|
 |  |  |  |  |  |  |
| Welcome to Windows Vista Forums. Our forum is dedicated to helping you find solutions with any problems, errors or issues you are experiencing with Windows Vista. The Vista forum also covers news and updates and has an extensive Windows Vista tutorial section that covers a wide range of tips and tricks. |
| |||||||
 |
| |
05-01-2009
| #1 (permalink) |
| | I love Spyware and Adware! Running Windows XP my cousin ended up with an infestation of spyware and adware after AVG ran out and it stopped updating. I installed AVG 8.5 ran a scan, it disinfected winlogon.exe and then blue screened. After a reboot and another scan winlogon.exe was no longer infected but other files were. It seems to have disinfected them. The only thing left is a popup that comes up everytime IE is started. I can't figure out what is causing it. I ran ad aware - it disposed of a few things but he still gets that popup when IE starts. What now? |
My System Specs |
|
05-01-2009
| #2 (permalink) |
| | Re: I love Spyware and Adware! Justin wrote: Quote: > Running Windows XP my cousin ended up with an infestation of spyware and > adware after AVG ran out and it stopped updating. > I installed AVG 8.5 ran a scan, it disinfected winlogon.exe and then > blue screened. > After a reboot and another scan winlogon.exe was no longer infected but > other files were. It seems to have disinfected them. > The only thing left is a popup that comes up everytime IE is started. I > can't figure out what is causing it. I ran ad aware - it disposed of a > few things but he still gets that popup when IE starts. > > What now? cousin's data and do a clean install of Windows. It is your choice. If you are unsure how to back up the data or how to do a clean install, you can take your machine to a local computer professional. I don't recommend using BigComputerStore/GeekSquad types of places. PLEASE DO NOT POST LOGS IN THE MS NEWSGROUPS. http://aumha.net/viewtopic.php?t=4075 - Posting FAQ http://aumha.net/viewforum.php?f=30 http://www.bleepingcomputer.com/forums/forum22.html http://www.dslreports.com/forum/cleanup http://www.cybertechhelp.com/forums/...splay.php?f=25 http://www.geekstogo.com/forum/Malwa..._Here-f37.html http://www.malwarebytes.org/forums/i...hp?showforum=7 http://gladiator-antivirus.com/forum...?showforum=170 http://spywarewarrior.com/viewforum.php?f=5 http://forums.techguy.org/54-security/ http://forums.tomcoyote.org/ http://www.thespykiller.co.uk/index.php?board=3.0 http://forums.subratam.org/index.php?showforum=7 Malke -- MS-MVP Elephant Boy Computers - Don't Panic! http://www.elephantboycomputers.com/#FAQ |
| My System Specs |
|
05-01-2009
| #3 (permalink) |
| Vista Ultimate X64 SP2 | Re: I love Spyware and Adware!  Quote: Originally Posted by Justin  Running Windows XP my cousin ended up with an infestation of spyware and adware after AVG ran out and it stopped updating. I installed AVG 8.5 ran a scan, it disinfected winlogon.exe and then blue screened. After a reboot and another scan winlogon.exe was no longer infected but other files were. It seems to have disinfected them. The only thing left is a popup that comes up everytime IE is started. I can't figure out what is causing it. I ran ad aware - it disposed of a few things but he still gets that popup when IE starts. What now? AVG and Ad-Aware are not very good, and you are probably dealing with Polymorphic malware. Example, AVG is recent AV-Comparative testing [feb 2009] only received 1 star certification out of 3 stars. (It is seriously lacking in On Demand/hueristic capabilities) This is what I suggest you do: 1. download/run a certified 3 star antivirus/antispyware app like NOD32 4, Kaspersky, Symantec, or Mcafee with Artemis. Avira is free, as is Avast!. Both only received 2 star certification in regards to On-demand scannning, but they are both better than AVG. 2. download and run Malwarebytes. Real time protection is disabled in the trial version, so update and use the On-Demand scanner. This App is specifically geared towards Polymorphic trojans, and is not designed to be used as a standalone. You can also download and run a System Inspector self Diagnostic. Green is ideal, while anything In red is a problem. If it was me I would do this: Install the 30 day Eset NOD32 4 Antivirus/Antimalware (this is the only program to recieve both a 3 star certification in Hueristic and on demand scanning from AV-Comparatives) [Nov 08/Feb 09], and consistant VB100 awards from Virus Bulletin. then, I would Install and run Malwarebytes, and run a full Scan with Defender-but I run x64 Ultimate-you would have to download this app. note- you can remove NOD32 after your system is cleaned. This app has self defense to prevent Malware Corruption. I would install/update/restart to check for rootkits, Memory resident, etc. Chances are though, you have User/data file and Windows corruption that only a re-install will fix. Antivirus Comparative testing: Vista SP1 Antivirus Performance Antimalware/Antivirus scanners: Antivirus Scanners & Internet Security Tools Understanding the difference between lab certification and editors awards/picks for Antivirus: The Best antivirus/Antimalware Program currently Available Last edited by rive0108; 05-01-2009 at 07:40 PM.. |
| My System Specs |
|
05-02-2009
| #4 (permalink) |
| | Re: I love Spyware and Adware! "rive0108" <guest@xxxxxx-email.com> wrote in message news:2fd31ee950f66e893a9c2634c4785059@xxxxxx-gateway.com... Quote: > > Justin;1033242 Wrote: Quote: >> Running Windows XP my cousin ended up with an infestation of spyware and >> adware after AVG ran out and it stopped updating. >> I installed AVG 8.5 ran a scan, it disinfected winlogon.exe and then >> blue screened. >> After a reboot and another scan winlogon.exe was no longer infected but >> other files were. It seems to have disinfected them. >> The only thing left is a popup that comes up everytime IE is started. I >> can't figure out what is causing it. I ran ad aware - it disposed of a >> few things but he still gets that popup when IE starts. >> >> What now? > First of all, AVG and Ad-Aware are not very good, and you are probably > dealing with Polymorphic malware. > > Example, AVG is recent AV-Comparative testing [feb 2009] only received > 1 star certification out of 3 stars. > > This is what I suggest you do: > > 1. download/run a certified 3 star antivirus/antispyware app like NOD32 > 4, Kaspersky, Symantec, or Mcafee with Artemis. > Avira is free, as is Avast!. Both only received 2 star certification in > regards to On-demand scannning, but they are both better than AVG. > > 2. download and run Malwarebytes. Real time protection is disabled in > the trial version, so update and use the On-Demand scanner. This App is > specifically geared towards Polymorphic trojans, and is not designed to > be used as a standalone. > > You can also download and run a System Inspector self Diagnostic. Green > is ideal, while anything In red is a problem. > > If it was me I would do this: > Install the 30 day *Eset* *NOD32 4 Antivirus/Antimalware* (this is the > only program to recieve both a 3 star certification in Hueristic and on > demand scanning from AV-Comparatives) [Nov 08/Feb 09] > then, I would Install and run Malwarebytes, and run a full Scan with > Defender-but I run x64 Ultimate-you would have to download this app. > note- you can remove NOD32 after your system is cleaned. This app has > self defense to prevent Malware Corruption. > > > Chances are though, you have User/data file and Windows corruption that > only a re-install will fix. > > Antivirus Comparative testing: > Vista SP1 Antivirus Performance > > Antimalware/Antivirus scanners: > Antivirus Scanners & Internet Security Tools > > > -- > rive0108 A pity that the Vista64 forum has an add for Uniblue Registry Booster.. I understand that Uniblue pay well for displaying it.. -- Mike Hall - MVP Windows Experience http://msmvps.com/blogs/mikehall/ |
| My System Specs |
|
05-02-2009
| #5 (permalink) |
| Vista Ultimate X64 SP2 | Re: I love Spyware and Adware! Quote: Originally Posted by Mike Hall - MVP A pity that the Vista64 forum has an add for Uniblue Registry Booster.. I understand that Uniblue pay well for displaying it.. -- Mike Hall - MVP Windows Experience Mike's Window Quote: Originally Posted by Justin Running Windows XP my cousin ended up with an infestation of spyware and adware after AVG ran out and it stopped updating. I installed AVG 8.5 ran a scan, it disinfected winlogon.exe and then blue screened. After a reboot and another scan winlogon.exe was no longer infected but other files were. It seems to have disinfected them. The only thing left is a popup that comes up everytime IE is started. I can't figure out what is causing it. I ran ad aware - it disposed of a few things but he still gets that popup when IE starts. What now? Only Visitors see Google adsense at the top of the vistax64 page. I see none, but anyhow, Registry "cleaners"/"boosters"/"performance increasers" are just gimmicks, and often do more harm than good. I do not recommend any type of reg cleaner/booster If you know how to use a reg cleaner (i.e., CCleaner)/editor, they are ok, but most dont, and reg cleaners are notorious for corruption of Windows as they often cannot distinguish between legitimate and unwanted entries. rule of thumb- If you dont know the purpose of the entry a cleaner wants to "clean" do not let it "clean" it. If you dont know the difference between a .dll and a svchost executable -YOU SHOULD NOT BE USING A REG CLEANER/PERFORMANCE BOOSTER! Otherwise you will find yourself re-installing Windows and/or programs. Now, how about we get back on topic Mike. Is that ok with you? I know i am posting to a Mirror on Vistax64.com, but how about trying to follow it? I suggest we stick with legitimate Certified Lab tested antimalware programs for removing polymorphic malware, and viruses, and spyware. ps- I just love the "sponsored links" that the sites you listed above post on the threads-junk that is absolutely useless for malware removal (In some cases malware/fake cleaners themselves). I suggest we not focus on or "recommend" inferior antimalware products, or AdSense links on forum sites (i.e., techguy.org/bleepingcomputer/dlsreports/geekstogo/the spywarekiller). Last edited by rive0108; 05-02-2009 at 03:31 PM.. |
| My System Specs |
|
05-02-2009
| #6 (permalink) |
| | Re: I love Spyware and Adware! "rive0108" <guest@xxxxxx-email.com> wrote in message news:3dca0419c841443f792380ac40f011b6@xxxxxx-gateway.com... Quote: > > Mike Hall - MVP;1033707 Wrote: Quote: >> "rive0108" <guest@xxxxxx-email.com> wrote in message >> news:2fd31ee950f66e893a9c2634c4785059@xxxxxx-gateway.com...> > > Quote: >> > > >> > > Justin;1033242 Wrote:> > > > > >> > > >> Running Windows XP my cousin ended up with an infestation of >> > > >> spyware >> > > and >> > > >> adware after AVG ran out and it stopped updating. >> > > >> I installed AVG 8.5 ran a scan, it disinfected winlogon.exe and >> > > >> then >> > > >> blue screened. >> > > >> After a reboot and another scan winlogon.exe was no longer >> > > >> infected >> > > but >> > > >> other files were. It seems to have disinfected them. >> > > >> The only thing left is a popup that comes up everytime IE is >> > > started. I >> > > >> can't figure out what is causing it. I ran ad aware - it disposed >> > > >> of >> > > a >> > > >> few things but he still gets that popup when IE starts. >> > > >> >> > > >> What now?> > > > >> > > >> > > First of all, AVG and Ad-Aware are not very good, and you are >> > probably >> > > dealing with Polymorphic malware. >> > > >> > > Example, AVG is recent AV-Comparative testing [feb 2009] only >> > received >> > > 1 star certification out of 3 stars. >> > > >> > > This is what I suggest you do: >> > > >> > > 1. download/run a certified 3 star antivirus/antispyware app like >> > NOD32 >> > > 4, Kaspersky, Symantec, or Mcafee with Artemis. >> > > Avira is free, as is Avast!. Both only received 2 star >> > certification in >> > > regards to On-demand scannning, but they are both better than >> > AVG. >> > > >> > > 2. download and run Malwarebytes. Real time protection is >> > disabled in >> > > the trial version, so update and use the On-Demand scanner. This >> > App is >> > > specifically geared towards Polymorphic trojans, and is not >> > designed to >> > > be used as a standalone. >> > > >> > > You can also download and run a System Inspector self Diagnostic. >> > Green >> > > is ideal, while anything In red is a problem. >> > > >> > > If it was me I would do this: >> > > Install the 30 day *Eset* *NOD32 4 Antivirus/Antimalware* (this >> > is the >> > > only program to recieve both a 3 star certification in Hueristic >> > and on >> > > demand scanning from AV-Comparatives) [Nov 08/Feb 09] >> > > then, I would Install and run Malwarebytes, and run a full Scan >> > with >> > > Defender-but I run x64 Ultimate-you would have to download this >> > app. >> > > note- you can remove NOD32 after your system is cleaned. This app >> > has >> > > self defense to prevent Malware Corruption. >> > > >> > > >> > > Chances are though, you have User/data file and Windows >> > corruption that >> > > only a re-install will fix. >> > > >> > > Antivirus Comparative testing: >> > > >> > Vista SP1 Antivirus Performance >> > > >> > > Antimalware/Antivirus scanners: >> > > >> > Antivirus Scanners & Internet Security Tools >> > > >> > > >> > > -- >> > > rive0108 > > >> >> A pity that the Vista64 forum has an add for Uniblue Registry >> Booster.. I >> understand that Uniblue pay well for displaying it.. >> >> >> -- >> >> Mike Hall - MVP Windows Experience >> 'Mike's Window' (http://msmvps.com/blogs/mikehall/) > Where is that? Only Visitors see Google adsense at the top of the page. > I see none, but anyhow, Registry "cleaners"/"boosters"/"performance > increasers" are just gimmicks, and often do more harm than good. I do > not recommend any type of reg cleaner/booster. > If you know how to use a reg cleaner/editor, they are ok, but most > dont, and reg cleaners are notorious for corruption of Windows as they > often cannot distinguish between legitimate and unwanted entries. > > rule of thumb- > If you dont know the purpose of the entry a cleaner wants to "clean" do > not let it "clean" it. > If you dont know the difference between a .dll and a svchost executable > -YOU SHOULD NOT BE USING A REG CLEANER/PERFORMANCE BOOSTER! Otherwise > you will find yourself re-installing Windows. > > > -- > rive0108 > > '::_-Win_$500_With_Vista_Forums-_::' > (http://www.vistax64.com/competitions..._more_info-_:: It isn't a Google Adsense ad. It is HTML code supplied by Uniblue. Go in as a visitor and you will see it.. -- Mike Hall - MVP Windows Experience http://msmvps.com/blogs/mikehall/ |
| My System Specs |
|
05-02-2009
| #7 (permalink) |
| Vista Ultimate X64 SP2 | Re: I love Spyware and Adware! Quote: Originally Posted by Mike Hall - MVP It isn't a Google Adsense ad. It is HTML code supplied by Uniblue. Go in as a visitor and you will see it.. Mike Hall - MVP Windows Experience Mike's Window Last edited by rive0108; 05-02-2009 at 02:38 PM.. |
| My System Specs |
|
05-02-2009
| #8 (permalink) |
| Vista Ultimate X64 SP2 | Re: I love Spyware and Adware! Quote: Originally Posted by Mike Hall - MVP It isn't a Google Adsense ad. It is HTML code supplied by Uniblue. Go in as a visitor and you will see it.. Mike Hall - MVP Windows Experience Mike's Window Oh, and by the way, The "ad" is google AdSense. Hover cursor over the link, and check the URL- www.googleads.g.doubleclick.net/ Last edited by rive0108; 05-02-2009 at 03:57 PM.. |
| My System Specs |
|
05-03-2009
| #9 (permalink) |
| | Re: I love Spyware and Adware! Justin Take a look at the following. Reference it for next time http://www.blakjak.demon.co.uk/mul_crss.htm -- Peter Please Reply to Newsgroup for the benefit of others Requests for assistance by email can not and will not be acknowledged. "Justin" <Justin@xxxxxx> wrote in message news:O200cmqyJHA.1712@xxxxxx Quote: > Running Windows XP my cousin ended up with an infestation of spyware and adware > after AVG ran out and it stopped updating. > I installed AVG 8.5 ran a scan, it disinfected winlogon.exe and then blue > screened. > After a reboot and another scan winlogon.exe was no longer infected but other > files were. It seems to have disinfected them. > The only thing left is a popup that comes up everytime IE is started. I can't > figure out what is causing it. I ran ad aware - it disposed of a few things but > he still gets that popup when IE starts. > > What now? |
| My System Specs |
|
| Thread Tools | |
| |
Similar Threads | ||||
| Thread | Forum | |||
| Adware Pro | Vista security | |||
| adware | Vista hardware & devices | |||
| adware | Vista security | |||
| What is Spyware and Adware? | Vista mail | |||
| HELP!!! Allowed Adware/Spyware Programme | Vista General | |||
