Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 637
  • Last Modified:

Virus, Spyware, Malware? Can't uninstall AVG 2011 etc..

I have a pc here that I can not uninstall AVG 2011 free edition. I scanned the PC with Malwarebytes (found 2 Trojans Fake AV) and found nothing with SuperAntiSpyware. When I would try to download other programs(HighJackThis etc.) the AVG 2011 would say that the file was infected with a virus and was deleted. This person even paid for AVG 2013 and the disk that came in the mail was supposedly infected with a virus. What type of bug on a Vista desktop would make this happen. I tried uninstalling AVG 2011 and it does nothing. I even downloaded the uninstall AVG 2011 program and it said it was infected with a virus and was deleted. Can some of you experts lead me where to go from here? I don't know what else to try. PC is a 2008 HP Pavilion a9614f running Vista 32 bit.
0
bbbb2
Asked:
bbbb2
4 Solutions
 
tailoreddigitalCommented:
Will it restore back?  This would only affect installed software, not your files.
0
 
bbbb2Author Commented:
I restored back to a time that they said it was working right  6-8-13. It took a while but ot did restore. Maybe they are wrong about when the infection set in and I need to go back a little further?
bbbb2
0
 
tailoreddigitalCommented:
I would try back a bit further.
0
Who's Defending Your Organization from Threats?

Protecting against advanced threats requires an IT dream team – a well-oiled machine of people and solutions working together to defend your organization. Download our resource kit today to learn more about the tools you need to build you IT Dream Team!

 
aadihCommented:
Try also (even after restoring):  Boot up and scan with an antivirus rescue disk (free) from a well known antivirus vendor (e.g, Avira, Comodo, Bitdefender, etc.)

At the least, try scanning for a rootkit:

(1) TDSSKIller: < http://www.bleepingcomputer.com/download/tdsskiller/ >

(2) MBAM AntiRootkit: < http://www.malwarebytes.org/products/mbar/ >
0
 
nobusCommented:
slave the disk to a working- and protected system, and run the scan from there
or scan from a boot cd : http://windows.microsoft.com/en-gb/windows/what-is-windows-defender-offline
0
 
☠ MASQ ☠Commented:
Sounds like you have a virut variant infecting your system.  If so everytime you try to run an .exe file virut will try to write code to it and AVG will flag it.  The problem with virut is as a virus program it is badly written and also injects a load of "harmless" code into files as well.  The end result is the more that you run the more files that get infected/damaged, mainly the Windows system files.


Virut is one of the few infections where my advice is unless you've caught this immediately don't bother repairing, Just flatten the partiton and reinstall or use a recovery partiton to rebuild.  You can off load data as virut only targets .exe .asp. html and .scr files and only when the partition it is in is active, but as nobus says make sure if you are slaving the drive that the host machine is protected as normally it arrives with a host of other nasties.

Some virut background:
http://www.symantec.com/security_response/writeup.jsp?docid=2007-041117-2623-99



AVG's removal tool (if you want to try a clean up) follow instructions exactly!
http://free.avg.com/gb-en/remove-win32-virut
0
 
Sudeep SharmaTechnical DesignerCommented:
Almost all the vendors have Virut cleaner available, you could try other cleaners too if required and do post the logs once the tools are finished running.

http://support.kaspersky.com/2735?el=88446

http://www.symantec.com/security_response/writeup.jsp?docid=2009-022016-4444-99

Sudeep
0
 
younghvCommented:
I've requested that this question be closed as follows:

Accepted answer: 168 points for nobus's comment #a39261638
Assisted answer: 166 points for SSharma's comment #a39271472
Assisted answer: 166 points for MASQUERAID's comment #a39262271

for the following reason:

This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0
 
bbbb2Author Commented:
agree with
0

Featured Post

Get your problem seen by more experts

Be seen. Boost your question’s priority for more expert views and faster solutions

Tackle projects and never again get stuck behind a technical roadblock.
Join Now