[RAC]

Hi
My home PC got infected with XP antispyware 2009.
Mcafee anti-virus was installed but patches not updated for a month or two. Somehow the virus has got through and infected and machine and now McAfee is disabled. I found out that somehow the Windows Firewall was turned off.

Any suggestions on how this can be removed. Do I need to but better anti-virus like Kaspersky, Norton, etc. (cheapest options please). The configuration of the machine is low end Intel Celeron 2Gz processor, 256 MB RAM, etc, so no heavy stuff please to slow down the machine further.

Ps: since I am technically challanged, let me know if I need to just call the local hardware service guy to take care of this.

[kb100]

Kaspersky is rated the best. You could give that a shot.

One yr subscription should not be more than INR 700/-

EDIT : Kaspersky also has a forum - where you can get help specific to your virus/issue

Google threw up a lot of solutions - beginning with this -- XP Antispyware 2009 Removal Instructions (Antispyware XP 2009) For Windows XP/Vista

and

How to remove XP Antispyware 2009 (Uninstall Instructions)

and

XP Antispyware 2009: how to remove safely : Product Reviews Net

and so on...

[anantnehru]

Wow, I thought it was only me.
I have Norton as well but it doesnt seem to help.
So, advice/help would really be appreciated!

[RAC]

Quote:

Originally Posted by kb100

Kaspersky is rated the best. You could give that a shot.

One yr subscription should not be more than INR 700/-

EDIT : Kaspersky also has a forum - where you can get help specific to your virus/issue

Google threw up a lot of solutions - beginning with this -- XP Antispyware 2009 Removal Instructions (Antispyware XP 2009) For Windows XP/Vista

and

How to remove XP Antispyware 2009 (Uninstall Instructions)

and

XP Antispyware 2009: how to remove safely : Product Reviews Net

and so on...

....sob...sob...all that is so way above my head. Isn;t there some application which can take care of this, when run.
If there are no easy/simple methods, I may as well call a hardware service fella.

Also, since McAfee failed and this virus has now disable MsAfee, do you feel that this virus will allow new Anti-Virus to be installed. I have my doubts.

Failed anti-virus softwares:
McAfee (mine)
Norton (anantnehru)

[aaggoswami]

Install Avast and try boot time scan. But then if it detects infection, that file is gone and possibly your data also. Try AVG Free or Bitdefender.

[NetfreakBombay]

Quote:

Originally Posted by RAC

If there are no easy/simple methods, I may as well call a hardware service fella.

Thats the way to go. Have him reinstall OS and major Apps (while retaining data, ask him to take a backup as well).

Not only you will get rid of this spyware, your PC will run faster as well. That is because reinstall will clean of lots of junk from RAM.

[SLK]

Quote:

Originally Posted by NetfreakBombay

Thats the way to go. Have him reinstall OS and major Apps (while retaining data, ask him to take a backup as well).

Not only you will get rid of this spyware, your PC will run faster as well. That is because reinstall will clean of lots of junk from RAM.

Thats the wrong approach! almost all these worms can be cleaned without any antivirus.

If you know the file/process this spyware is running remove it using autoruns (search on the net) in the safe mode.

Most hardware guys are useless! format/reinstall is all they know.

[aaggoswami]

Quote:

Originally Posted by SLK

1) Thats the wrong approach! almost all these worms can be cleaned without any antivirus.

2) If you know the file/process this spyware is running remove it using autoruns (search on the net) in the safe mode.

1) If they are in less number, or else, reinstalling is the best optiion.

2) This is a bit tricky. Moreover, its not always that one has success. Here first of all there must be only a few processes that we want to address. Then mostly what happens is that they will reiterate irrespective of one being in safe mode or not.

[Rahulkool]

It is very difficult to remove this virus, one of my friends lappy got infected by this virus ...... i tried a lot to remove it, searched on net and all but at last formatted it(well i don't do that often my system is running on winxp fpr past 3 years without format and vista on another system for 1 year...... i am sure there is a way to remove is but its not easy as downloading a antivirus and scanning ......

[audiophile]

I used Malwarebytes Anti Malware, did a scan and got rid of it. My laptop is workign fine now.

[SLK]

Quote:

Originally Posted by aaggoswami

1) If they are in less number, or else, reinstalling is the best optiion.

2) This is a bit tricky. Moreover, its not always that one has success. Here first of all there must be only a few processes that we want to address. Then mostly what happens is that they will reiterate irrespective of one being in safe mode or not.

They don't normally startup with more than 2 processes.

Tricky... yes

Success, well yes in 2 situations you'll not succeed
1) The spyware is using shell execute
2) Its loaded as an essential driver

Then, you need command prompt (recovery console)

Once done, you might have lost the ability to run exe files , but that can be repaired too.

But all this takes 10-15 mins, and new windows takes 1hr to install and 10 days to get back to the same customiz-ation level as before. And then all the windows updates?

All, I'm saying is, it is never irreparable.

[NetfreakBombay]

Quote:

Originally Posted by SLK

Thats the wrong approach! almost all these worms can be cleaned without any antivirus.

If you know the file/process this spyware is running remove it using autoruns (search on the net) in the safe mode.

Most hardware guys are useless! format/reinstall is all they know.

Format/reinstall (along with data backup) is usually the best option. As mentioned in previous post, apart from this malware it will get clean up lots of softwares tha tare consuming memory with autostartup or drivers that are being loaded in memory but are not needed.

Its possible to remove individual viruses / spyware / warms but might not be worth the effort.

[SLK]

My last windows Installation lasted 4 years [until hard disk crashed] and without any antivirus.

Format re-install is like saying that if your car's injectors are clogged, lets change the engine just b'coz the service centre doesn't know how to clean. After all, you'll get rid of all the carbon deposits inside the engine too.

Format/reinstall is the biggest effort. The unneeded autostartup softwares [and drivers] can be removed anyways, another 10mins!

[HappyWheels]

Ok, no need for formating or re-installing or anything.

RAC, download and run HijackThis (get it from the major geek site; google for it).

It will generate a log file. Send it to me.

I know this might be a bit too much, but believe me, most of the time, it might be a very simple issue.

[subscrive]

- Dont format.
- Try avira or avast.
- Start -> run -> type "msconfig" without quotes -> Startup tab. Post screenshots of the content. Perhaps we can help.