Antispyware Soft

[olds]

Got this on a second machine. How are these things getting onto a PC? Shouldn't an antivirus catch them?

 

[Lemon law]

Got this on a second machine. How are these things getting onto a PC? Shouldn't an antivirus catch them?

----------------------------------------------------------------------------------------------------

In a word no, a malware program like antivirus soft is something you prevent from ever getting into your computer by following proper security initial procedures.

Look at removal instructions, http://www.2-spyware.com/remove-antispyware-soft.html

Don't allow proxy server settings in the first place.

Firewalls, HIPs and Host files, process control, limited accounts should be your first line of defense, and your AV should be your last.

 

[olds]

----------------------------------------------------------------------------------------------------

In a word no, a malware program like antivirus soft is something you prevent from ever getting into your computer by following proper security initial procedures.

Look at removal instructions, http://www.2-spyware.com/remove-antispyware-soft.html

Don't allow proxy server settings in the first place.

I already got it off, I was wonder how it got there in the first place.

 

[jkroeder]

An outdated and exploited PDF reader, flash, or java runtime plugin possibly

Of course there's the windows updates and your web browser as well.

 

[leo.m]

Agreed with jkroeder, and also want to mention that these kind of infections usually comes through a free online computer scanning service, which is definitely fake and useless.

Removal of this king of infections is usually complicated process, because the rogue will block any computer program, including security applications.

Regarding to this case, in order to open certain applications that have been blocked by rogue you'll have to kill the main malicious process <random>tssd.exe. Due to the fact that Task Manager is also blocked, the alternative way to kill the process is using cmd. In the command prompt window enter the line
"taskkill /im process_name"
(for example taskkill /im kfqeevotssd.exe).

Note! The string in bold is different in each case of infection.

If that did not help, try renaming taskmgr.exe file as explained in this Antispyware Soft article.

 

[trevor0323]

Yeah not the easiest to rid your computer of. I got it last week while putting in new shocks on my car. I opened a PDF about shock replacement from what I thought would have been a trusted Automotive forum. Came back in the house a few hours latter and it was all over the screen. Could not open programs to get rid of it. Firefox worked in crippled guided hand mode.

I just rebooted and went into safe mode with networking. Launched and updated Malwarebytes, and AVG. Malwarebytes updated but AVG got killed somehow. Malwarebytes found it. However back into regular windows it was still there. Repeated teh process through safe mode 2 more times and on the last time I was able to fix AVG and run a full sweep. Again AVG found nothing but on the 2nd time Malwarebytes found 11 items and on the third it found none.

Back into regular windows now typing and Im pretty sure I have ridded myself of it.

 

[zero koopa]

Regarding to this case, in order to open certain applications that have been blocked by rogue you'll have to kill the main malicious process <random>tssd.exe. Due to the fact that Task Manager is also blocked, the alternative way to kill the process is using cmd. In the command prompt window enter the line
"taskkill /im process_name"
(for example taskkill /im kfqeevotssd.exe).

Note! The string in bold is different in each case of infection.

If that did not help, try renaming taskmgr.exe file as explained in this Antispyware Soft article.

How do i find out what random name it is. I would appreciate all the help I can get. So far Ive downloaded the spyware doctor, ran it in safe mode, updated it and then did not want to buy it since it seemed like the same scam. Ive been running avg free in safe mode to no success. Help please.

 

[Oceandevi]

Olds how did you kill it. I just got this also. No idea how. It blue screens me if I ctl-alt-del.
At this point I have to go into safe mode because normal startup blue screens.

I think it did some proxy crap because malware bytes wont run or update. I did get it to scan once and it found nothing.

 

[olds]

Olds how did you kill it. I just got this also. No idea how. It blue screens me if I ctl-alt-del.
At this point I have to go into safe mode because normal startup blue screens.

I think it did some proxy crap because malware bytes wont run or update. I did get it to scan once and it found nothing.

I never clicked on any part of the pop up. I held in the power button and shut down the box. Then I started in safe mode and set a previous restore point.
I did this because of previous experience with it on another machine.

When my wife got it on her laptop a few months ago, I ended up giving up trying to get it off and just formatted the laptop and reinstalled the OS.

 

[Modelworks]

Get sandboxie and run all your online applications using it. Great for family members that are not sure what they should click on popups. Malware gets into the browser ? Close it, delete sandbox, open browser, less than a minute of work and you are back to a clean system.
http://www.sandboxie.com/

 

[pcgeek11]

An outdated and exploited PDF reader, flash, or java runtime plugin possibly

Of course there's the windows updates and your web browser as well.

This!

I just cleaned one today. To help in the PDF reader on th preferences>> Trust tab turn off the ability to allow non PDF execution.

 

[Oceandevi]

I read on SA forums that some google ads were spreading this. It got into a lot of places.