Hijacked and need help!
July 19, 2010 6:44 AM Subscribe
Help! I need to remove the antivir virus from my computer!
Last night i was on my computer and all of sudden i got a warning message that my computer was infected, and then this ad pops up for the "Antivir Solution Pro". Now whenever i try to do ANYTHING, it says "[whatever program you were trying to use] has been infected." and then the ad for the solution pro pops up.
i dont know what to do to clear it! all the sites i've found through google say to run so-and-so program to clear it up, but i literally can't click on a single thing on my computer, let alone go to a website or run a program.
help! :(
Last night i was on my computer and all of sudden i got a warning message that my computer was infected, and then this ad pops up for the "Antivir Solution Pro". Now whenever i try to do ANYTHING, it says "[whatever program you were trying to use] has been infected." and then the ad for the solution pro pops up.
i dont know what to do to clear it! all the sites i've found through google say to run so-and-so program to clear it up, but i literally can't click on a single thing on my computer, let alone go to a website or run a program.
help! :(
1.) Reboot into safe mode with networking (I'm assuming you're using windows).
2.) Download malwarebytes (the free version will work fine).
3.) Run full scan and let it delete what it finds.
4.) Reboot.
mail me if you need any more instructions.
posted by Sgt.Grumbless at 6:56 AM on July 19, 2010
2.) Download malwarebytes (the free version will work fine).
3.) Run full scan and let it delete what it finds.
4.) Reboot.
mail me if you need any more instructions.
posted by Sgt.Grumbless at 6:56 AM on July 19, 2010
If you aren't able to use the directions provided by Hugh2d2 you might have to use a boot CD like Avira Antivir Rescue System that completely bypasses Windows for the cleanup work.
posted by ChrisHartley at 7:01 AM on July 19, 2010
posted by ChrisHartley at 7:01 AM on July 19, 2010
Response by poster: Hugh2d2, i cant go to any websites! (I'm on my work computer right now.) I mean i literally cannot do a single thing on the computer. i cant even open task manager by cntl-alt-delete. its scary.
posted by silverstatue at 7:05 AM on July 19, 2010
posted by silverstatue at 7:05 AM on July 19, 2010
Go into safe mode like Sgt.Grumbless suggests.
posted by damn dirty ape at 7:10 AM on July 19, 2010
posted by damn dirty ape at 7:10 AM on July 19, 2010
Response by poster: ok i will try safe mode when i get home. really hope this works!
posted by silverstatue at 7:12 AM on July 19, 2010
posted by silverstatue at 7:12 AM on July 19, 2010
I'm a bit wary of http://www.2-spyware.com/remove-antivir-solution-pro.html's solution, as the software it asks you to download (Syware Doctor) at the end of the article will search and detect problems for free, but requires payment to remove threats.
posted by alby at 7:35 AM on July 19, 2010
posted by alby at 7:35 AM on July 19, 2010
Mod note: comment removed - every thread about not-Linux needs to not turn into a platform for Go-Linux, thanks.
posted by jessamyn (staff) at 7:43 AM on July 19, 2010
posted by jessamyn (staff) at 7:43 AM on July 19, 2010
Best answer: Use this guide. My mom had this and that fixed it.
posted by wayland at 7:51 AM on July 19, 2010 [1 favorite]
posted by wayland at 7:51 AM on July 19, 2010 [1 favorite]
++ on wayland's more in-depth guide for the removal. Knew I had forgotten something important, like turning off the proxy server.
posted by Sgt.Grumbless at 8:08 AM on July 19, 2010
posted by Sgt.Grumbless at 8:08 AM on July 19, 2010
Agree on not trusting Spyware Doctor. I second the recommendation of bleepng computer, the site wayland suggested. It will tell you how to use Malwarebytes, and include a download link for the free version.
(Don't use the software advertised on the site, use what they recommend in the article.)
posted by nangar at 8:17 AM on July 19, 2010
(Don't use the software advertised on the site, use what they recommend in the article.)
posted by nangar at 8:17 AM on July 19, 2010
Response by poster: what if safe mode doesnt work? then is there no hope? :(
posted by silverstatue at 8:18 AM on July 19, 2010
posted by silverstatue at 8:18 AM on July 19, 2010
Safe mode should work. Don't panic. (Even if it doesn't, there's still hope. Using a boot CD, like ChrisHartley suggested. But that probably won't be necessary.)
Note these instructions from bleeepingcomputer (the site I linked to):
# Print out these instructions as we may need to close every window that is open later in the fix.
# It is possible that the infection you are trying to remove will not allow you to download files on the infected computer. If you run into this problem when following the steps in this guide you will need to download the files requested in this guide on another computer and then transfer them to the infected computer. You can transfer the files via a CD/DVD, external drive, or USB flash drive.
From your description, it sound like you might have this problem. You might want to go ahead and do this now.
posted by nangar at 8:45 AM on July 19, 2010
Note these instructions from bleeepingcomputer (the site I linked to):
# Print out these instructions as we may need to close every window that is open later in the fix.
# It is possible that the infection you are trying to remove will not allow you to download files on the infected computer. If you run into this problem when following the steps in this guide you will need to download the files requested in this guide on another computer and then transfer them to the infected computer. You can transfer the files via a CD/DVD, external drive, or USB flash drive.
From your description, it sound like you might have this problem. You might want to go ahead and do this now.
posted by nangar at 8:45 AM on July 19, 2010
I speak from personal experience - I had this happen last week. I freaked out, but by booting into Safe Mode with Networking and downloading the newest Malwarebytes Anti-Malware updates, Anti-Malware was able to remove the virus. I had to re-set the proxy settings in IE, Firefox and Chrome manually (not hard, but something you'll need to do). wayland's link is really detailed, and should get you through it.
posted by filthy light thief at 9:29 AM on July 19, 2010
posted by filthy light thief at 9:29 AM on July 19, 2010
Tip I used to get around the IE not feeding up web pages was to use httpS://webaddress.
That seemed to work to get me to the google and then on to pages with step by step instructions.
posted by Hugh2d2 at 10:38 AM on July 19, 2010
That seemed to work to get me to the google and then on to pages with step by step instructions.
posted by Hugh2d2 at 10:38 AM on July 19, 2010
Response by poster: IT WORKED! i followed wayland's link and it worked and i am beyond thrilled right now! thank you so much everyone for your help.
posted by silverstatue at 6:54 PM on July 19, 2010
posted by silverstatue at 6:54 PM on July 19, 2010
This thread is closed to new comments.
Used this to remove it from my sis-in-laws pc just this weekend. Good luck.
posted by Hugh2d2 at 6:54 AM on July 19, 2010