How can I remove Malware: Smart Defender Pro?
I have a user who has managed to snag a copy of this Smart Defender Pro malware. Pop-ups every few seconds, bogus "Your browser is secure" screens, false threat warnings, the works. The only files I see listed on the system are in her profile under Application Data. I need to know if anyone has idea what reg keys and or files to look for so I can get rid of this thing.
The only info I have found on the web are sites advertising removal tools (always shady). The app is an exact replica of "Virus Remover Pro." After all the bogus literature I have come across, I would rather get some assistance via EE (with all our abundant knowledge!)
I will re-image the machine in the end but I wanted to see if anyone has some additional insight.
The only info I have found on the web are sites advertising removal tools (always shady). The app is an exact replica of "Virus Remover Pro." After all the bogus literature I have come across, I would rather get some assistance via EE (with all our abundant knowledge!)
I will re-image the machine in the end but I wanted to see if anyone has some additional insight.
Alan Hardisty
Have you tried MalwareBytes - www.malwarebytes.org - great free tool and finds all manner of spyware, malware and other nasties.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
with rogue programs like this one , if Malwarebytes did not do the trick as advised above, you can jump rightaway to using Combofix
also please show us the logs form Hijack this, Combofix & MBAM
also please show us the logs form Hijack this, Combofix & MBAM
I would try Spybot - Search & Destroy which you can download from:
http://www.safer-networking.org/en/download/index.html
Moatist
http://www.safer-networking.org/en/download/index.html
Moatist
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
The hijackthis logs are very helpful - Thank you for suggesting the very handy utility
Prefer to try and remove threats like this manually without scan utilities or blow the machine away and start over.
Prefer to try and remove threats like this manually without scan utilities or blow the machine away and start over.