I have a NASTY computer virus. Total Security 2009.
It disables task manager, anti virus programs, and even some websites for programs that can remove it.
I found instructions on how to remove it. Under "readers comments", the first comment gives instructions.
http://remove-malware.net/how-to-remove-total-security-2009-rogue-anti-spyware/
I renamed the "taskmgr" file, but when I opened the renamed file, it still recognized it as the task manager.
Any help?
-
Try Avast anti virus
-
I am going to try in safe mode and see what happens. -
Have you backed up your essential files?
-
Back up your crucial files on DVDs (it's generally more dangerous to use removable drives, as viruses readily propagate through them - DVDs and CDs, not so much). Then, reformat your computer.
What I've learned over the years is that it's generally not worth it to remove viruses from an infected system, plus, even if you do succeed, it's hard to be sure that you have completely eradicated it. Besides, a reformat will clean out all the gunk in your system anyway. -
-
Ok. I got into task manager.
Now I have no clue which one of the Processes it is" I know it is supposed to be #.exe. But there is no #.exe. -
1)Boot into a Linux LiveCD. The Virus will be like fish out of water, it can't even run.
Backup all your files to thumbdrive
2)Reformat
Time wasted to clean virus > Time taken to reformat. -
OMG. =.=
Reformat is the last method to do. But I agree with you if too many viruses or problems in the System.
Before that, try this out. I once a victim for this money scamming spyware(rogue anti-spyware) called Total Security 2009.
I fix it using a software called, SmitFraudFix. Guide(must read) and Download Link here, http://siri.geekstogo.com/SmitfraudFix.php
I am 99.99% sure SmitFraudFix can fix your problem >.<! If can't, try SAS and MBAM. If still can't, reformat. LOL. -
smit fraud should or use the ultimate boot disc and do it from a linux boot disk. norton 2010 removed this without issue from a customers computer i did. rebooted and it was gone
-
Did you delete the infected files and registry settings that are stated in the article? That should do it.. The task manager thing is only if you can't do the above because the virus is stoppind you. If the process isn't listed then it is hidden or is simply already disabled.
Oh and did you try the remover they provide?
Hurry up, "It is too bad if you have been infected with Total Security 2009 (Total Security) for quite a long period. The estimated duration of critical length for such period is 20 hours of system active state after infection. Once the period is over, a random deletion of files is started by Total Security 2009" from removal-tool.com
EDIT : Since he hasn't posted yesterday, I guess the virus won lol -
Have you tried booting into Safe mode, then scanning the system from there with your pre-installed anti-virus?
Usually, if a virus is in a system file, I'd resort to this method of removal since most of system files are inoperative in safe mode and give the av ability to clean it up. -
I tried that. I couldn't even run the anti virus from safe mode. The computer was owned.
I wiped the hard drive and reinstalled Windows. -
Hm ...
Safe mode is something I try first.
Usually if the computer is infected with a virus that's not as deadly as yours (or hasn't been able to infect the system like in your case) I will be able to clean it.
Full format (not a quick one) is a last option if everything else fails, which of course you had to resort to.
Then again, it's odd the system would be so unresponsive even in Safe mode.
What about system restore?
Have you tried that?
I know it's a moot point since you formatted the HDD, I'm basically interested if you were able to do that, and if so, if it gave you a bit higher level of control.
Be more careful in the future though.
Which antivirus are you usually using?
I would personally recommend Avira or Nod32 Eset Smart Security. -
Avast free edition was on the compuer. I don't think the antivirus program would have mattered. The computer was actually my aunt's and she is not computer literate. I am pretty sure she downloaded the virus unintentionally. She doesn't read what is on the screen a lot of times and will just click the "Yes" button to get rid of whatever message is on the screen. -
I can certainly relate to the problem when individuals who are not quite computer literate experience these kinds of issues.
It's entirely possible the Avira that was installed was out of date which allowed the virus to pass through and infect the OS on such a scale, or it was a simple file execution that ended up infecting the system regardless of the antivirus in place.
In any event, it's gone now.
I would recommend to inform your aunt on the potential virus dangers in the future.
Simplistic precautionary measures such as 'don't click automatically on 'YES' ' can be taught.
-
-
I wonder why OP didn't follow my guide, instead, he's doing a reformat of OS.
SAS and MBAM as well as SmitFraudFix can kill this virus instantly. -
It is a fact of human psychology. It leads to countless biases in decision making. There must be a thousand studies documenting the decision making of the human mind.
And it is tough to overcome. -
That's awful. LOL. But OP did fix the problem using REFORMAT. I think we're done here. -
It was an easy reinstall.
Thanks for the suggestions anyway. -
In 15+ years of computing, I can only think of one time where reinstalling was necessary after a virus infection--and that was a result of the virus doing so much damage that repairing the operating system was the real issue, not killing the virus.
The problem is that todays more elaborate virus load before your user profile and prevent you from killing them once they are active.
The simplest method is to identify the virus files then drop the drive into another computer or use a live boot cd to kill the virus outside of the windows environment. Then go in and fix the damage.
Viruses hide in only a handful of places and start in a handful of ways. Once you have that down, it's relatively easy to kill any virus. -
It works for me but it doesn't mean it works for you.
SuperAntiSpyware(SAS) and Malware's Bytes Anti-Malware(MBAM) will definitely work.
But you already re-install the OS(the fastest way LOL). I always did that as well. -
Not to mention, half the stuff you typed was completely esoteric to me. -
Re-installation of OS always works. So, I think if you're wasting time testing so many methods and solution. Why don't just do a reformat, save up the time. -
cool...I am esoteric...whatevertheheckthatis.
As always, it depends.
Yes, reinstalling always works. But most of the machines I am working with fall under the category of "I don't have any of the disks for my computer and I cannot lose this or that program"
Personally, I have not had an infected computer in....hmmm...not sure I have ever had infected computer.... -
Just take the Live Boot CD(Ubuntu), boot into Ubuntu and grab the important stuffs into an USB Flash Drive. After that, remove the Ubuntu Live Boot CD and do a reformat of Windows OS. -
You cannot do that with programs. You cannot do that with the OS.
Most members of this and other computer sites are computer savvy enough to keep their install disks (if they ever got them from the OEMs) or back them up.
The other 90 percent of the population never made back ups, recovery cds, copies of important disks and programs. Businesses that ought to know better get programs from vendors (installed by vendors who took the disks with them), and haven't a clue how to set them up again. I do dozens of these month where some specialized piece of software you've never heard of cannot simply be reinstalled.
If you are among those who do have disks and backups, props to you...but I'm not dealing with them. I can either get rid of the virus as quickly and efficiently as possible, or tell these people too bad and live with the virus.
Reinstallation is not always an option--and indeed, it is often unnecessary -
-
best thing you can do next time is get yourself the ultimate boot disk then boot to the bootable enviorment and kill the stuff from there. it doesnt have a chance to run at all that way...
-
I think I said that....
NASTY computer virus is disabling my computer: Total Secuirty 2009
Discussion in 'Security and Anti-Virus Software' started by JWBlue, Sep 30, 2009.