MS Removal Tool Hoax software

  Caine57 12:48 PM 25 Apr 11
Locked
Answered

My wife's computer got infected with the removal tool hoax software that disables everything. We couldn't make the uninstall process work so ended up doing a factory reset. And then my daughter on another computer encountered the same hoax dialogue boxes and we just caught it in time before she downloaded the hoax software (nightmare!!). All they were doing was copying images for school work. Is there an increase in this particular virus/hoax attached to clip-art sites and downloadable images?? Has anyone had this and found an easy way of removing it?? That's half of my bank holiday gone!!!!!:-(

  PSF 12:53 PM 25 Apr 11

Install and run Malwarebytes, keep it updated and run full scan at least once a week. This should help keep your pc's clean. It is a free version. http://www.malwarebytes.org/products/malwarebytes_free

  Woolwell 13:01 PM 25 Apr 11

What anti-virus program are you running? Regardless of your security programs you still have to be careful on which sites you visit and click on.

  Caine57 13:05 PM 25 Apr 11

we're running MS Essentials on all our machines. I tried malwarebytes in safe-mode on the originally infected PC but it didn't pick anything up. That was when we abandoned rescue and went for reset!!!

  c4rm0 13:09 PM 25 Apr 11
Answer

Most of the fake av /spywrae apps disable the use of Applications like malwarebytes and your AV and things like task manager ect

So ...

The easiest way to remove these fake AV /Spyware Apps is to look in C:\documents and settings\All users\Application Data and look for a oddly named folder eg 144343535 rename the .exe to .bak and reboot the machine because the file is no longer running everything should be back to normal. At this stage i run malware bytes to remove reg keys/left over folders ect

There quite easy to remove once you know how to get rid

  onthelimit1 13:36 PM 25 Apr 11

I've always found the Bleepingcomputer guides a good way of getting rid.

link text

  Caine57 13:59 PM 25 Apr 11

Thanks c4rm0, if we get it again I'll try that route. But we are all hypersensitive now!! Thanks for everyone's comments.

Advertisement

This thread is now locked and can not be replied to.

How to get Windows 10 now: how to download and install Windows 10 even if GWX.exe is missing

1995-2015: How technology has changed the world in 20 years

Nokia rolls out spherical camera for virtual reality apps

7 best iPhone web browser apps: Why Safari for iOS is still a better option than Chrome, Dolphin,…