Problem with Spyware Doctor

Message

D-Rider · #16 Post by **D-Rider** » Thu Jan 13, 2011 4:35 pm

I've been a user of both Adaware and Spybot for a long time and always found them great ...... until ..... recently on one of my machines I somehow contracted The System Tools 2011 Fake Security Tool / Malware / Virus thingy.

This is a right B@st@#d.
Couldn't do anything except in Safe Mode while that malware was on there.
My Anti-Virus didn't find it, Spybot didn't find it, Adaware didn't find it.
After some digging around I heard Spyware Doctor could deal with it - so I downloaded it, ran it and it found it ....... but wouldn't zap it for me till I paid to license it (which, in desperation I did).
After a couple of goes it does seem to have got rid of the infection ..... but it now runs as fast as a slow thing on a diet of slow berries (like sloes but not so fast).
Pretty sure it's an interaction of something with Spyware Doctor - which I could remove .... but having shelled out for a license for it I'd prefer not to .... and with Spybot and Adaware both being unable to detect the malware infection, I've lost a lot of confidence in their effectiveness.

Guess I'll need to keep plugging away to fix it - fortunately it's not a pc I use very often

BikerGran · #17 Post by **BikerGran** » Thu Jan 13, 2011 5:21 pm

If you have AVG, there's a conflict between that and Spyware Dr which I didn't find out about until I was downloading a new version of SDr.

I had that System Tools 2011 Fake Security thingy, it necessitated a trip to the computer shop for my machine!

D-Rider · #18 Post by **D-Rider** » Thu Jan 13, 2011 5:36 pm

No, not got AVG on that particular PC - but it'll probably be a similar interaction with another piece of software.

BikerGran · #19 Post by **BikerGran** » Fri Jan 14, 2011 11:56 am

Curiuoser and curiouser.....

A complete scan with Adaware only found some tracking cookies.

But checking through the 'history' on AVG I found something odd in the Virus Vault, and I'm not sure what to do about it. It's labelled a 'Warning' and says I have a 'corrupted executable file' the file pathway being
C:\Documents and Settings\new user\Local Settings\Application Data\Mozilla\Firefox\Profiles\9jbrdbjb.default\Cache\7794F9F7d01

The options are Restore, Restore as, Delete, Empty Vault.

Normall I just get rid of anything in the Vault, but this looks as if it may be something I need - but there's no option given for healing.

Any ideas anyone? Before I go trawling the net for answers.

Aladinsaneuk · #20 Post by **Aladinsaneuk** » Fri Jan 14, 2011 1:19 pm

for any and every one

please don't go spending money till you have got hold of me.....
(And bloody hell Knott - next time tell me.... yes that specific one is a bastard, BUT - is fairly simple to remove with a couple of simple tricks.... rkill - a simple process killer is the key here)

and BG - head over to http://www.malwarebytes.org/ and download the free version - install and run it

that will tell you whats going on - and once you know that, we can sort it out

oh - as for backing up files - yes they may have nasty crud attached - but they can be cleansed before restoring them....

BikerGran · #21 Post by **BikerGran** » Mon Jan 24, 2011 1:05 am

Ooops should have posted before - another scan with AVG identified this as a Trojan horse and it's gone now. I hope I haven't passed it on to anyone - aren't they the ones that get passed on via emails?

Aladinsaneuk · #22 Post by **Aladinsaneuk** » Mon Jan 24, 2011 6:20 am

only if the attachment is opened....

(As in a normal email will be fine - the idea behind a trojan is that you run an attachment thinking it is going to do something that you want - hence it is like a trojan horse)

funnily enough I was at a friends house this week end and came across spyware doctor again - had stopped the laptop from updating any part of windows....

BikerGran · #23 Post by **BikerGran** » Mon Jan 24, 2011 1:06 pm

Anyway it's good to know that AVG is still doing the job!