Windows 8 and 8.1 Forums

Avira Virus and malwarebytes downloads stopped by malware

  1. #1

    Avira Virus and malwarebytes downloads stopped by malware

    My antivirus license expired while the machine was disused for months. Before I could reactivate it, malware invaded:
    a browser address and search bar hijacker: SNAPDO.COM
    I have removed similar ones on another machine, using malwarebytes.
    But now this seems smart enough to abort the downloads of both avira antivirus, and malwarebytes.
    I therefore tried Same effect.
    Any help would be much appreciated!

      My System SpecsSystem Spec

  2. #2

    Posts : 467
    Windows 8 Pro

    1) try booting in safe mode to do the download / install
    2) get someone else/use another PC to download and create a bootable DVD/USB stick with the AV on it.
      My System SpecsSystem Spec

  3. #3

    Yepperz, it would be a good idea to d/l some malware cleaners on another PC. But you may be able to access anti malware sites by going into safe mode as suggested by Wullail.

    I don't know if access to this site will be blocked by the malware, but you can attempt to d/l & stop the processes by running RKill. Do Not reboot after running this program.

    As RKill only terminates a program's running process, and does not delete any files, after running it you should not reboot your computer as any malware processes that are configured to start automatically will just be started again. Instead, after running RKill you should immediately scan your computer using some sort of anti-malware or anti-virus program so that the infections can be properly removed.
    We offer RKill under different filenames because some malware will not allow processes to run unless they have a certain filename. Therefore when attempting to run RKill, if a malware terminates it please try a different filename offered below.
    If you can get RKill to stop the processes on your PC, then you may be able to access the anti malware sites & d/l some tools to take care of this problem from the infected PC.

    Another option you can try is SuperAntiSpyware Portable. It's saved as a .com file with a random name. If you can't get to the site you'll need to d/l it on a clean PC to a flash drive.
    Please note : The scanner is saved under a random filename so that malware infections won't block its execution.
    Another suggested tool would be AdwCleaner.

    AdwCleaner is a program that searches for and deletes Adware, Toolbars, Potentially Unwanted Programs (PUP), and browser Hijackers from your computer. By using AdwCleaner you can easily remove many of these types of programs for a better user experience on your computer and while browsing the web.
    And, Malwarebytes is always a good choice.

    You also have the option of doing a Refresh or a Reset.

    Refresh Windows 8

    Reset Windows 8
    Last edited by Borg 386; 13 Jul 2014 at 10:59.
      My System SpecsSystem Spec

  4. #4

    Avira Virus...

    Thank you Wullail for Safe Mode suggestion. Also X, a moderator - whose message appears to have been now removed.
    Unfortunately, and astonishingly, I was totally unable to get into Safe Mode. Because the system insisted on doing Updates first. As the machine had hardly been used and was idle for the last 8 months, this took a long time, about 15 minutes. But then -- it gave up and showed a 'Failed... Reverting Updates' message for the next 20 minutes!
    The simple method from X-moderator also went nowhere.

    - new reply from Borg 386. Thank you for your multiple suggestions! Very sophisticated and surely one should work! I will now attempt to follow them. Unfortunately this computer IS the reserve computer, only being used because my Windows 7 computer blew up with a wholly different problem! (noted on sevenForums)
      My System SpecsSystem Spec

  5. #5

    I hope you get it sorted out. Let us know.

    I'm going to go ahead & suggest that you also try running TDSSKiller, simply because there has been a rash of rootkits out there & it wouldn't hurt. The scan doesn't take much time & the programs sole purpose is to detect rootkits.

    When running TDSSKiller, launch the program, click on the blue text "Change Parameters" & check the box marked "Detect TDLFS File system." Click OK & then run the scan.

    TDSSKiller Download

      My System SpecsSystem Spec

  6. #6

    I've cleaned SNAPDO recently by booting into "safe mode with networking" and running malwarebytes from a flash drive and NPE (Norton Power Eraser). Good luck!
      My System SpecsSystem Spec

  7. #7

    foiled by system's insistence on updates

    Replying to Borg386, sorry for long delay. Your suggestions about rootkits etc., and from others, all made sense. But alas, now the machine refuses to get past trying, and failing, to finish installing updates! It looks as if I need to start from scratch, which here means installing Windows 8.1. As this is likely to be a hornet's nest, and this is a backup machine, I keep on putting it off...
    Thanks again to everybody for your help
      My System SpecsSystem Spec

  8. #8

    Sometimes starting over is the best thing if your machine is severely compromised. Assuming you had a rootkit, some of them can survive a reinstall unless you wipe the HDD to get rid of the hidden boot partition. Here is a list of drive wipers you can use. Since you are starting over, it would be a good idea to wipe the drive just to be sure.

    Five hard disk cleaning and erasing tools - TechRepublic

    And here is the tutorial to a clean install.

    Clean Install - Windows 8

    Hope all goes well & you get it sorted.

    Here is something you may find helpful in the future. Making a system image can save you time & they are good to have around in case something like this happens again.

    System Image - Create in Windows 8
      My System SpecsSystem Spec

  9. #9

    Posts : 148
    Windows 8.1 Update 1

    I also make system images using True Image. Since I do this frequently I feel totally safe. If anything happens I have always got at least 4 to 5 different Images (differential backups) to restore. This way I will never have to reinstall Windows 8.1 again.

    Oh, almost vorgotten: I too recommend a complete wipe of the harddisk (backup your data first, if you cannot boot Windows anymore you could use a Linux live CD/ DVD). Afterwards you can reinstall Windows and start over again. Always better than trying to fix a compromised pc, spending hours and in the end not beeing sure whether the malware is really gone or not.
      My System SpecsSystem Spec

Avira Virus and malwarebytes downloads stopped by malware
Related Threads
Is Avira good? in System Security
I keep having scan issues out of Panda. Is Avira any good? Can someone tell me about it?
virus/malware remover? in System Security
Currently im using Avast!, AntiMalware Malwarebytes, and Glary utilities for system cleanup/tune, but I ended up downloading this program called SpyHunter4 and it found issues (virus/trojan/malware/creepercookies) but its asking me to pay to remove the selected programs. ...
Recently I have had some BSOD problems with my computer. After posting to the forums my crash dumps, I was recommended to try uninstalling AVG as it could be the culprit. So far so good and I have not had any blue screens. Upon uninstalling AVG I have been using Microsoft Security Essentials. I...
what are Malwarebytes Anti-Malware ? if i have a good anti virus like kaspersky or avast then do i need to install thiis? is it antivirus program or what.....please help so that i could know that shoul i install this or not? thank you
Avira Beta Testers Wanted. in System Security
We'd like to invite you to join the project "Avira Version 2013". This beta will allow you to use an early version of our product and help us to improve it through your feedback.As this project is in an early beta testing phase, applicants will for now be chosen depending on their activity during...
the new version of avira has some issues on my end A) it says its out of date, so you update..just to be told its up to date?? , B) it reports there is a problem and a service isnt running , fix problem starts the update (see above) C) it doesnt report too windows its installed and...
Eight Forums Android App Eight Forums IOS App Follow us on Facebook