This application was downloaded on my laptop over the weekend. I have no clue how it go there, but I know it's bogus. I have McAfee and it never picked it up. I have tried to delete it, but I can't. What program do I need to get rid of this malware, or whatever it's called. This morning I tried to download the free Malwarebytes screener, but it wouldn't let me. Any clue what I need to do to get rid of this ... I'm afraid to do anything on my pc now...as it said that it might hijack some passwords. Thanks in advance for the help!
It's getting more common that when "badware" finds it's way onto your computer, it blocks Malwarebytes from being downloaded or installed. I've had good luck in those situations with HitMan Pro. You can get it here: http://www.surfright.nl/en Note: It will download and then you install it and let it run. If it finds problems, you can allow it to fix them. At that point it will ask if you want to "register" (that is, pay for it). Look for another option on that screen...it will allow you to use a temporary (30 day) activation and will then proceed. Good program...has found and cleaned malware infections that others have not been able to touch. Good luck!
Thanks so much... I did download the program and when I try to run it, it states: HitmanPro35_X64.EXE is not a valid win32 application. I don't know what to do next. Is this malware blocking me from opening this?
I did download that version for 64 bit, it wouldn't let me open it. Do I have to rename the installer to iexplore.exe or winlogin.exe? I did try and run the program as administrator. I got desperate and ran a restore to the day before this malware got on my pc. That file is not in my temp folder any longer. After I did that I ran a disk clean up, updated my windows and McAfee. Is this malware still hiding out on my pc? Should I try and load the Hitman Pro 3.5 again?
Try and download malwarebytes again. When you are downloading malwarebytes and are prompted to "save as" rename the file to explorer.exe, and save it to your desktop. Run the update and then a full scan. Fix any problems found. Reboot if necessary. Next goto http://www.eset.com/online-scanner and run their scanner. This scanner will remove malware that it finds (some online scanners will only tell you that you are infected and not remove the malware).
Thanks Trev and App for your help today. I do have a question about running these programs. Is Malwarebytes and Hit Man Pro the same type of program to find the malware? Is the Eset online scanner the same as these, or different? I am trying to figure out why my McAfee didn't pick this thing up. As of now, I am running another McAfee full scan and it's found 3 files infected by a viruses...doesn't McAfee pick up on Malware? Sorry for all the questions, I'm just curious. Thank you thank you for all your help today!
HidesinOBX, Most Antivirus products do a pretty lousy job of finding non-virus malware. It is best to use multiple products to clean these infections because none of them find everything. I haven't used the Hitman program before but it seems to be similar to Malwarebytes. The Eset scanner is an Antivirus scanner. Eset is one of the best AV products (much better than McAfee) and I asked you to run that to be sure that you are clean.
There's a nasty rootkit I've dealt with 4 times in the past 2 weeks. It blocked downloads from malware remover sites. The exact problem you had at malwarebytes. It took a process killer to stop it and then load Norman Malware D/L'd from a another PC on a J/D or CD. I forget which killer I used? The rootkit is a spyware selling its own spyware remover. I doubled up with Kaspersky's free version.
I got Malwarebytes downloaded tonight, no problem. I have it running the full scan, so far so good! Thanks for all the quick responses and helpful advice!
ComboFix is a great tool, but you can really hose a system if you don't know what you are doing. I am not saying that you, FoxChassis, don't know what you are doing, but the casual user should be careful.
What I hate the most: Booting a PC that the owner has downloaded every freeware know to man, trying to fix the infection themselves. If I see combofix or any registry cleaners on the desktop I go directly to, "We need to reload your Operating System!" Finding bad registry changes is a royal pain.:banghead:
