PDA

View Full Version : OT Security Shield Virus



recoilless
12-15-2010, 09:38 PM
Anybody familiar with this. Unfortunately, just started getting popups today. I'm running Norton 360 but not sure about the extent of what I need to do

KiddZimaHater
12-15-2010, 09:41 PM
That one got me a few years ago. I had to take my computer in and have it professionally removed. :mad:

recoilless
12-15-2010, 09:49 PM
That one got me a few years ago. I had to take my computer in and have it professionally removed. :mad:

I've been doing a little research (in between pop ups) trying to decipher the uninstall processes that show up. Problem is, I'm not sure which ones are legit or not.

squirrel
12-15-2010, 09:58 PM
for $89 Mcaffee will work on you machine remotely and fix it. They also stand behind the work for 5 days just incase it was not all gotten. You might want to boot in safe mode when visiting their site or hook up on a clean machine to pass the credit card info.

recoilless
12-15-2010, 10:36 PM
I ran both a quick scan and full scan on Norton and it detected nothing even though the f#($ing pop ups come up every minute.
This stuff drives me crazy.
I'm going to drop the laptop off at our computer guru's place tomorrow. I hope it works out alright. I'm going to be skiing in Breckenridge starting Friday. That's the good news.

J Tiers
12-15-2010, 10:47 PM
Malwarebytes, and Spybot Search and Destroy, used alternately, can often get rid of it.

You have to be tricky, it won't let you visit those sites.

bobw53
12-15-2010, 11:40 PM
Those little "fake" security things that pop up from time to time. They aren't that hard to get rid of. I'm not a computer expert, though I do know just enough to be dangerous. To me and probably to you if you take my advice.

Fire it up in safe mode, delete your anti-virus software. Download MalWareBytes (free version), run the really long scan. System restore, re-download fresh version of Antivirus software, install, scan. And done.

Its worked for me a few times and quite the number of times on my girlfriends computer (she's a downloader and toolbar collector). Takes probably a few hours at most and she's good as new.

rustbucket
12-16-2010, 12:33 AM
Good advice from Bob. The sooner you take action the better.

Alternatively, you can try a scan from this site: http://housecall.trendmicro.com/

If you identify what bug it is you've got, Norton or other folks often make removal tools for it specifically.

lbhsbz
12-16-2010, 12:38 AM
Reboot in safe mode and run malwarebytes.

fishfrnzy
12-16-2010, 12:45 AM
+1 for Malwarebytes. That worked for me when I had that crap. Had to run it a few times though. The main thing is to NOT click on the pop up to have it run the scan/scam for you. Then it detects a bunch of threats that aren't there. That's when you got problems.

CCWKen
12-16-2010, 12:48 AM
The next thing you should do is dump that Norton and get one of the better AV packages. Norton is on the front line for hackers and it's often invalidated. There's lots of free AVs out there. I won't suggest one because that will just start an argument or rash of worthless "it works for me" posts but there's one that stands above all the others in "most recent" tests (October, 2010). And the best part of it is that it's FREE!

As with any good AV software, you MUST update it daily or let it run under auto update.

mf205i
12-16-2010, 01:00 AM
First, I have been told that its not a virus, somebody allowed it. That is why the virus scans wonít fix it.
I was not able to remove it from my friends or my sonís computer, but I had some success by stopping it from starting at boot. START RUN type SERVICES.MSC and hit OK. Find it, set it to manual and turn it off.
Best of luck, Mike

jugs
12-16-2010, 02:34 AM
Its worked for me a few times and quite the number of times on my girlfriends computer (she's a downloader and toolbar collector). Takes probably a few hours at most and she's good as new.

That's nice to know, but what about the computer :confused:

john
:)

recoilless
12-16-2010, 07:07 AM
Those little "fake" security things that pop up from time to time. They aren't that hard to get rid of. I'm not a computer expert, though I do know just enough to be dangerous. To me and probably to you if you take my advice.

Fire it up in safe mode, delete your anti-virus software. Download MalWareBytes (free version), run the really long scan. System restore, re-download fresh version of Antivirus software, install, scan. And done.

Its worked for me a few times and quite the number of times on my girlfriends computer (she's a downloader and toolbar collector). Takes probably a few hours at most and she's good as new.

I wasn't aware of this step

radkins
12-16-2010, 09:33 AM
I just got rid of this one myself and have removed it from a friend's computer twice, his had a different name (Security tool) but was the same stinkin thing. Simple to do really and you don't even have to do it in safe mode if you have RKill installed, if you don't you should! RKill can be used to shut the damn thing off until it can be uninstalled.


Here is a step-by-step tutorial on removing that rogue program along with free software you might need.



www.bleepingcomputer.com/virus-removal/remove-security-shield

Plain ol Bill
12-16-2010, 06:40 PM
Do a restore just beyond the time you got it. It will still be in the computer but yoiu won't know it.

SteveF
12-16-2010, 07:24 PM
Another tool I've found is very good at removing viruses and such is Microsoft's and it is also free.

http://www.microsoft.com/downloads/en/details.aspx?FamilyID=ad724ae0-e72d-4f54-9ab3-75b8eb148356&displaylang=en

Steve.

Black_Moons
12-16-2010, 09:52 PM
You might also consider telling your credit card company/bank your card may of been compermised if you do ANY online banking/purcesses/etc, And have them send you a new card/number, Or at the very least put your card under watch.

radkins
12-17-2010, 09:01 AM
Do a restore just beyond the time you got it. It will still be in the computer but yoiu won't know it.


Nope, won't work I tried that and it made no difference at all. The plan was to try to stop it so I could remove it but restore had no effect on the thing. This time was on my buddies computer and he didn't have RKill so I used a thumb drive to transfer it from my computer to his. With RKill it usually takes several attempts but it will shut the rouge program down so that Malwarebytes and/or Spybot Search&Destroy can be downloaded or updated so that the rouge can be removed, quite simple really since the malware programs do most of the work.

gnm109
12-17-2010, 11:44 AM
My brother picked up the Security Shield problem on one of his several computers last week. It kept popping up and whenever he used Google, for example, it would redirect him to a particular site.

He conferred with a friend who works in computers and came up with this fix, which worked for him. YMMV.

(1) Click START>RUN> the type in "C:\\windows\system32\drivers\etc\hosts"
(2) Click Enter and, when prompted, open the HOSTS file in either Notepad or Wordpad.
(3) Delete all of the lines of IP addresses in the next document except for "127.0.0.1 localhost"
(3) Save hosts file and restart.

If you find several items of IP numbers other than localhost in your hosts file, then this is almost definitely your problem and it will be fixed right away. If not, then this is probably not the issue, but it's worth a try.

cuemaker
12-17-2010, 12:00 PM
I second Malware bytes...

But I havent run any antivirus for at least 3 yrs now on my machine and have Avira on my wifes..

Things I have learned without having any protection..

1. My wifes computer is the one that my kids and wife tend to download things onto (games, videos, etc) and its the one that gets messed up with crap. Examples.. stupid tool bars, fake security stuff, programs that run and run the computer, etc... A scan with malware bytes fixes all issues..

2. My unprotected computer gets secondary use by the kids and I do not have any issues... But I dont really DL anything of interest though and games occasionaly get DL... but its primary use is web brosing, spreed sheets and 3 on the net games (cs, l4d and wizard 101)

So what have I learned? Its no the quality of the condom that protects you from nasty bugs but the quality of the girl you sleep with....

gnm109
12-17-2010, 12:06 PM
I second Malware bytes...

But I havent run any antivirus for at least 3 yrs now on my machine and have Avira on my wifes..

Things I have learned without having any protection..

1. My wifes computer is the one that my kids and wife tend to download things onto (games, videos, etc) and its the one that gets messed up with crap. Examples.. stupid tool bars, fake security stuff, programs that run and run the computer, etc... A scan with malware bytes fixes all issues..

2. My unprotected computer gets secondary use by the kids and I do not have any issues... But I dont really DL anything of interest though and games occasionaly get DL... but its primary use is web brosing, spreed sheets and 3 on the net games (cs, l4d and wizard 101)

So what have I learned? Its no the quality of the condom that protects you from nasty bugs but the quality of the girl you sleep with....


I ran without protection for a long time but got caught by a trojan horse virus and had to reformat and reload all of my backup about a year ago.

Now I use the Microsoft Security Essentials and it seems to keep things working. It's notified me recently of several virus files that it quarantined and I simply deleted them.

I used to have Norton but it slowed the computer down so badly that I quit using it.

recoilless
12-17-2010, 01:24 PM
Update: Ran Malwarebytes and seems to be working. I've got to get it done today, though, snowy mountains and vodka in B-ridge, CO are calling my name.