see if you have anything under. backup or restore! If you have a previous date before he downloaded it restore to that date and the mal-ware will be gone if it isn't to late.
Report (0) (0) | earlier
http://www.malwarebytes.org/

This site can help you get rid of it for free. I had Antivirus 2008 on my computer, & it didn't even let me get on the computer, but when I used the Malware Bytes, it went away.
Report (0) (0) | earlier