Turn on thread page Beta

I need help removing this malware from my laptop watch

Announcements
    • Thread Starter
    Offline

    0
    ReputationRep:
    Hi,

    I have found a malware on my system. It wants to access a 'geoffresmith.net...' My anti-virus is blocking access to the website but I think it is interfering with my broadband.

    Anti-virus can't find the file that is trying to access the website. I have Quick Heal Total Security 2011.

    Any suggestions??
    Offline

    0
    ReputationRep:
    http://www.malwarebytes.org/

    ^thats a good link
    Offline

    15
    ReputationRep:
    1. Download Malwarebytes.
    2. Stop using shifty porn sites.
    • Thread Starter
    Offline

    0
    ReputationRep:
    *geoffresmith.info...
    Offline

    13
    ReputationRep:
    I had what can be described as a severe infection of malware.

    Eset is also a good anti-virus, helped clean my system very quickly, that's a download.

    MBAM is also very good.

    I used those two, running 2 scans a day on each for a week and cleaned my system totally.
    Offline

    4
    ReputationRep:
    (Original post by sillynugget)
    Hi,

    I have found a malware on my system. It wants to access a 'geoffresmith.net...' My anti-virus is blocking access to the website but I think it is interfering with my broadband.

    Anti-virus can't find the file that is trying to access the website. I have Quick Heal Total Security 2011.

    Any suggestions??
    Delete all your browsing history, cookies etc and if that doesn't work, Do a system restore to the last known date it was fine.
    Offline

    9
    ReputationRep:
    It appears to be associated with Leaseweb (from Netherlands):

    http://amada.abuse.ch/?search=geoffresmith.name

    But it isn't reported as causing the problems you mentioned:

    http://www.siteadvisor.com/sites/leaseweb.com/msgpage
    Offline

    13
    ReputationRep:
    (Original post by sillynugget)
    Hi,

    I have found a malware on my system. It wants to access a 'geoffresmith.net...' My anti-virus is blocking access to the website but I think it is interfering with my broadband.

    Anti-virus can't find the file that is trying to access the website. I have Quick Heal Total Security 2011.

    Any suggestions??
    Install malwarebytes trial and update the program. Install ESET (don't know if they have a trial that you can use, take a look on their website. Or get some other antivirus) Install CCleaner. Use google to find all of these programs.

    Go into safe mode (restart your computer and constantly press f8 until you get to a screen with a bunch of white text, select safe mode)

    Log in using the admin profile, not your own usual one

    Run both malwarebytes and antivirus. Make sure you run malware first, then the Antivirus.

    When both are done and all infections are removed, re-scan again just to make sure.

    Clear all your browsing history and the internet cache using CCleaner (google it, its free.) In the cleaner section of the program, be sure use it for both tabs labelled "windows" and "applications"

    Then run the registry tool in CCleaner, remove all registry keys. If it asks for a backup, do so.

    Restart computer and log in as usual.

    If there is still an issue, post here!

    EDIT: I know its really long winded, but it will take 3-5 hours max depending on your laptop. Leave it on overnight if you have to! There usually isn't a quick way to get rid of **** like this, malware is annoying and persistant.
    • Thread Starter
    Offline

    0
    ReputationRep:
    (Original post by H.JJJ)
    Install malwarebytes trial and update the program. Install ESET (don't know if they have a trial that you can use, take a look on their website. Or get some other antivirus) Install CCleaner. Use google to find all of these programs......There usually isn't a quick way to get rid of **** like this, malware is annoying and persistant.

    Okay, I'll try that. I ran the malwarebytes on its own, in normal mode but it hasn't found the virus/malware. However, it too, like my antivirus software is blocking access to the webiste. Malwarebytes is blocking what seems to be an IP address however: 178.208.83.18.

    I'll download the free trial of ESET and follow your instructions and see how that goes. Thank You.
    Offline

    13
    ReputationRep:
    (Original post by sillynugget)
    Okay, I'll try that. I ran the malwarebytes on its own, in normal mode but it hasn't found the virus/malware. However, it too, like my antivirus software is blocking access to the webiste. Malwarebytes is blocking what seems to be an IP address however: 178.208.83.18.

    I'll download the free trial of ESET and follow your instructions and see how that goes. Thank You.
    Try it in safemode. Safe mode is just the core basic services running in the background and usually stops any other junk from loading. Usually, this junk won't pop up on scans in normal mode as the program itself avoids detection.
    Offline

    13
    ReputationRep:
    I couldn't boot my comp in anything but safe mode, when MBAM didn't find anything, ESET did. I no computer expert but I have always beaten any problems on my computer.
 
 
 
Poll
Should Banksy be put in prison?

The Student Room, Get Revising and Marked by Teachers are trading names of The Student Room Group Ltd.

Register Number: 04666380 (England and Wales), VAT No. 806 8067 22 Registered Office: International House, Queens Road, Brighton, BN1 3XE

Write a reply...
Reply
Hide
Reputation gems: You get these gems as you gain rep from other members for making good contributions and giving helpful advice.