Question

Q: Hidden malware has taken over my account IP address and physical location. Help.

Have two laptops one 20 days old with windows 8.1 discovered in recent activity page foreign IP address and foreign location as well. Have run several malware programs including Microsoft Safety Scan no help. Changed password, no help, Any advice.

Answer

A:

http://windows.microsoft.com/en-US/windows/outlook/hacked-account

What detected - MalSign.Generic.834?

Try Hitman Pro Trial Version: http://www.surfright.nl/en/hitmanpro This program may be run from a flash drive.

And/or

Try TDSS Killer: http://www.bleepingcomputer.com/virus-removal/remove-tdss-tdl3-alureon-rootkit-using-tdsskiller TDSS Killer may be run from a flash drive.

 

You may wish to download (on an uninfected PC) one or more of the following rescue scanners to create bootable media to scan the infected PC (list courtesy of forum member, GreginMich):

http://windows.microsoft.com/en-US/windows/what-is-windows-defender-offline

http://support.kaspersky.com/us/viruses/rescuedisk

http://www.f-secure.com/en_EMEA-Labs/security-threats/tools/rescue-cd/

http://www.bitdefender.com/support/How-to-create-a-BitDefender-Rescue-CD-627.html

http://www.avira.com/en/support-download-avira-antivir-rescue-system

http://www.avg.com/us-en/avg-rescue-cd-download

http://www.freedrweb.com/livecd/

http://www.superantispyware.com/portablescanner.html

http://support.kaspersky.com/faq/?qid=208283363

http://www.eset.com/int/download/utilities/detail/family/239/

Each rescue scanner will miss things – because none of them will have a perfectly complete and up-to-date set of definitions; so you might need to use several of these rescue scanners, or something like the Shardana Antivirus Rescue Disk Utility, which creates a custom bootable CD or flash drive that includes multiple rescue scanners:

http://www.sarducd.it/ -- be sure to decline all of the additional junk being offered when you install the download for SARDU. I tested this install recently and the first offer was for the hated and difficult to remove Delta Search Toolbar.

Another boot CD (similar to Shardana) to consider is Hiren's Boot CD.

You can also  start here - https://support.microsoftsecurityessentials.com/ and select the link that says - I think my computer is infected. Options will vary by region, but phone support leads you to Microsoft Answer Desk (http://www.answerdesk.com/) in the US at this time. After an initial free consultation, a fee will be charged for assistance, based on the details of the case.

This web site - http://www.bleepingcomputer.com- contains details for many of the common infections, often immediately after they began to appear in the wild, and instructions are provided for how to remove the infections using their malware removal guides. They also have forums where you can seek help from people who specialize in malware removal.

This may also be helpful - How to get rid of malware:

http://answers.microsoft.com/en-us/windows/forum/windows_vista-security/how-to-get-rid-of-malware/ba80504b-61f1-4d71-960f-b561798b7b42

-steve

^_^
Windows Insider MVP (Security), Moderator Microsoft Community

Did this solve your problem?

Sorry this didn't help.

1 person was helped by this reply



 
Question Info

Views: 517 Last updated: May 16, 2018 Applies to: