virus / malware

[bronsonp4htdude123455]

my little brother used my pc and was playing around ( i thought he was on steam) ended up getting malware which i promptly removed and i ran super anti spy ware malware bytes adwcleaner and finished it up with rouge and rkill so everything is cleaned up or so i though i keep getting popup's for installing search protect and i removed it with rouge killer and it keeps coming back ideas? i"ve been working for a tech support shop for about 2 months and never seen anything like this because it keeps coming back and ive only been using netflix / steam and i also checked ms config and checked the start up stuff i got nothing at this point.

[beebskadoo]

Check your browser extensions, and do a quick registry look, to see if anything is still in there. Sometimes these things have to be manually removed. Search protect is especially annoying!

[bronsonp4htdude123455]

Check your browser extensions, and do a quick registry look, to see if anything is still in there. Sometimes these things have to be manually removed. Search protect is especially annoying!

thank you i didnt even think about checking my bowser extensions!!!!

[beebskadoo]

thank you i didnt even think about checking my bowser extensions!!!!

Let me know of the results!

Check every browser!

[bronsonp4htdude123455]

Check your browser extensions, and do a quick registry look, to see if anything is still in there. Sometimes these things have to be manually removed. Search protect is especially annoying!

i checked my extensions and my registry i cant find anything any other ideas? me being a noob i kinda just want to do a format reinstall but i have 700 gb worth of movies games etc hate to reinstall it all!

[techguru]

also..scan with malwarebytes and superantispyware

[techguru]

next time you let him on the pc..make sure you have sandboxie running on all your browsers 

[beebskadoo]

i checked my extensions and my registry i cant find anything any other ideas? me being a noob i kinda just want to do a format reinstall but i have 700 gb worth of movies games etc hate to reinstall it all!

is there any odd programs installed on your machine? have you checked through the list of installed programs?

[beebskadoo]

also..scan with malwarebytes and superantispyware

Yes, getting a "second opinion" is key

Trend Micro has a free scan available if you install it also OP

[bronsonp4htdude123455]

also..scan with malwarebytes and superantispyware

i did

[bronsonp4htdude123455]

is there any odd programs installed on your machine? have you checked through the list of installed programs?

none that i can see i only use it for netflix and steam gaming...

[bronsonp4htdude123455]

Yes, getting a "second opinion" is key

Trend Micro has a free scan available if you install it also OP

ill try that

[bronsonp4htdude123455]

also something to add to the differential diagnosis just got a random cold reboot... no blue screen no crash report no nothing as if nothing happend .... wow guys sorry i suck today ! lol

[beebskadoo]

also something to add to the differential diagnosis just got a random cold reboot... no blue screen no crash report no nothing as if nothing happend .... wow guys sorry i suck today ! lol

Yeah, their is definitely something going on lol

[bronsonp4htdude123455]

Yeah, their is definitely something going on lol

just grabbed iobit uninstaller off my works network share and i found trovi bs and search protect i removed them restarded ran some quick scans came up clean and now its randomly trying to install pc optimizer pro.... yea he isnt going to be using my rig anytime soon!

[bronsonp4htdude123455]

update doing a F/R because i found the wonderfull cryptowall 3.0 thanks for the help guys!!!!

[beebskadoo]

just grabbed iobit uninstaller off my works network share and i found trovi bs and search protect i removed them restarded ran some quick scans came up clean and now its randomly trying to install pc optimizer pro.... yea he isnt going to be using my rig anytime soon!

Yeah, there is an installer on your machine somewhere. Check if it installed Cnet installer by any chance.

Trovi is bad

Search protect is bad and is often bundled in with other baddies

PC optimizer pro is bad too

what the fuck did he do to your PC?

 

Also I see these every single day at work, it's fairly common. People clicking popups or downloading shit from CNET is the most common thing.

[beebskadoo]

update doing a F/R because i found the wonderfull cryptowall 3.0 thanks for the help guys!!!!

ouch...

Yeah...kill your brother.

[bronsonp4htdude123455]

Yeah, there is an installer on your machine somewhere. Check if it installed Cnet installer by any chance.

Trovi is bad

Search protect is bad and is often bundled in with other baddies

PC optimizer pro is bad too

what the fuck did he do to your PC?

 

Also I see these every single day at work, it's fairly common. People clicking popups or downloading shit from CNET is the most common thing.

same here i remove them all day every day and im not sure i was gone for 2 days and i said he could use it...

[CalebTheEternal]

my little brother used my pc and was playing around ( i thought he was on steam) ended up getting malware which i promptly removed and i ran super anti spy ware malware bytes adwcleaner and finished it up with rouge and rkill so everything is cleaned up or so i though i keep getting popup's for installing search protect and i removed it with rouge killer and it keeps coming back ideas? i"ve been working for a tech support shop for about 2 months and never seen anything like this because it keeps coming back and ive only been using netflix / steam and i also checked ms config and checked the start up stuff i got nothing at this point.

Adware. Look up adware removal

[bronsonp4htdude123455]

ouch...

Yeah...kill your brother.

yea i also noticed my browser history is cleared ..... i hope this isnt from him watching Pr0n on my figgin computer!

[beebskadoo]

yea i also noticed my browser history is cleared ..... i hope this isnt from him watching Pr0n on my figgin computer!

ugh...

[bronsonp4htdude123455]

alright good night guys starting the F/R now!

[beebskadoo]

alright good night guys starting the F/R now!

best of luck <3