The Mother Board

Motherboards.org forums. Free tech support, motherboard ID, and more.
It is currently Thu Sep 20, 2018 6:49 pm

All times are UTC - 8 hours




Post new topic Reply to topic  [ 5 posts ] 
Author Message
PostPosted: Thu Dec 29, 2016 1:25 pm 
Offline
Black Belt
Black Belt

Joined: Mon Feb 25, 2002 1:01 am
Posts: 918
Location: The Great State of Ohio
Hilly Ho! And Happy Holidays to you all ... wellsir ... My AMD rig picked up some nasty malware from some website, that kept installing apps I didn't want even after uninstalling them. As soon as one was uninstalled more would install and reinstall. I had to disconnect from the net to uninstall and stop it from reinstalling again.

My browser would keep opening while trying to uninstall to sites I didn't want to go do. I ran Malwarebyte while offline and that got rid of most of it. No more browsers popping up going to websites, or reinstalling software I didn't want.

However I'm having a problem with my system sound where there is this constant clicking and scratching noise, and there are 10 unknown sound apps all marked "abc". Malwarebyte couldn't get rig of it. I installed super anti-spyware and ran it ... problem still there. I ran a Kaspersky TDSKiller program and it didn't help either.

Any way to uninstall those apps from the volume mixer or will it have to be removed with some kind of malware software? Thanks for reading my post. :)

_________________
Main Rig_Intel i7 4770k@3.50
ECS H87H3-WM Ver1
16Gb DDR3 1600
Evga GTX 1050Ti GPU
WD100000 SATA 7200RPM
Seagate 1TB SATA 7200RPM
Corsair CX750M
Win7 Ultimate x64
Rig2_AMD FX8120
GIGABYTE GA-M68MT-S2 Mobo
4Gb DDR3 1600
ZOTAC GeForce GTX 550TI
Seagate 1TB SATA 7200RPM
WD100000 SATA 7200RPM
Rosewill M650
Win7 64


Top
 Profile  
Reply with quote  
PostPosted: Thu Dec 29, 2016 4:22 pm 
Offline
Mobo-fu Master
Mobo-fu Master

Joined: Wed Nov 12, 2003 11:57 am
Posts: 20860
Location: 07438
Turning off the 'restore' feature when cleansing a system is assurance that the malware should be gone. Do a restart or two after, to ensure a clean system. Then enable the 'restore' feature.
If you don't turn off that 'restore' feature, Windows will undo all your work on the next restart!
Sometimes, a really nasty bit of malware lodges in the main Registry, and editing it out is the only choice.
Also do a global search on the system for any remnants of a program folder or other infected locations.
Try running Hijack This and do a browse only. If unsure of what to kill off, post results here and get suggestions.
http://www.majorgeeks.com/files/details ... kthis.html

_________________
F@H.. to solve mankind's maladies.. in our lifetimes!


Top
 Profile  
Reply with quote  
PostPosted: Sat Dec 31, 2016 10:01 am 
Offline
Black Belt
Black Belt

Joined: Mon Feb 25, 2002 1:01 am
Posts: 918
Location: The Great State of Ohio
Wellsir ... I found out what is causing the clicking sounds. I followed your advise Karl and disabled restore. I ran malwarebyte and super anti-spyware both free editions, but still the problem persisted. I used the system tools section in SAS that is for exploring and repairing the PC. I used the system investigator under the system tools and found some files that didn't belong ... touristic.exe and adware.exe. SAS showed me where those files were. I tried to delete them, but I could not because it was running.

I had to go into the task manager open the process tab and found the file(s) and had the task manager end them. Once I did that I deleted it all and the noise stopped. I used a registry cleaner, then rebooted the machine. Turned the restore back on, but as I was typing this the noise came back. Open the volume mixer and there were two more of those "abc" boxes. At least all 10 didn't come back. I went back into the task manager and saw more of the touristic.exe files running. I was able to right click on that file name and was shown where it was located. Went there ... ended the process in the task manager, deleted the files, and the sound went away again. Whether it will come back again ... I don't know. But if it does I will follow the same procedure. This was a very nasty malware and takes time to get rid of. :roll:
Happy New Year ... :D

_________________
Main Rig_Intel i7 4770k@3.50
ECS H87H3-WM Ver1
16Gb DDR3 1600
Evga GTX 1050Ti GPU
WD100000 SATA 7200RPM
Seagate 1TB SATA 7200RPM
Corsair CX750M
Win7 Ultimate x64
Rig2_AMD FX8120
GIGABYTE GA-M68MT-S2 Mobo
4Gb DDR3 1600
ZOTAC GeForce GTX 550TI
Seagate 1TB SATA 7200RPM
WD100000 SATA 7200RPM
Rosewill M650
Win7 64


Top
 Profile  
Reply with quote  
PostPosted: Sat Dec 31, 2016 3:38 pm 
Offline
Mobo-fu Master
Mobo-fu Master

Joined: Wed Nov 12, 2003 11:57 am
Posts: 20860
Location: 07438
Even the best and most secure sites can have third-party cookies that throw ads in your face.. insisting you "NEED" this or that. Using the [X] box to close the pop-up can give you a dose of malware. Safest is to just close the app or window from the task bar. A weak or out of date firewall can let those nasty bits through too.
That 'adware.exe' can have associated files in its nasty web. And can lodge in the main Registry. Monitors your browsing habits, inundates you with ads and other problems.
Whatever version of browser used, set your privacy level by ticking the box for 'no third-party cookies' or 'do not track me'.
This WIKI link may help in cleansing it from your system.. http://www.wikihow.com/Remove-Adware-Manually

_________________
F@H.. to solve mankind's maladies.. in our lifetimes!


Top
 Profile  
Reply with quote  
PostPosted: Mon Jan 02, 2017 7:29 am 
Offline
Black Belt
Black Belt

Joined: Mon Feb 25, 2002 1:01 am
Posts: 918
Location: The Great State of Ohio
Wellsir ... after the second cleaning I didn't have any more trouble. Thanks for your posts. Mark this one as problem solved. :D

_________________
Main Rig_Intel i7 4770k@3.50
ECS H87H3-WM Ver1
16Gb DDR3 1600
Evga GTX 1050Ti GPU
WD100000 SATA 7200RPM
Seagate 1TB SATA 7200RPM
Corsair CX750M
Win7 Ultimate x64
Rig2_AMD FX8120
GIGABYTE GA-M68MT-S2 Mobo
4Gb DDR3 1600
ZOTAC GeForce GTX 550TI
Seagate 1TB SATA 7200RPM
WD100000 SATA 7200RPM
Rosewill M650
Win7 64


Top
 Profile  
Reply with quote  
Display posts from previous:  Sort by  
Post new topic Reply to topic  [ 5 posts ] 

All times are UTC - 8 hours


Who is online

Users browsing this forum: No registered users and 2 guests


You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum

Search for:
Jump to:  
Powered by phpBB® Forum Software © phpBB Group