First symptom was that all google search result was redirected to some weird website. I had to copy/paste the URL to another tab in order to go to the site. Used spybot S&D to clean some spywares, and the symptom was gone. Few hours later, my AVG stopped getting updates and the first symptom came back. Spybot can't find anything this time.
Tried to scan using AVG, but it does not find anything either. I noticed that the virus definition was not updated, and keep failing to update (update control cannot file be found). So I tried to go to avg.com or grisoft.com to get the updates myself, but was always redirected to 127.0.0.1 (localhost). Can't even use IP to connect there. I tried IE8, firefox and opera with no luck.
So then I went and tried all other free antivirus softwares out there: BitDefender, Combofix, Stinger and still no luck to find any virus/spyware.
When I tried to ping ANY antivirus server: symantec.com, mcafee.com, avg.com ...I always got redirected to 127.0.0.1.
I also checked my HOSTS file and it looked normal. I booted to ubuntu to view the HOSTS file to make sure it's not the virus/spyware that is tricking me.
Currently, whatever is in there broke my XP for good. The keyboard does not work anymore in XP. I am using ubuntu now, and want to use this as my primary OS if not because of all the programs that I have in windows.
Probably one of the antivirus software I used has removed the virus, but cannot undo all of the damages that it has done, or maybe not?
Is there no antivirus software out there that has a solution to this?
Reply 1 : Unable to connect to any antivirus site
Please download Malwarebytes Anti-Malware or alternate download link
* Make sure you are connected to the Internet.
* Double-click on Download_mbam-setup.exe to install the application.
* When the installation begins, follow the prompts and do not make any changes to default settings.
* When installation has finished, make sure you leave both of these checked:
* - Update Malwarebytes' Anti-Malware
* - Launch Malwarebytes' Anti-Malware
* Then click Finish.
* MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
* If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
* On the Scanner tab:
* - Make sure the "Perform Quick Acan" option is selected.
* - Then click on the Scan button.
* The next screen will ask you to select the drives to scan. Leave all the drives selected and click on the Start Scan button.
* The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
* When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
* Click OK to close the message box and continue with the removal process.
* Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
* Make sure that everything is checked, and click Remove Selected.
* When removal is completed, a log report will open in Notepad and you may be prompted to restart your computer. (see Note below)
* The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
* -- Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.
**If you encounter this message:"c:program filesmalwarebytes' Anti-Malwarembamext.dll Unable to register the dll/ocx: RegSvr32 failed with exit code 0x5" Click on ignore mbamext.dll
...
Download and scan with SUPERAntiSpyware Free for Home Users
* Double-click SUPERAntiSpyware.exe and use the default settings for installation.
* An icon will be created on your desktop. Double-click that icon to launch the program.
* If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download and unzip them from here.)
* Under "Configuration and Preferences", click the Preferences button.
* Click the Scanning Control tab.
* Under Scanner Options make sure the following are checked (leave all others unchecked):
Close browsers before scanning.
Scan for tracking cookies.
Terminate memory threats before quarantining.
* Click the "Close" button to leave the control center screen.
* Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
* On the left, make sure you check C:Fixed Drive.
* On the right, under "Complete Scan", choose Perform Complete Scan.
* Click "Next" to start the scan. Please be patient while it scans your computer.
* After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
* Make sure everything has a checkmark next to it and click "Next".
* A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
* If asked if you want to reboot, click "Yes".
* Make sure you are connected to the Internet.
* Double-click on Download_mbam-setup.exe to install the application.
* When the installation begins, follow the prompts and do not make any changes to default settings.
* When installation has finished, make sure you leave both of these checked:
* - Update Malwarebytes' Anti-Malware
* - Launch Malwarebytes' Anti-Malware
* Then click Finish.
* MBAM will automatically start and you will be asked to update the program before performing a scan. If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
* If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
* On the Scanner tab:
* - Make sure the "Perform Quick Acan" option is selected.
* - Then click on the Scan button.
* The next screen will ask you to select the drives to scan. Leave all the drives selected and click on the Start Scan button.
* The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
* When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
* Click OK to close the message box and continue with the removal process.
* Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.
* Make sure that everything is checked, and click Remove Selected.
* When removal is completed, a log report will open in Notepad and you may be prompted to restart your computer. (see Note below)
* The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
* -- Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.
**If you encounter this message:"c:program filesmalwarebytes' Anti-Malwarembamext.dll Unable to register the dll/ocx: RegSvr32 failed with exit code 0x5" Click on ignore mbamext.dll
...
Download and scan with SUPERAntiSpyware Free for Home Users
* Double-click SUPERAntiSpyware.exe and use the default settings for installation.
* An icon will be created on your desktop. Double-click that icon to launch the program.
* If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download and unzip them from here.)
* Under "Configuration and Preferences", click the Preferences button.
* Click the Scanning Control tab.
* Under Scanner Options make sure the following are checked (leave all others unchecked):
Close browsers before scanning.
Scan for tracking cookies.
Terminate memory threats before quarantining.
* Click the "Close" button to leave the control center screen.
* Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
* On the left, make sure you check C:Fixed Drive.
* On the right, under "Complete Scan", choose Perform Complete Scan.
* Click "Next" to start the scan. Please be patient while it scans your computer.
* After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
* Make sure everything has a checkmark next to it and click "Next".
* A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
* If asked if you want to reboot, click "Yes".
Reply 2 : Unable to connect to any antivirus site
I hope this will work fine.
Reply 3 : Unable to connect to any antivirus site
I also get redirected to a go.google if I connect directly on the link off the search page, AND I can't update my avira, malware, I had spybot and superantispyware but I just removed them before this. I had avast and removed it too. I can't connect to any antivirus type sites, like housecall trendmicro, I did get to live.microsoft and I am scanning there. I downloaded the mozilla firefox browser so that I could try connecting that way but it says there is no internet connection (which is also what malware and avira think.
One other thing, I tried to uninstall and then load a new avira but the program is not listed on the add/remove programs page and it has no uninstaller included with it. I see it gives directions to uninstall through the XP add/rem pgms page, but alas, it is not there. I alse tried ccleaner to remove it but same problem. Any advice would be great and I am tracking this link, I hope that is enough to get me back here!!
One other thing, I tried to uninstall and then load a new avira but the program is not listed on the add/remove programs page and it has no uninstaller included with it. I see it gives directions to uninstall through the XP add/rem pgms page, but alas, it is not there. I alse tried ccleaner to remove it but same problem. Any advice would be great and I am tracking this link, I hope that is enough to get me back here!!
Reply 4 : Unable to connect to any antivirus site
Just wanted to add that microsoft.live scan found nothing. Absolutely nothing. I tried to unpack my spybot S&D but since it can't connect to the internet, it won't install. So basically there is a huge block between antiviral anything and the internet. I am out of ideas so I sure hope someone here has a suggestion. I do have another computer NOT infected, so maybe I should be downloading something there and installing it? Open to suggestions. I could post a HJT log if it will help.
Reply 5 : Unable to connect to any antivirus site
On a friend or family member's computer, download the Malwarebytes installer and update files from the links below, copy them to a CD or flash drive, then transfer the files to the problem machine and use them.. I use the sites below to download the installer file and the manual updater:
Once downloaded, rename the program installer "mbam-setup.exe" file to something else like "Gogetum.exe", then copy the installer file and the update file to a CD or flash drive.. Transfer the file to the problem machine, then install the "Gogetum.exe" file, then run the update to get the program current.. After that, run a full system scan and delete anything it finds.
Malwarebytes Download Link (Clicking on the links below will immediately start the download dialogue window.)
http://www.besttechie.net/tools/mbam-setup.exe
Malwarebytes Manual Updater link
http://www.malwarebytes.org/mbam/database/mbam-rules.exe
Hope this helps.
Grif
Once downloaded, rename the program installer "mbam-setup.exe" file to something else like "Gogetum.exe", then copy the installer file and the update file to a CD or flash drive.. Transfer the file to the problem machine, then install the "Gogetum.exe" file, then run the update to get the program current.. After that, run a full system scan and delete anything it finds.
Malwarebytes Download Link (Clicking on the links below will immediately start the download dialogue window.)
http://www.besttechie.net/tools/mbam-setup.exe
Malwarebytes Manual Updater link
http://www.malwarebytes.org/mbam/database/mbam-rules.exe
Hope this helps.
Grif
Reply 6 : Unable to connect to any antivirus site
Just want to give an update on my situation. I just gave up using windows altogether not long after my first post.
I have been using Ubuntu and has been very satisfied with it. So far, I can do whatever I was able to do in Windows in there.
Thanks for all the suggestion though. But, the biggest problem is that you have to update the antivirus definition before the malware can be found and removed. However, the malware has effectively block any connection to any antivirus update server. Thus, no update can be done.
I have been using Ubuntu and has been very satisfied with it. So far, I can do whatever I was able to do in Windows in there.
Thanks for all the suggestion though. But, the biggest problem is that you have to update the antivirus definition before the malware can be found and removed. However, the malware has effectively block any connection to any antivirus update server. Thus, no update can be done.
Reply 7 : Unable to connect to any antivirus site
good luck with your new system. I may be right behind you. since my last post I tried insalling combofix, as per a suggestion (from another computer) and the updated malwarebytes. Then I shut it off and it won't turn back on again. I read it could be related to the window sp2 that I downloaded so I could qualify to post on a tech website. It just boots to where the desktop would load and cycles off and on. I can get into setup (del) and safemode (f8) but it doesn't help. I tried booting last good config, it made no change. I disabled auto shut down on failure and determined the fatal system error 0xc0000135 (0x00000000) (0x00000000) was the code. I have this laptop to go online with luckily. i am considering dropping off the thing at a computer repair store but I live in a small town and I am not sure about the tech level out here. Any suggestions? The XP disc is IN the computer as I had the whole thing built 5 years ago by a computer programming friend and that's where he put it. Knowing that I lose discs.
Thanks for your time!
Thanks for your time!
Reply 8 : Unable to connect to any antivirus site
...it becomes faster and more effective to simply format and reinstall everything from scratch.
Hope this helps.
Grif
Hope this helps.
Grif
Reply 9 : Unable to connect to any antivirus site
I had the same issue for a week and at last I tried Malwarebytes and followed the instruction...it worked!!!
I was not able to browse malwarebytes and other antivirus sites. I downloaded malware from other system and installed. After installing, I was not able to run malware application. I tried renaming the application it doesn't work!!! then I copied malware folder and renamed malware folder name and application name....then I was able to run the application
. It perfectly removed trojan virus. After an effort I am back to normal...
I was not able to browse malwarebytes and other antivirus sites. I downloaded malware from other system and installed. After installing, I was not able to run malware application. I tried renaming the application it doesn't work!!! then I copied malware folder and renamed malware folder name and application name....then I was able to run the application
. It perfectly removed trojan virus. After an effort I am back to normal...Reply 10 : Unable to connect to any antivirus site
I hope someone can help. I was infected with a virus or viruses. I looks like one called itself Security Guard the other Protection Systems. I have Windows XP 5.1 sp3, I was running AVG. Once I was infected I couldn't open any antivirus software. I shut down. When it came back up a had one desktop icons only my background, no task bar, crtl-alt-delete did nothing just got to look at the pretty picture. Shutdown started in safe mode, black screen nothing else. Finally bootted in safemode with cmd prompt. Was able to get explorer.exe running and could now navigate somewhat. I did some investigating and manually removed corrupt files from registery and folders saw where I should run malaware bytes. Download to thumb drive installed, when you go to run it will not work. I see where it loads mbam.exe but when it goes to run it isn't there. I loade combofix and it ran. I then tried superantispyware it loade and ran, it detect and clean several items. After all that background. It looks like I'm half way clean with the big exception I have no anti virus software installed. I removed AVG with hopes of reinstalling to make it wrong. So all this brings me to my problem. I can not get to any website that has to do with antivirus. I have an internet connection and can naviagate to anything as long as it doesn't have to do with antivirus.
Any ideas of what to do from here?
Any ideas of what to do from here?
Reply 11 : Unable to connect to any antivirus site
You can still do a manual update on avg, by going to the avg site and downloading current definitions, then just direct avg to the directory of the download.
or just reinstall the antivirus again.
or just reinstall the antivirus again.
No comments:
Post a Comment