• Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.

Best way to remove problem Malware

radioraheem

New Member
Joined
Jun 8, 2014
Messages
11 (0.00/day)
Hi There,

I am trying to remove a bundle of Malware without success.

There is a bundle of listed programs which I try to uninstall through the typical Control Panel effort, but they remain listed there:

Buenosearch Toolbar
MyPC Backup
PC Performer
Speed Test 127
UnknownFile

I was looking at this weblink which provides a 5 step process for Buenosearch alone:
http://malwaretips.com/blogs/remove-bueno-search/

Not sure how much certain guides can be trusted. One of the first things I read was to download Revo Uninstaller, and I've not heard of it so I'm not sure if it's trustworthy..........
 
Joined
Mar 26, 2010
Messages
9,762 (1.91/day)
Location
Jakarta, Indonesia
System Name micropage7
Processor Intel Xeon X3470
Motherboard Gigabyte Technology Co. Ltd. P55A-UD3R (Socket 1156)
Cooling Enermax ETS-T40F
Memory Samsung 8.00GB Dual-Channel DDR3
Video Card(s) NVIDIA Quadro FX 1800
Storage V-GEN03AS18EU120GB, Seagate 2 x 1TB and Seagate 4TB
Display(s) Samsung 21 inch LCD Wide Screen
Case Icute Super 18
Audio Device(s) Auzentech X-Fi Forte
Power Supply Silverstone 600 Watt
Mouse Logitech G502
Keyboard Sades Excalibur + Taihao keycaps
Software Win 7 64-bit
Benchmark Scores Classified
through control panel not works?
personally if it looks bad im gonna fresh install it since you dont know what else after that
 
Joined
May 2, 2013
Messages
178 (0.04/day)
System Name Echo
Processor Intel Core I5-6500
Motherboard Asrock H170-PRO4S
Cooling Stock cooler
Memory 2x8 GB Crucial DDR4 2133MHz CL16 (CT2K8G4DFD8213)
Video Card(s) Integrated (For the moment)
Storage SSD A-DATA Premier Pro SP920 (2.5, SATA3, 256GB MLC,) (ASP920SS3-256GM-C)
Display(s) Philips Brilliance 220SW
Case Zalman Z3 Plus
Audio Device(s) Integrated
Power Supply CoolerMaster V550S (550w, 80+Gold)
Software Windows 10 Pro 64bit
Try Malwarebytes Anti-malware: https://www.malwarebytes.org/

Since you already know what you want to uninstall an alternative to Malwarebytes could be Iobit Uninstaller 3 http://www.iobit.com/advanceduninstaller.html this has the ability to force uninstall if I remember correctly.

If you do manage to get rid of your problems or reinstall windows also do this so it does not happen again:

You should always pay attention when installing software because often, a software installer includes optional installs, such as this MyPC Backup. Be very careful what you agree to install.
Always opt for the custom installation and deselect anything that is not familiar, especially optional software that you never wanted to download and install in the first place. It goes without saying that you should not install software that you don’t trust.

The text above was taken from http://malwaretips.com/blogs/mypc-backup-virus-removal/
 
Last edited:
Joined
Dec 23, 2012
Messages
1,704 (0.42/day)
Location
Somewhere Over There!
System Name Gen2
Processor Ryzen R9 5950X
Motherboard Asus ROG Crosshair Viii Hero Wifi
Cooling Lian Li 360 Galahad
Memory G.Skill Trident Z RGB 64gb @ 3600 Mhz CL14-13-13-24 1T @ 1.45V
Video Card(s) Sapphire RX 6900 XT Nitro+
Storage Seagate 520 1TB + Samsung 970 Evo Plus 1TB + lots of HDD's
Display(s) Samsung Odyssey G7
Case Lian Li PC-O11D XL White
Audio Device(s) Onboard
Power Supply Super Flower Leadex SE Platinum 1000W
Mouse Xenics Titan GX Air Wireless
Keyboard Kemove Snowfox 61
Software Main: Gentoo+Arch + Windows 11
Benchmark Scores Have tried but can't beat the leaders :)
best way is reformat :)
 

rtwjunkie

PC Gaming Enthusiast
Supporter
Joined
Jul 25, 2008
Messages
13,909 (2.43/day)
Location
Louisiana -Laissez les bons temps rouler!
System Name Bayou Phantom
Processor Core i7-8700k 4.4Ghz @ 1.18v
Motherboard ASRock Z390 Phantom Gaming 6
Cooling All air: 2x140mm Fractal exhaust; 3x 140mm Cougar Intake; Enermax T40F Black CPU cooler
Memory 2x 16GB Mushkin Redline DDR-4 3200
Video Card(s) EVGA RTX 2080 Ti Xc
Storage 1x 500 MX500 SSD; 2x 6TB WD Black; 1x 4TB WD Black; 1x400GB VelRptr; 1x 4TB WD Blue storage (eSATA)
Display(s) HP 27q 27" IPS @ 2560 x 1440
Case Fractal Design Define R4 Black w/Titanium front -windowed
Audio Device(s) Soundblaster Z
Power Supply Seasonic X-850
Mouse Coolermaster Sentinel III (large palm grip!)
Keyboard Logitech G610 Orion mechanical (Cherry Brown switches)
Software Windows 10 Pro 64-bit (Start10 & Fences 3.0 installed)
Ultimately, if through several anti-malware and antivirus run throughs you still can't get rid of them, your best chance to get rid of it after is a reinstall.
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,435 (6.62/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
Yup start with a clean slate. When hdds were the norm i used Killdisk on them to know they were wiped
 

OneMoar

There is Always Moar
Joined
Apr 9, 2010
Messages
8,739 (1.72/day)
Location
Rochester area
System Name RPC MK2.5
Processor Ryzen 5800x
Motherboard Gigabyte Aorus Pro V2
Cooling Enermax ETX-T50RGB
Memory CL16 BL2K16G36C16U4RL 3600 1:1 micron e-die
Video Card(s) GIGABYTE RTX 3070 Ti GAMING OC
Storage ADATA SX8200PRO NVME 512GB, Intel 545s 500GBSSD, ADATA SU800 SSD, 3TB Spinner
Display(s) LG Ultra Gear 32 1440p 165hz Dell 1440p 75hz
Case Phanteks P300 /w 300A front panel conversion
Audio Device(s) onboard
Power Supply SeaSonic Focus+ Platinum 750W
Mouse Kone burst Pro
Keyboard EVGA Z15
Software Windows 11 +startisallback
a format and re-install should be reserved for more severe problems (hardened virus's,rootkits ect ect)
MBAM should't have a problem dealing with what the op listed nothing he listed is very worrisome remember people this isn't the XP era anymore with windows 7 and higher is pretty hard for badware to fubar a system to the point where a full format is warranted - for special cases with stuff such as ransom-ware or a zeroday
 

Kursah

Super Moderator
Staff member
Joined
Oct 15, 2006
Messages
14,664 (2.30/day)
Location
Missoula, MT, USA
System Name Kursah's Gaming Rig 2018 (2022 Upgrade) - Ryzen+ Edition | Gaming Laptop (Lenovo Legion 5i Pro 2022)
Processor R7 5800X @ Stock | i7 12700H @ Stock
Motherboard Asus ROG Strix X370-F Gaming BIOS 6203| Legion 5i Pro NM-E231
Cooling Noctua NH-U14S Push-Pull + NT-H1 | Stock Cooling
Memory TEAMGROUP T-Force Vulcan Z 32GB (2x16) DDR4 4000 @ 3600 18-20-20-42 1.35v | 32GB DDR5 4800 (2x16)
Video Card(s) Palit GeForce RTX 4070 JetStream 12GB | CPU-based Intel Iris XE + RTX 3070 8GB 150W
Storage 4TB SP UD90 NVME, 960GB SATA SSD, 2TB HDD | 1TB Samsung OEM NVME SSD + 4TB Crucial P3 Plus NVME SSD
Display(s) Acer 28" 4K VG280K x2 | 16" 2560x1600 built-in
Case Corsair 600C - Stock Fans on Low | Stock Metal/Plastic
Audio Device(s) Aune T1 mk1 > AKG K553 Pro + JVC HA-RX 700 (Equalizer APO + PeaceUI) | Bluetooth Earbuds (BX29)
Power Supply EVGA 750G2 Modular + APC Back-UPS Pro 1500 | 300W OEM (heavy use) or Lenovo Legion C135W GAN (light)
Mouse Logitech G502 | Logitech M330
Keyboard HyperX Alloy Core RGB | Built in Keyboard (Lenovo laptop KB FTW)
Software Windows 11 Pro x64 | Windows 11 Home x64
I would run CCleaner and uninstall what you can, great that you have the list...that will come in handy later. Run the space cleaning utility along with MS Disk Cleaner to clear caches, junk data, etc. Go to Startup, disable Adobe and Java related stuff, look for anything suspicious, disable.

First step, download and install MBAM 2.0 (Malwarebytes). Run. Remove infections, restart if necessary. This will take care of MOST situations, especially if ran manually once a week with a simple scanning utility such as Microsoft Security Essentials/Defender. But if you need to do a more thorough cleaning, read below.

Download and run RKILL ( http://www.bleepingcomputer.com/download/rkill

_...should kill most malware-related processes.
Download and run ADWcleaner (http://www.bleepingcomputer.com/download/adwcleaner/ )...run, review what it finds, click clean. Will need to restart when done.

Run RKILL again...
Download and run JRT, (http://www.bleepingcomputer.com/download/junkware-removal-tool/ )...may need to reboot when done. If not, continue.

Consider running HitmanPro as well, this you gotta buy to use it's cleaning ability, but not it's finding ability, so it will create a list from which you can manually remove items not found by previous scans.

Last, you could run TDSSKiller (http://www.bleepingcomputer.com/download/tdsskiller/ )

I would then go run regedit.exe and Crtl+F (for find) and search all the items you listed above and manually remove entries from registry. Just be careful what you remove...it is recommended you backup your registry before modifying.

Backup registry search: https://www.google.com/webhp?sourceid=chrome-instant&rlz=1C1RNVH_enUS552US552&ion=1&espv=2&es_th=1&ie=UTF-8#q=How to backup registry

This is what I do for heavier infections or ones that a monitored client's enterprise solution can't seem to get rid of...and most of the time the manual registry cleaning isn't necessary with all the above utilties. Each one has a different search and destroy algorithm. It's very much worth the effort and can make a system run nice again, which beats an OS reload imho...though in some cases that may be necessary...I'd say maybe 1 out of 300 in my experience...maybe 1 out of 500...my bench guy does tons of these a week, and not often does he need to do a system reload or fresh install.

If you want to make damn sure your system is cleaned, and are willing to take a risk (and maybe have a backup of your user account, files, settings, etc...), run Combofix - http://www.bleepingcomputer.com/download/combofix/

Once you're done with all of that, run MBAM once more, if comes back clean, you are most likely good to go. Time will tell, but after performing all of the above you should have a pretty clean system and a utility set to take on 99% of infections in the future, I only speak from experience and this can change with a new type of malware. But once you're done...I recommend going to http://www.ninite.com/ . This is a sweet place to have all sorts of stuff installed on your computer WITHOUT the extra junkware, adware, malware intalled too...the limitation? It will only install to your OS drive. For 95% of folks that's no problem. I recommend getting one file that is just the Runtimes...run that once a month as it will update all your runtimes, especially Java...which is continually updated to resolve security loopholes.

It's a good place to install MSE and MBAM, and really anything there is to offer on there...it's a super useful utility both in IT services and at home. I hope that helps! :toast:
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,435 (6.62/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
a format and re-install should be reserved for more severe problems (hardened virus's,rootkits ect ect)
MBAM should't have a problem dealing with what the op listed nothing he listed is very worrisome remember people this isn't the XP era anymore with windows 7 and higher is pretty hard for badware to fubar a system to the point where a full format is warranted - for special cases with stuff such as ransom-ware or a zeroday

i see so many people with crap on their pcs that they dont realize it affects their webbrowsers performance
 

OneMoar

There is Always Moar
Joined
Apr 9, 2010
Messages
8,739 (1.72/day)
Location
Rochester area
System Name RPC MK2.5
Processor Ryzen 5800x
Motherboard Gigabyte Aorus Pro V2
Cooling Enermax ETX-T50RGB
Memory CL16 BL2K16G36C16U4RL 3600 1:1 micron e-die
Video Card(s) GIGABYTE RTX 3070 Ti GAMING OC
Storage ADATA SX8200PRO NVME 512GB, Intel 545s 500GBSSD, ADATA SU800 SSD, 3TB Spinner
Display(s) LG Ultra Gear 32 1440p 165hz Dell 1440p 75hz
Case Phanteks P300 /w 300A front panel conversion
Audio Device(s) onboard
Power Supply SeaSonic Focus+ Platinum 750W
Mouse Kone burst Pro
Keyboard EVGA Z15
Software Windows 11 +startisallback
I would avoid anything on bleepingcomputer ( and I am not gonna go into why )
mbam should be all you need
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,435 (6.62/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
I would avoid anything on bleepingcomputer ( and I am not gonna go into why )
mbam should be all you need

mbam. Spybot sd. Spyware blaster (after its all clean to help crap from hijacking the os)

Avast...
 

OneMoar

There is Always Moar
Joined
Apr 9, 2010
Messages
8,739 (1.72/day)
Location
Rochester area
System Name RPC MK2.5
Processor Ryzen 5800x
Motherboard Gigabyte Aorus Pro V2
Cooling Enermax ETX-T50RGB
Memory CL16 BL2K16G36C16U4RL 3600 1:1 micron e-die
Video Card(s) GIGABYTE RTX 3070 Ti GAMING OC
Storage ADATA SX8200PRO NVME 512GB, Intel 545s 500GBSSD, ADATA SU800 SSD, 3TB Spinner
Display(s) LG Ultra Gear 32 1440p 165hz Dell 1440p 75hz
Case Phanteks P300 /w 300A front panel conversion
Audio Device(s) onboard
Power Supply SeaSonic Focus+ Platinum 750W
Mouse Kone burst Pro
Keyboard EVGA Z15
Software Windows 11 +startisallback
hes removing a couple B grade toolbars and agents not the latest iteration of ZESU lol
it would't hurt to run spybot not that its useful anymore
mbam should catch anything the op listed with a "quick scan"
 

Kursah

Super Moderator
Staff member
Joined
Oct 15, 2006
Messages
14,664 (2.30/day)
Location
Missoula, MT, USA
System Name Kursah's Gaming Rig 2018 (2022 Upgrade) - Ryzen+ Edition | Gaming Laptop (Lenovo Legion 5i Pro 2022)
Processor R7 5800X @ Stock | i7 12700H @ Stock
Motherboard Asus ROG Strix X370-F Gaming BIOS 6203| Legion 5i Pro NM-E231
Cooling Noctua NH-U14S Push-Pull + NT-H1 | Stock Cooling
Memory TEAMGROUP T-Force Vulcan Z 32GB (2x16) DDR4 4000 @ 3600 18-20-20-42 1.35v | 32GB DDR5 4800 (2x16)
Video Card(s) Palit GeForce RTX 4070 JetStream 12GB | CPU-based Intel Iris XE + RTX 3070 8GB 150W
Storage 4TB SP UD90 NVME, 960GB SATA SSD, 2TB HDD | 1TB Samsung OEM NVME SSD + 4TB Crucial P3 Plus NVME SSD
Display(s) Acer 28" 4K VG280K x2 | 16" 2560x1600 built-in
Case Corsair 600C - Stock Fans on Low | Stock Metal/Plastic
Audio Device(s) Aune T1 mk1 > AKG K553 Pro + JVC HA-RX 700 (Equalizer APO + PeaceUI) | Bluetooth Earbuds (BX29)
Power Supply EVGA 750G2 Modular + APC Back-UPS Pro 1500 | 300W OEM (heavy use) or Lenovo Legion C135W GAN (light)
Mouse Logitech G502 | Logitech M330
Keyboard HyperX Alloy Core RGB | Built in Keyboard (Lenovo laptop KB FTW)
Software Windows 11 Pro x64 | Windows 11 Home x64
mbam should catch anything the op listed with a "quick scan"

Keyword here is "should". Never hurts to have something else on-hand for when or if that "should" turns into a didn't imho. Spybot has become meh, I'm not a fan of Avast anymore either, but there's a lot of good options out there, and ultimately manually removing items works as well when you know what to look for. Running MBAM first and foremost is a great place to start and works for most folks, but I've found repeatedly that it misses quite a few things, as any single utility will..that's why it's ignorant to run and depend on a single utility. Mixing MBAM free + an active scanning soluiton is something I stand behind, and having a toolkit in a folder for those heavier infections sure makes life easier when it happens for those that get infected.
 
Joined
Dec 25, 2012
Messages
2,097 (0.51/day)
Location
Spencerport NY
System Name Master
Processor Pair of Xeon X5675's @ 4.3
Motherboard SR-2 Classified
Memory 12 GB of Corsair Dominator GT's @ 2000 7-7-7-21
Video Card(s) EVGA GTX680
Power Supply EVGA Supernova 750
Effectiveness is relevant to the procedure you use when you scan. No matter what AV product you use, you should always physically disconnect from the internet and turn off system restore before you scan and remove.
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,435 (6.62/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
Yup cuz it can trigger redownload of the crap
 

OneMoar

There is Always Moar
Joined
Apr 9, 2010
Messages
8,739 (1.72/day)
Location
Rochester area
System Name RPC MK2.5
Processor Ryzen 5800x
Motherboard Gigabyte Aorus Pro V2
Cooling Enermax ETX-T50RGB
Memory CL16 BL2K16G36C16U4RL 3600 1:1 micron e-die
Video Card(s) GIGABYTE RTX 3070 Ti GAMING OC
Storage ADATA SX8200PRO NVME 512GB, Intel 545s 500GBSSD, ADATA SU800 SSD, 3TB Spinner
Display(s) LG Ultra Gear 32 1440p 165hz Dell 1440p 75hz
Case Phanteks P300 /w 300A front panel conversion
Audio Device(s) onboard
Power Supply SeaSonic Focus+ Platinum 750W
Mouse Kone burst Pro
Keyboard EVGA Z15
Software Windows 11 +startisallback
there's a lot of FUD surrounding this subject and a lot of it hearkens back to the early XP days
the older SOP's of the past don't necessarily apply nor are they always warranted
and here we have a case of that
unless said malware has managed to gain "system" level privileges then there is no way it can write or even read anything from %system volume information% if its got that level infection then you most likely have a rootkit

and you are right without physically sitting down and looking I can't be 100% sure that nothing worse is going on I am going on what the Op told us
 
Joined
Aug 30, 2014
Messages
19 (0.01/day)
System Name BlackHawk
Processor Intel 3570k 4.2GHz Intel C state enabled, EIST enabled
Motherboard MSI Z77 G45
Cooling CPU cooler some kind of big Alpenföhn, without fan. I have Spectre PWM on it.
Memory Corsair V. 1600mHz
Video Card(s) GTX1060
Storage Crucial M4 SSD 128GB, Kingston SSD 256GB, WDD Green 2TB
Display(s) DELL UltraSharp 24''
Case Bitfenix Shinobi
Audio Device(s) Schiit Jotunheim
Power Supply Seasonic Modular 520W
Mouse G502
Keyboard CM Quickfire Ultimate
Software W10
Try Malwarebytes Anti-malware: https://www.malwarebytes.org/

Since you already know what you want to uninstall an alternative to Malwarebytes could be Iobit Uninstaller 3 http://www.iobit.com/advanceduninstaller.html this has the ability to force uninstall if I remember correctly.

If you do manage to get rid of your problems or reinstall windows also do this so it does not happen again:

You should always pay attention when installing software because often, a software installer includes optional installs, such as this MyPC Backup. Be very careful what you agree to install.
Always opt for the custom installation and deselect anything that is not familiar, especially optional software that you never wanted to download and install in the first place. It goes without saying that you should not install software that you don’t trust.

The text above was taken from http://malwaretips.com/blogs/mypc-backup-virus-removal/


+1 Malwarebytes is quite good. Majority of AV are completely useless imo. (Defender Qucik Scan plugin is a Joke)

MB found all the unnecessary grap and removed it for me. (Y)
 
Last edited:
Joined
Oct 2, 2005
Messages
3,059 (0.45/day)
Location
Baltimore MD
Processor Ryzen 5900X
Motherboard ASUS Prime X470 Pro
Cooling Arctic liquid freezer II 240
Memory 2 x 16 Gb Gskill Trident Z 3600 Mhz
Video Card(s) MSI Ventus 3060 Ti OC
Storage Samsung 960 EVO 500 Gb / 860 EVO 1 Tb
Display(s) Dell S2719DGF
Case Lian Li Lancool II Mesh
Audio Device(s) Soundblaster Z
Power Supply Corsair RM850x
Mouse Logitech G703
Keyboard Logitech G513
Software Win 11
Joined
Mar 7, 2007
Messages
3,842 (0.62/day)
Location
Maryland
System Name HAL
Processor Core i9 13900k @5.8-6.1
Motherboard Z790 Arous master
Cooling EKWB Quantum Velocity V2 & (2) 360 Corsair XR7 Rads push/pull
Memory 2x 32GB (64GB) Gskill trident 6000 CL30 @28 1T
Video Card(s) RTX 4090 Gigagbyte gaming OC @ +200/1300
Storage (M2's) 2x Samsung 980 pro 2TB, 1xWD Black 2TB, 1x SK Hynix Platinum P41 2TB
Display(s) 65" LG OLED 120HZ
Case Lian Li dyanmic Evo11 with distro plate
Power Supply Thermaltake 1350
Software Microsoft Windows 11 x64
Try Malwarebytes Anti-malware: https://www.malwarebytes.org/

Since you already know what you want to uninstall an alternative to Malwarebytes could be Iobit Uninstaller 3 http://www.iobit.com/advanceduninstaller.html this has the ability to force uninstall if I remember correctly.

If you do manage to get rid of your problems or reinstall windows also do this so it does not happen again:

You should always pay attention when installing software because often, a software installer includes optional installs, such as this MyPC Backup. Be very careful what you agree to install.
Always opt for the custom installation and deselect anything that is not familiar, especially optional software that you never wanted to download and install in the first place. It goes without saying that you should not install software that you don’t trust.

The text above was taken from http://malwaretips.com/blogs/mypc-backup-virus-removal/


This^^
 

XSI

Joined
Sep 4, 2012
Messages
390 (0.09/day)
Location
Vilnius. Lithuania
System Name Mother PC/XSI PC/ Laptop
Processor I3 6100 Skylake@3.7/Intel Core2Duo E8400@3.0-3.7Ghz/Amd sempron 2100+
Motherboard B150M MSI Night ELF/ASUS P5Q PRO P45/
Cooling Cooler Master Hyper Evo 212/ X 2
Memory Kingston HyperX Fury 2x4GB DDR4@2133 Dual channel /Adata 2x2 GB DDR2@800 dual channel/ 2,5GB
Video Card(s) Gigabyte Windforce 950GTX/MSI 8800GT OC Zilent edition@660/1650/950 / ATI Radeon x1250
Storage 1pc:240GB SSD Kingston HyperX Fury/2PC:Intel 330 SSD 60GB/Samsung 500 GB/Samsung 320GB/80 GB
Display(s) LG 22MP58VQ 1920x1080/ Samsung 2232BW - 22" 1680X1050 and LG Full HDTV 50" / 15" 1280x800
Case Deepcool Tesseract Red/ Modded no name case
Audio Device(s) Realtec 1150/Creative X-FI, Xtreme Gamer + Samsung 5.1 HT + additional 4 speakers and subwoofer
Power Supply EVGA 500B Bronze 80+/ Chieftek 650W 80+.
Mouse Cheapo 5$ mouse/ trackpad :)
Keyboard Some cheap 10$
Software Windows 10/Win 10/ Win 8.1
Benchmark Scores later :)
i used revo uninstaler, actually i liked it. its ok to use. but its more to manage some programs and keep pc clean not to fight malware. anyway can help to uninstall some toolbars/programs.
 

TheMailMan78

Big Member
Joined
Jun 3, 2007
Messages
22,599 (3.68/day)
Location
'Merica. The Great SOUTH!
System Name TheMailbox 5.0 / The Mailbox 4.5
Processor RYZEN 1700X / Intel i7 2600k @ 4.2GHz
Motherboard Fatal1ty X370 Gaming K4 / Gigabyte Z77X-UP5 TH Intel LGA 1155
Cooling MasterLiquid PRO 280 / Scythe Katana 4
Memory ADATA RGB 16GB DDR4 2666 16-16-16-39 / G.SKILL Sniper Series 16GB DDR3 1866: 9-9-9-24
Video Card(s) MSI 1080 "Duke" with 8Gb of RAM. Boost Clock 1847 MHz / ASUS 780ti
Storage 256Gb M4 SSD / 128Gb Agelity 4 SSD , 500Gb WD (7200)
Display(s) LG 29" Class 21:9 UltraWide® IPS LED Monitor 2560 x 1080 / Dell 27"
Case Cooler Master MASTERBOX 5t / Cooler Master 922 HAF
Audio Device(s) Realtek ALC1220 Audio Codec / SupremeFX X-Fi with Bose Companion 2 speakers.
Power Supply Seasonic FOCUS Plus Series SSR-750PX 750W Platinum / SeaSonic X Series X650 Gold
Mouse SteelSeries Sensei (RAW) / Logitech G5
Keyboard Razer BlackWidow / Logitech (Unknown)
Software Windows 10 Pro (64-bit)
Benchmark Scores Benching is for bitches.
Combo fix is dangerous and should only be used to get locked out files BEFORE a format. Its prep before a nuke at best.

Here is what the OP should do IF he does not want to do a format....

1. Run windows update. This will make sure there is no malice removal tool already provided by MS.
2. Download and install Malwarebytes.
3. Restart in Safe Mode.
4. Do a full scan in Safe mode with Malwarebytes.
5. Reboot and see if the problem remains.

Now if you want to be "100% sure" or Malwarbytes fails follow the next steps...

6. Download and install Hitman Pro. http://www.surfright.nl/en/HitmanPro
7. Restart in Safe Mode.
8. Run Hitman Pro. (You do not have to install it or buy it)
9. Reboot normally.
10. Download Kaspersky Rescue Disk 10. http://support.kaspersky.com/4162
11. Burn it to a DVD or USB.
12. Boot from Kaspersky Rescue Disk 10.
13. Once into the Kaspersky Rescue Disk 10 "OS" update the definitions.
14. Run a full scan and check for root kits.
15. Once clean, reboot into your normal OS and install a better Anti-Malware/Virus suit.

Recommendations:

1. Microsoft Security Essentials combined with Malwarebytes and good browsing habits. http://windows.microsoft.com/en-us/...ls-download?src=ia&iaaid=50005300&ialnk=title
2. Bit Defender Free combined with Malwarebytes and good browsing habits. http://www.bitdefender.com/solutions/free.html
 

eidairaman1

The Exiled Airman
Joined
Jul 2, 2007
Messages
40,435 (6.62/day)
Location
Republic of Texas (True Patriot)
System Name PCGOD
Processor AMD FX 8350@ 5.0GHz
Motherboard Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory 16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s) AMD Radeon 290 Sapphire Vapor-X
Storage Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s) NEC Multisync LCD 1700V (Display Port Adapter)
Case AeroCool Xpredator Evil Blue Edition
Audio Device(s) Creative Labs Sound Blaster ZxR
Power Supply Seasonic 1250 XM2 Series (XP3)
Mouse Roccat Kone XTD
Keyboard Roccat Ryos MK Pro
Software Windows 7 Pro 64
Malwarebytes ccleaner hijack this
 

radioraheem

New Member
Joined
Jun 8, 2014
Messages
11 (0.00/day)
I would run CCleaner and uninstall what you can, great that you have the list...that will come in handy later. Run the space cleaning utility along with MS Disk Cleaner to clear caches, junk data, etc. Go to Startup, disable Adobe and Java related stuff, look for anything suspicious, disable.

First step, download and install MBAM 2.0 (Malwarebytes). Run. Remove infections, restart if necessary. This will take care of MOST situations, especially if ran manually once a week with a simple scanning utility such as Microsoft Security Essentials/Defender. But if you need to do a more thorough cleaning, read below.

Download and run RKILL ( http://www.bleepingcomputer.com/download/rkill

_...should kill most malware-related processes.
Download and run ADWcleaner (http://www.bleepingcomputer.com/download/adwcleaner/ )...run, review what it finds, click clean. Will need to restart when done.

Run RKILL again...
Download and run JRT, (http://www.bleepingcomputer.com/download/junkware-removal-tool/ )...may need to reboot when done. If not, continue.

Consider running HitmanPro as well, this you gotta buy to use it's cleaning ability, but not it's finding ability, so it will create a list from which you can manually remove items not found by previous scans.

Last, you could run TDSSKiller (http://www.bleepingcomputer.com/download/tdsskiller/ )

I would then go run regedit.exe and Crtl+F (for find) and search all the items you listed above and manually remove entries from registry. Just be careful what you remove...it is recommended you backup your registry before modifying.

Backup registry search: https://www.google.com/webhp?sourceid=chrome-instant&rlz=1C1RNVH_enUS552US552&ion=1&espv=2&es_th=1&ie=UTF-8#q=How to backup registry

This is what I do for heavier infections or ones that a monitored client's enterprise solution can't seem to get rid of...and most of the time the manual registry cleaning isn't necessary with all the above utilties. Each one has a different search and destroy algorithm. It's very much worth the effort and can make a system run nice again, which beats an OS reload imho...though in some cases that may be necessary...I'd say maybe 1 out of 300 in my experience...maybe 1 out of 500...my bench guy does tons of these a week, and not often does he need to do a system reload or fresh install.

If you want to make damn sure your system is cleaned, and are willing to take a risk (and maybe have a backup of your user account, files, settings, etc...), run Combofix - http://www.bleepingcomputer.com/download/combofix/

Once you're done with all of that, run MBAM once more, if comes back clean, you are most likely good to go. Time will tell, but after performing all of the above you should have a pretty clean system and a utility set to take on 99% of infections in the future, I only speak from experience and this can change with a new type of malware. But once you're done...I recommend going to http://www.ninite.com/ . This is a sweet place to have all sorts of stuff installed on your computer WITHOUT the extra junkware, adware, malware intalled too...the limitation? It will only install to your OS drive. For 95% of folks that's no problem. I recommend getting one file that is just the Runtimes...run that once a month as it will update all your runtimes, especially Java...which is continually updated to resolve security loopholes.

It's a good place to install MSE and MBAM, and really anything there is to offer on there...it's a super useful utility both in IT services and at home. I hope that helps! :toast:


Absolutely solid advice. I don't know a great amount about computers but who are all these clowns saying to reformat the hard drive!?!??!? Thanks for the systematic common sense, much appreciated!!



You were right MBAM didn't work.

I used IOBit and that took 3-4 of them off the menu.

Rkill followed by ADW did the trick. It found PCBackup even though it wasn't listed in installed programs after IOBit. Once it went Bueno (the last one) dissapeared.

GREAT, THANKS. :)
 
Joined
Dec 13, 2011
Messages
433 (0.10/day)
Processor Core i5 3470 (3.20 GHZ)
Cooling Intel OC27vv
Memory 16 GB DDR3 667mhz
Video Card(s) XFX Radeon HD 5670
Storage Seagate - 500GB | 7200RPM | 32MB Cache | Sata-3G
Display(s) BenQ RL2455
Case Dell Tower
Audio Device(s) On-board
Power Supply Corsair 600w
RogueKiller and ADwCleaner are a must! While Malwarebytes is very efficient at removing junk, in some case, it can leave behind downloaders that make task to reinfect the machine over again
 

de.das.dude

Pro Indian Modder
Joined
Jun 13, 2010
Messages
8,737 (1.74/day)
Location
Stuck in a PC. halp.
System Name Monke | Work Thinkpad| Old Monke
Processor Ryzen 5600X | Ryzen 5500U | FX8320
Motherboard ASRock B550 Extreme4 | ? | Asrock 990FX Extreme 4
Cooling 240mm Rad | Not needed | hyper 212 EVO
Memory 2x16GB DDR4 3600 Corsair RGB | 16 GB DDR4 3600 | 16GB DDR3 1600
Video Card(s) Sapphire Pulse RX6700XT 12GB | Vega 8 | Sapphire Pulse RX580 8GB
Storage Samsung 980 nvme (Primary) | some samsung SSD
Display(s) Dell 2723DS | Some 14" 1080p 98%sRGB IPS | Dell 2240L
Case Ant Esports Tempered case | Thinkpad | Antec
Audio Device(s) Logitech Z333 | Jabra corpo stuff
Power Supply Corsair RM750e | not needed | Corsair GS 600
Mouse Logitech G400 | nipple
Keyboard Logitech G213 | stock kb is awesome | Logitech K230
VR HMD ;_;
Software Windows 10 Professional x3
Benchmark Scores There are no marks on my bench
eset comes with malicious program remover.
plus malware bytes, tdsskiller usually works.

also common sense.exe is a good antivirus.
 
Top