Go Back   Team-BHP > Around the Corner > Shifting gears > Gadgets, Computers & Software


Reply
 
Thread Tools Search this Thread
Old 20th October 2008, 17:41   #1
RAC
BHPian
 
RAC's Avatar
 
Join Date: Mar 2006
Location: Bangalore
Posts: 185
Thanked: 6 Times
Default How to remove XP antispyware 2009

Hi
My home PC got infected with XP antispyware 2009.
Mcafee anti-virus was installed but patches not updated for a month or two. Somehow the virus has got through and infected and machine and now McAfee is disabled. I found out that somehow the Windows Firewall was turned off.

Any suggestions on how this can be removed. Do I need to but better anti-virus like Kaspersky, Norton, etc. (cheapest options please). The configuration of the machine is low end Intel Celeron 2Gz processor, 256 MB RAM, etc, so no heavy stuff please to slow down the machine further.

Ps: since I am technically challanged, let me know if I need to just call the local hardware service guy to take care of this.

Last edited by RAC : 20th October 2008 at 17:43.
RAC is offline   Reply With Quote
Old 20th October 2008, 17:44   #2
Senior - BHPian
 
kb100's Avatar
 
Join Date: Feb 2006
Location: Bangy Boy!
Posts: 1,554
Thanked: 14 Times
Default

Kaspersky is rated the best. You could give that a shot.

One yr subscription should not be more than INR 700/-

EDIT : Kaspersky also has a forum - where you can get help specific to your virus/issue

Google threw up a lot of solutions - beginning with this -- XP Antispyware 2009 Removal Instructions (Antispyware XP 2009) For Windows XP/Vista

and

How to remove XP Antispyware 2009 (Uninstall Instructions)

and

XP Antispyware 2009: how to remove safely : Product Reviews Net

and so on...

Last edited by kb100 : 20th October 2008 at 17:49.
kb100 is offline   Reply With Quote
Old 20th October 2008, 17:45   #3
BHPian
 
anantnehru's Avatar
 
Join Date: Jul 2007
Location: New Delhi
Posts: 446
Thanked: 14 Times
Default

Wow, I thought it was only me.
I have Norton as well but it doesnt seem to help.
So, advice/help would really be appreciated!
anantnehru is offline   Reply With Quote
Old 20th October 2008, 17:54   #4
RAC
BHPian
 
RAC's Avatar
 
Join Date: Mar 2006
Location: Bangalore
Posts: 185
Thanked: 6 Times
Default

Quote:
Originally Posted by kb100 View Post
Kaspersky is rated the best. You could give that a shot.

One yr subscription should not be more than INR 700/-

EDIT : Kaspersky also has a forum - where you can get help specific to your virus/issue

Google threw up a lot of solutions - beginning with this -- XP Antispyware 2009 Removal Instructions (Antispyware XP 2009) For Windows XP/Vista

and

How to remove XP Antispyware 2009 (Uninstall Instructions)

and

XP Antispyware 2009: how to remove safely : Product Reviews Net

and so on...

....sob...sob...all that is so way above my head. Isn;t there some application which can take care of this, when run.
If there are no easy/simple methods, I may as well call a hardware service fella.

Also, since McAfee failed and this virus has now disable MsAfee, do you feel that this virus will allow new Anti-Virus to be installed. I have my doubts.

Failed anti-virus softwares:
McAfee (mine)
Norton (anantnehru)

Last edited by RAC : 20th October 2008 at 17:58.
RAC is offline   Reply With Quote
Old 20th October 2008, 17:56   #5
Senior - BHPian
 
aaggoswami's Avatar
 
Join Date: May 2007
Location: Vadodara
Posts: 4,628
Thanked: 1,318 Times
Default

Install Avast and try boot time scan. But then if it detects infection, that file is gone and possibly your data also. Try AVG Free or Bitdefender.
aaggoswami is offline   Reply With Quote
Old 20th October 2008, 18:33   #6
Senior - BHPian
 
NetfreakBombay's Avatar
 
Join Date: Jan 2008
Location: Bombay
Posts: 1,375
Thanked: 315 Times
Default

Quote:
Originally Posted by RAC View Post
If there are no easy/simple methods, I may as well call a hardware service fella.
Thats the way to go. Have him reinstall OS and major Apps (while retaining data, ask him to take a backup as well).

Not only you will get rid of this spyware, your PC will run faster as well. That is because reinstall will clean of lots of junk from RAM.
NetfreakBombay is offline   Reply With Quote
Old 20th October 2008, 18:48   #7
SLK
Senior - BHPian
 
SLK's Avatar
 
Join Date: Feb 2004
Location: DL XX XX XXXX
Posts: 1,288
Thanked: 183 Times
Default

Quote:
Originally Posted by NetfreakBombay View Post
Thats the way to go. Have him reinstall OS and major Apps (while retaining data, ask him to take a backup as well).

Not only you will get rid of this spyware, your PC will run faster as well. That is because reinstall will clean of lots of junk from RAM.
Thats the wrong approach! almost all these worms can be cleaned without any antivirus.

If you know the file/process this spyware is running remove it using autoruns (search on the net) in the safe mode.

Most hardware guys are useless! format/reinstall is all they know.

Last edited by SLK : 20th October 2008 at 18:54.
SLK is offline   Reply With Quote
Old 20th October 2008, 18:54   #8
Senior - BHPian
 
aaggoswami's Avatar
 
Join Date: May 2007
Location: Vadodara
Posts: 4,628
Thanked: 1,318 Times
Default

Quote:
Originally Posted by SLK View Post

1) Thats the wrong approach! almost all these worms can be cleaned without any antivirus.

2) If you know the file/process this spyware is running remove it using autoruns (search on the net) in the safe mode.
1) If they are in less number, or else, reinstalling is the best optiion.

2) This is a bit tricky. Moreover, its not always that one has success. Here first of all there must be only a few processes that we want to address. Then mostly what happens is that they will reiterate irrespective of one being in safe mode or not.
aaggoswami is offline   Reply With Quote
Old 20th October 2008, 18:58   #9
Senior - BHPian
 
Rahulkool's Avatar
 
Join Date: Oct 2007
Location: Chennai
Posts: 1,250
Thanked: 484 Times
Default

It is very difficult to remove this virus, one of my friends lappy got infected by this virus ...... i tried a lot to remove it, searched on net and all but at last formatted it(well i don't do that often my system is running on winxp fpr past 3 years without format and vista on another system for 1 year...... i am sure there is a way to remove is but its not easy as downloading a antivirus and scanning ......
Rahulkool is offline   Reply With Quote
Old 20th October 2008, 19:04   #10
BHPian
 
audiophile's Avatar
 
Join Date: Aug 2006
Location: Bangalore
Posts: 153
Thanked: 22 Times
Default

I used Malwarebytes Anti Malware, did a scan and got rid of it. My laptop is workign fine now.
audiophile is offline   Reply With Quote
Old 20th October 2008, 19:09   #11
SLK
Senior - BHPian
 
SLK's Avatar
 
Join Date: Feb 2004
Location: DL XX XX XXXX
Posts: 1,288
Thanked: 183 Times
Default

Quote:
Originally Posted by aaggoswami View Post
1) If they are in less number, or else, reinstalling is the best optiion.

2) This is a bit tricky. Moreover, its not always that one has success. Here first of all there must be only a few processes that we want to address. Then mostly what happens is that they will reiterate irrespective of one being in safe mode or not.
They don't normally startup with more than 2 processes.

Tricky... yes

Success, well yes in 2 situations you'll not succeed
1) The spyware is using shell execute
2) Its loaded as an essential driver

Then, you need command prompt (recovery console)

Once done, you might have lost the ability to run exe files , but that can be repaired too.

But all this takes 10-15 mins, and new windows takes 1hr to install and 10 days to get back to the same customiz-ation level as before. And then all the windows updates?

All, I'm saying is, it is never irreparable.
SLK is offline   Reply With Quote
Old 20th October 2008, 19:12   #12
Senior - BHPian
 
NetfreakBombay's Avatar
 
Join Date: Jan 2008
Location: Bombay
Posts: 1,375
Thanked: 315 Times
Default

Quote:
Originally Posted by SLK View Post
Thats the wrong approach! almost all these worms can be cleaned without any antivirus.

If you know the file/process this spyware is running remove it using autoruns (search on the net) in the safe mode.

Most hardware guys are useless! format/reinstall is all they know.

Format/reinstall (along with data backup) is usually the best option. As mentioned in previous post, apart from this malware it will get clean up lots of softwares tha tare consuming memory with autostartup or drivers that are being loaded in memory but are not needed.

Its possible to remove individual viruses / spyware / warms but might not be worth the effort.
NetfreakBombay is offline   Reply With Quote
Old 20th October 2008, 19:29   #13
SLK
Senior - BHPian
 
SLK's Avatar
 
Join Date: Feb 2004
Location: DL XX XX XXXX
Posts: 1,288
Thanked: 183 Times
Default

My last windows Installation lasted 4 years [until hard disk crashed] and without any antivirus.

Format re-install is like saying that if your car's injectors are clogged, lets change the engine just b'coz the service centre doesn't know how to clean. After all, you'll get rid of all the carbon deposits inside the engine too.

Format/reinstall is the biggest effort. The unneeded autostartup softwares [and drivers] can be removed anyways, another 10mins!
SLK is offline   Reply With Quote
Old 20th October 2008, 19:42   #14
Senior - BHPian
 
Join Date: Dec 2007
Location: Dubai
Posts: 3,854
Thanked: 123 Times
Default

Ok, no need for formating or re-installing or anything.

RAC, download and run HijackThis (get it from the major geek site; google for it).

It will generate a log file. Send it to me.

I know this might be a bit too much, but believe me, most of the time, it might be a very simple issue.
HappyWheels is offline   Reply With Quote
Old 20th October 2008, 20:07   #15
BHPian
 
Join Date: Jan 2007
Location: Pune
Posts: 258
Thanked: 26 Times
Default

- Dont format.
- Try avira or avast.
- Start -> run -> type "msconfig" without quotes -> Startup tab. Post screenshots of the content. Perhaps we can help.
subscrive is offline   Reply With Quote
Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search


Similar Threads
Thread Thread Starter Forum Replies Last Post
RFC 2009 (1-18th Dec 2009) ex670c 4x4 Excursions 19 6th May 2011 11:03
How to remove unwanted paint? Boom Shiva Technical Stuff 17 7th January 2010 12:53
Photographs - Desmosedici RR, Ducati 1098, RC8s, 2009 R1, 2009 Fireblade cbr954rr Motor-Sports 1 25th October 2009 15:46
Govt. to remove income tax exemptions and deductions. Please comment against it..... satish_appasani Shifting gears 15 15th May 2007 21:13
Why didn't the marshals help, remove the Renault? Shan2nu Int'l Motorsport 14 17th September 2004 00:52


All times are GMT +5.5. The time now is 03:55.

Copyright 2000 - 2017, Team-BHP.com
Proudly powered by E2E Networks