Virus nasty

oldbaldy

LE
Moderator
#1
Granddaughter has picked up a nasty on her laptop, Yes I've waterboarded her to find out where!!
I've tried to download malwarebytes but for some reason when I click run, I get an error message. I've tried to download other things as a test & the same happens. I think the nasty might be something called Isearch.
Any ideas?
 
#2
It's a BHO. See if you can run msconfig from the "run" command and disable it on startup. Then find the .exe file and delete it. There are other ways round it though.
 

oldbaldy

LE
Moderator
#3
Cheers I'll give it a go. :)
 

oldbaldy

LE
Moderator
#8
Installed malwarebytes as administrator and ran. As I thought it would that got rid of it.
 
#9
Have been having a problem with a programme called "internet Security 2010". It gave all the appearance of a MS programme and used the chequered shield and XP at the front. It initially looked like an update but required you to buy a licence.

It stopped malwarebytes and panda working as well as the internet.

I had to uninstall then reinstall Malwarebytes to get rid of it.
 
#10
offog said:
Have been having a problem with a programme called "internet Security 2010". It gave all the appearance of a MS programme and used the chequered shield and XP at the front. It initially looked like an update but required you to buy a licence.

It stopped malwarebytes and panda working as well as the internet.

I had to uninstall then reinstall Malwarebytes to get rid of it.

Yep I have had that as well, a real pain in the butt.
 
#11
offog said:
Have been having a problem with a programme called "internet Security 2010". It gave all the appearance of a MS programme and used the chequered shield and XP at the front. It initially looked like an update but required you to buy a licence.

It stopped malwarebytes and panda working as well as the internet.

I had to uninstall then reinstall Malwarebytes to get rid of it.
Which antivirus do you have?

msr
 
#13
panda, but it did not spot it and kept saying all is well.
 
#15
osta said:
offog said:
Have been having a problem with a programme called "internet Security 2010". It gave all the appearance of a MS programme and used the chequered shield and XP at the front. It initially looked like an update but required you to buy a licence.

It stopped malwarebytes and panda working as well as the internet.

I had to uninstall then reinstall Malwarebytes to get rid of it.

Yep I have had that as well, a real pain in the butt.
I just had that - or at least "Vista Internet Security 2010". Very virulent. I caught it whilst looking at the Moscow Times website. I have AdAware, Systemsuite 9 & Vista Firewall, and it got straight through.

If you search the web, there are pages of instructions on how to clean it, usally with Malwarebytes or similar as the second stage. Its tricky, because the trojan deactivates any anti-virus programme as soon as you try and start them and it also re-starts/re-infects almost instantly you kill a bit of it.

Strangely, the advice pages give a compex first stage of deleting registry entries, etc, before cleaning with an anti-spyware program. I seem to have found a simpler method: if you open Task manager, you can see the main part of the virus running as "av.exe". Killing this process allows the anti-spyware programme(s) to boot and start doing their cleaning. "Av.exe" restarts itself, but if you mallet it every time it appears, it can't prevent the anti-spyware from running and eventually slotting it. My PC did require a System Restore to the previous day's save point in order to completely erase the trojan, but all seems well now.
 
#17
osta said:
offog said:
Have been having a problem with a programme called "internet Security 2010". It gave all the appearance of a MS programme and used the chequered shield and XP at the front. It initially looked like an update but required you to buy a licence.

It stopped malwarebytes and panda working as well as the internet.

I had to uninstall then reinstall Malwarebytes to get rid of it.

Yep I have had that as well, a real pain in the butt.

this seems to be a realy common one at the moment i had it as well
 
#19
Thanks, have now installed it.

I think I got the original attack form a war game site.
 
#20
4(T) said:
osta said:
offog said:
Have been having a problem with a programme called "internet Security 2010". It gave all the appearance of a MS programme and used the chequered shield and XP at the front. It initially looked like an update but required you to buy a licence.

It stopped malwarebytes and panda working as well as the internet.

I had to uninstall then reinstall Malwarebytes to get rid of it.

Yep I have had that as well, a real pain in the butt.
I just had that - or at least "Vista Internet Security 2010". Very virulent. I caught it whilst looking at the Moscow Times website. I have AdAware, Systemsuite 9 & Vista Firewall, and it got straight through.
Adaware is pants, likewise systemsuite and the firewall won't stop it anyway.

Try reading some of the advice given here ;)

msr
 
Thread starter Similar threads Forum Replies Date
fltpilot Gaming and Software 12
blessed baby cakes The Other Half 6
msr Army Reserve 0

Similar threads

Latest Threads

Top