Sign In
Register
Help
Cannot remove "Antivirus System Pro". Updating and running Norton and Malwarebytes Anti-Malware does not help.
Ideas please.
Thanks
Page 1 of 1
Virus - "Antivirus System Pro"
MultiQuote
#2
techie4fun 
- Expert
-
- Group: Members
- Posts: 2,838
- Joined: 18-October 06
Posted 08 May 2009 - 11:18 AM
Have you tried scanning in Safe Mode? It is possible that you're going to need more than your current scanners to defeat this, but please specifiy if you've tried running Safe Mode, and if you want instructions on how to do so.
#3
coastie65
- Moderator
-
- Group: Moderators
- Posts: 10,334
- Joined: 02-April 07
- Location:Richmond Va.
Posted 08 May 2009 - 11:44 AM
Hi, I am familiar with that thing. I ran across it the other day on a site that had been Hijacked. It wouldn't let me navigate out of the site without downloading, which i didn't. had to do a shut down through the device manager. Anyway, download, upadate, and run the following: www.malwarebytes.org & www.SUPERantispyware.com . coastie
#9
coastie65
- Moderator
-
- Group: Moderators
- Posts: 10,334
- Joined: 02-April 07
- Location:Richmond Va.
Posted 08 May 2009 - 03:10 PM
Hi, It's best not use safe mode when running scans. The one possible exception is if it is a memory resident type thing. You might want to run a scan with malwarebytes as well. coastie
#11
coastie65
- Moderator
-
- Group: Moderators
- Posts: 10,334
- Joined: 02-April 07
- Location:Richmond Va.
Posted 08 May 2009 - 04:13 PM
With that thing, the only way to do it is through the Task Manager and doing a restart. It would not let you navigate from the site without first downloading it. I guess a hard shutdown will work in a pinch.
#12
techie4fun
- Expert
-
- Group: Members
- Posts: 2,838
- Joined: 18-October 06
Posted 08 May 2009 - 04:17 PM
Glad to hear that everything is sorted out.
#13
smax013
- Moderator
-
- Group: Moderators
- Posts: 9,083
- Joined: 28-January 07
- Location:Southeast Michigan
Posted 08 May 2009 - 10:27 PM
coastie65 said:
Hi, It's best not use safe mode when running scans. The one possible exception is if it is a memory resident type thing. You might want to run a scan with malwarebytes as well. coastie
I will agree and disagree. In general, you should not need to run scans in Safe Mode...until you find something. Once you find something in a scan, it is generally a good idea to boot up in Safe Mode and scan again after you run the initial scan and have tried to remove stuff in "regular mode".
#14
Flashorn
- Expert
-
- Group: Members
- Posts: 2,848
- Joined: 19-May 07
- Location:Canada
Posted 09 May 2009 - 03:39 AM
Hey Everyone !!
It is always easier to remove such Rogues with the right tools.
It is also easier to remove them in Normal mode for the simple
reason that the scanners that we use rely on the active processes.
In this case, when a Trojan Vundo is found , VundoFix should
have been used to remove all of the infected processes , files and
registry keys.
If a .TDSS extension is found, then you would need the help of specialized tools
such as ComboFix or SDFix .
A few words of caution!! These are Not toys and should be used with the help
of a trained malware removal expert. Both of these tools are NOT to be used with Vista.
They will leave you without a Operating System.
FLASHORN. !http://forums.pcworld.com/legacyimages/
1!
It is always easier to remove such Rogues with the right tools.
It is also easier to remove them in Normal mode for the simple
reason that the scanners that we use rely on the active processes.
In this case, when a Trojan Vundo is found , VundoFix should
have been used to remove all of the infected processes , files and
registry keys.
If a .TDSS extension is found, then you would need the help of specialized tools
such as ComboFix or SDFix .
A few words of caution!! These are Not toys and should be used with the help
of a trained malware removal expert. Both of these tools are NOT to be used with Vista.
They will leave you without a Operating System.
FLASHORN. !http://forums.pcworld.com/legacyimages/
1!
Page 1 of 1
