A malware program forcing spam for a supposed anti-virus package somehow got passed McAfee and even installed itself. To make matters worse, it has completely blocked me from accessing or even starting McAfee. I've tried every means of accessing that I could. I tried doing a free scan, but even though I JUST UPDATED Internet Explorer, it still claims I'm not updated. I don't know what to do and it's stressing me out. Someone please help...
Not sure what this is but it tried to get me too. I happened to be online at the time and caught it. Kept shutting down McAfee as quick as I could turn it on.. I finally smacked the power button on the router and saved my machine, but it was a near thing. I did a deep scan and it found nothing but I'm not totally comfortable. But if you look at this forum today you will see a few other people who got smacked in the last 24 hrs. I would like to see some in put from McAfee on this. But it made me feel better in a weird way just to see it wasn't 'just me'.
I found this a few posts down "If you do a CTRL-ALT-DEL when you boot the system you can stop the culprit processes. Under Task Manager-Processes end any processes named xxxsysguard.exe." Hope that helps. Once you shut down the process then you should be able to start McAfee and do a deep scan. Maybe that will fix it. But looks like the board has a lot of posts on this subject today.
From what you describe it sounds like a virus I just recovered from... "Internet Security 2010" malware virus. It is an ugly one... I couldn't get to the internet, I couldn't execute Task Manager or Regedit, etc. It blocks many executables. McAfee did not detect it nor did it prevent it. Using a 2nd PC I did some research on the internet on the virus and how to remove it. Then I used the 2nd PC to download removal software. Worse yet I actually had to purchase this software - PC Tools Spyware Doctor. I think there are some free products that remove it also but they looked much more involved.
Moved to Malware Discussions. The best removal guide on the web is here: http://www.bleepingcomputer.com/virus-removal/remove-internet-security-2010 - scroll down the page as the first links are all advertising.
If you can't download/install anything in normal mode try doing it in "Safe Mode with Networking" reached by tapping F8 while booting up. That particular mode allows Internet access in Safe Mode.
Then you can "Save As" the files to your desktop, renaming them in the process, just in case the malware decides to disable recognized anti-malware tools.
Forget Spyware Doctor...the best anti-spyware tools on the web are the free versions of these two tools:Message was edited by: Ex_Brit on 03/01/10 5:48:11 EST PM
Ex_Brit, I've tried everything you suggested. It doesn't matter if I CAN download it. Even in safe mode, the malware program prevents me from even running Malwarebytes. It's using "iexplorer.exe" as a base, and I can't get it to end and stay. I've tried everything.
Then apart from trying one of our Moderator's BootCD solution here, if you have access to a clean machine that can burn CDRW media, I would suggest a full format and reinstallation of the operating system.Message was edited by: Ex_Brit on 03/01/10 8:06:34 EST PM
You mean wiping my computer clean? Is there really no other way? I mean, I have thousands of important files on here and no way of backing them up...or do I misunderstand?Message was edited by: SNorman on 1/3/10 8:11:51 PM GMT-05:00