Thanks Thanks:  0
Needs Pictures Needs Pictures:  0
Picture(s) thanks Picture(s) thanks:  0
Page 1 of 3 123 LastLast
Results 1 to 15 of 31
  1. #1
    Join Date
    Nov 2004
    Location
    Bungama SA
    Age
    52
    Posts
    960

    Default Getting bombarded with add ware

    Having some trouble with addware, every time I visit here I keep getting infected and smashed with this PITA crap.
    I clean up my computer with CC cleaner and then scan with spybot, I've been through all of the online remedy's for wehvaa(spelling?)and all the other infect your computer that pops up.
    once done I can go for a couple days with no infection on all the other sites I visit but soon as I visit here Im bombarded again... Im really starting to get annoyed with it as my wife and 6yr old daughter do not appreciate seeing cam sex sites and Single matures site and every get rich quick and casino site.
    When infected it becomes near impossible to navigate the web and every inch of the screen leads to this crap unless you click and hold the link/button your trying to use for a few seconds which seems to work!

    Any ideas?
    ....................................................................

  2. #2
    Join Date
    Apr 2008
    Location
    NSW
    Posts
    537

    Default

    Are you running any kind of anti virus other than CC cleaner ?
    What operating system are you using ?
    Many of those online cleaner and fix services put the add ware links in your computer .
    It's better to have your own on computer anti virus and scan with that .
    I am note experiencing that on this site . It sounds like you have a virus or some kind of malware that is loading all this stuff .
    Could anybody else be using your computer and visiting bad sites ?
    If you are running windows 8 and higher then there is a free windows antivirus system already in the computer . It's called Windows Defender .
    Go to file search and type in Windows Defender open the home tab and turn it on .
    The volume of a pizza of thickness 'a' and radius 'z' is given by pi z z a.

  3. #3
    Join Date
    Nov 2004
    Location
    Bungama SA
    Age
    52
    Posts
    960

    Default

    Windows 10, yes defender is on.
    Yep malware and Im removing it every time... it comes back every time I visit here thats me problem
    Like just now after spending a couple hrs this morning removing it I just got redirected to "weevah2" site trying to click the submit button

    As you can see I've been haunting the forums for many years and I not gunna be leaving any time soon
    ....................................................................

  4. #4
    Join Date
    Apr 2008
    Location
    NSW
    Posts
    537

    Default

    Are you updating windows defender every time you turn on your computer ?
    Stop using CC cleaner and uninstall it . Update windows defender and do a " full " scan .
    Stop using internet windows fix sites .
    Try using another browser like firefox and if it works better make it your default browser .
    Also try clearing all cookies in options .
    Open your browser options and see what is your home page setting and change it to a search engine like duck duck go and use duck duck go for all searches .
    It may be opening the bad site in the back ground . When on this site minimize the page and see what is behind this page . If it's not your desk top you are being high jacked .
    Weevah2 is a virus and it's probably in CC cleaner so you keep using it .
    If you downloaded any free software just before this starting happening it may work to use system restore to go back before the virus became a problem . Keep restoring back until the computer works normally and then up date windows and defender again. Create a new restore point name it , " working ok now " . You could also start the computer in safe mode and do the system restore from there . Shut down , boot up and as it boots press F8 continually until safe mode starts .
    Check the scan exemptions list in Windows defender and delete any exemptions so it scans everything .
    Do you have any programs or data on usb sticks that you have loaded on lately they may be infected .
    The volume of a pizza of thickness 'a' and radius 'z' is given by pi z z a.

  5. #5
    Join Date
    Jan 2011
    Location
    Far West Wimmera
    Age
    63
    Posts
    4,049

    Default

    So you are ok with these sites, it is just your wife and daughter who don't like them?

    I don't have any issues and I doubt it is related to the forum although I could be wrong. You cannot remove adware etc with one utility. You need to search for recommendations and use a number of them. None of them can detect all adware.

    CC Cleaner is not the problem, although I cannot comment on programs that were installed with it. I use CC Cleaner although it is a pain as it is always popping up a window just when you don't want it to. It also doesn't do a whole lot, just tidy up messes left by other programs freeing up a little bit of HDD space. It is important to check whether any programs you install try to install other programs and deselect this option. It is also a very good (imperative) idea to search for info before installing anything. You will find info on whether it is a problem program. I have changed my mind on a lot of seemingly useful programs due to this.

    I would recommend everyone to have a good Internet Security Suite. Again do some research and see which one is currently considered the best. I use Bitdefender and find it very good. I check the net before renewing to see if it is still up with the best. Bit Defender had already installed protection for all the ransomware that has been circulating lately. I just get an email saying my system is safe. I have never relied upon Windows Defender. Microsoft is not the greatest at keeping things up to date and they don't have a compelling reason to do so. If an Internet Security Suite does not do its job the company will lose market share.

    Stop using internet windows fix sites .
    Not a bad idea. If you do some research you can find instructions to do what these site are doing anyway. It means editing the registry and using the command prompt sometimes, but usually full detailed instruction are out there.

    Dean

  6. #6
    Join Date
    Apr 2008
    Location
    NSW
    Posts
    537

    Default

    Windows defender is better than nothing and it's free . If he wants to go a pay anti-virus program , ESET is very good as is Trend Micro . Kaspersky gets good performance tests but it's Russian so it could have back doors .
    Any program can have a virus added into it's code or as a separate bundled program . When installing you should click advanced install and pick only the program you intended to use so other crap don't install .
    It's a virus that highjacks your browser to other sites . It does not seem to do anything else .
    I have found a way around ransomware . When you suddenly get the notice pop up that says your computer is blocked . It is in fact not fully blocked yet. They freeze your browser controls stopping you from shutting down the browser or the computer giving the appearance that you are totally blocked out , but the ransomware is not yet on your computer , if it was coming in your antivirus would block it so they ask you to click on a link to get your computer unblocked and that is when you get the full infection and it is fully blocked the link seems to give some kind of permission for the download possibly a firewall bypass .
    So once you see the pop up notice DO NOT CLICK ON ANYTHING AT ALL . Just grab the power cord to the computer and yank it out , That will do a hard shut down of the computer and the site will not be able to load any infection . Then reboot the computer , it will come back normally . You will however loose any unsaved data that was open at the time.
    Better than paying a ransom . I have done it a few times now and beat them every time.
    The volume of a pizza of thickness 'a' and radius 'z' is given by pi z z a.

  7. #7
    Join Date
    Jan 2011
    Location
    Far West Wimmera
    Age
    63
    Posts
    4,049

    Default

    Windows defender is better than nothing and it's free . If he wants to go a pay anti-virus program , ESET is very good as is Trend Micro .
    Windows Defender is better than nothing, that is true.

    The best Internet Security Suite is the one that is currently considered the best by the pros. That is what I research. I am talking about many different sites, not just a few. I would not recommend any myself as it is something that is best checked just before purchase / installation. It is quite some time since I checked Bit Defenders rating and it could have dropped since then. Do the research yourself is what I recommend.

    I hope Trend Micro has improved its attitude since I used it some years ago. It required about 10 Meg of updates every time, when I was on dial-up. Nearly always about the same amount. I suspect it was replacing the entire database each time. I swapped to Norton which updated in a couple of minutes, only requiring a few hundred Kb's. I gave Norton the flick because their web site was hopeless. It had no proper information about what to do to re-subscribe. I paid for 2 lots because it did not show anything to indicate that the subscription had succeeded. After some plain talking emails they refunded all my money and I went elsewhere. This has probably all changed now. The fun thing about the internet. Nothing is static.

    That is very interesting about the ransomware. I will have to remember that in case I do get one come thru. I have only ever had 1 or 2 viruses and the same of adware in nearly 30 yrs of computing.

    Another thing that is a good idea is to learn about and do something about your systems port access availability. There are 65,000 or so software ports in your computer, used for many different things over the network / internet. Viruses and other nasties often probe for open ports. This involves sending queries to random addresses aimed at certain ports. If your computer has these ports open it will send a reply informing the source that they have hit an access point. Every port that is not required to be open should be either stealthed so it does not send a reply or just closed. Stealthed ports can still be used by proccesses that already have the access info. There are sites that can probe your computer to check the level of risk. Again this is where you research until you get some sort of concensus on the best and safest site to use.

    Dean

  8. #8
    Join Date
    Aug 2010
    Location
    Toorloo Arm, VIC
    Age
    39
    Posts
    1,270

    Default

    As previously asked, what antivirus software are you running? I've been using Avast (free version) for a number of years now, and it seems to do the trick, although it has some annoying habits at times (which for the average user probably won't be a problem). I would note however, to carefully read the windows in the install program for it, as from memory it offers you a couple of 'associate' programs which are completely unwanted - par for the course though, most free versions of software seem to have a few 'extra' programs they'd like you to install, with the check boxes to install them already selected.

    Hijackthis used to be quite a useful software for finding where this kind of thing is hiding on your computer, but unfortunately it seems to no longer be supported, and it requires some knowledge to interpret the results it throws out - many of the results it returns are not actually an issue, they are simply flagged because of various software calls they make, which it detects as a potential malware operation. It can still be helpful though, if you're prepared to do some searching on the net to help you interpret the results.

    Do you get to the forums via a bookmark in your browser, or via a search engine/search bar result? One of the most common malware variants that cause this sort of behavior (in my experience some time ago now) is one that actually alters your default search engine URL, so that although you think you're still using Google (or whichever you use), it's actually a malware site which looks exactly the same, but alters the links for search results so that in addition to the requested site, you get all the other rubbish you're getting. Typically it seemed to only do it on certain links too, probably to draw suspicion away from the search page itself. There are of course other ways this can occur, I think from memory it can also be done if your 'hosts' file has been altered by the malware. If you use a bookmark, its possible that the bookmark link has been altered to bring up the 'bonus' windows. Whichever you use, try the other way and see...

    *EDIT* One more thing that may also help - if you're not running an adblocker on your internet browser, install one. I've switched from ADBlock Plus to UBlock Origin (NOT Ublock classic), as it has some built in ad blocker blocker blockers. Yes, that is a confusing statement, but what it means is that certain sites (most notably Forbes*) have a function that detects you're using an ad blocker, and throw up a big splash screen that stops you reading their site, and asks you to turn off your ad blocker to continue reading.

    * I say most notably Forbes, as they do this. Problem is, at one stage one of the third party ads that was being displayed on their website contained a malware script that loaded itself onto some massive number of computers when people turned off their ad blockers in order to read the article they wanted to read. Quick check of the small number of things blocked by UBlock on this site shows that two of them are part of Googles ad services, so its certainly possible that someone has managed to repeat this trick with an ad supplied by Google.

  9. #9
    Join Date
    Apr 2008
    Location
    NSW
    Posts
    537

    Default

    Trend micro is memory hungry but it does stop virus and so is Norton but you can do an advanced install and cut out some of the features you don't want , you can also buy a basic program that does not have as many features . ESET is less memory hungry and works quite well . 10 megabite is not a lot of data and some programs don't patch all the time they reload the whole folder or a section of a program rather than add that small patch . When you buy disc the whole program is not on the disc just an install exe that grabs the program from their site so that first update is the whole program plus new definitions . After that it's new definitions plus any repairs and upgrades . I never found updating Trend micro to be a problem . What I did find was a problem in 2015 was they started to funnel adds and promotions through their own program which I see as them becoming like the stuff you are trying to stop so I dumped them but I never got a virus while using it . Trend micro programmers are all Asians now and it's become very commercially intense and lacking in customer consideration .
    Unless the OP gets back with some feedback on what is now happening we are just guessing .
    A firewall should block all unused ports or at least monitor all ports .
    The volume of a pizza of thickness 'a' and radius 'z' is given by pi z z a.

  10. #10
    Join Date
    Jul 2003
    Location
    Melbourne
    Age
    52
    Posts
    67

    Default

    Ive always had good luck cleaning up PC's using Malwarebytes, just install it and update/scan whenever you think you need it.

    Theres a free version avaiable here:
    https://www.malwarebytes.com/

  11. #11
    Join Date
    Jan 2011
    Location
    Far West Wimmera
    Age
    63
    Posts
    4,049

    Default

    *EDIT* One more thing that may also help - if you're not running an adblocker on your internet browser, install one. I've switched from ADBlock Plus to UBlock Origin (NOT Ublock classic), as it has some built in ad blocker blocker blockers. Yes, that is a confusing statement, but what it means is that certain sites (most notably Forbes*) have a function that detects you're using an ad blocker, and throw up a big splash screen that stops you reading their site, and asks you to turn off your ad blocker to continue reading.
    Funny you should mention this. I have ADBlock Plus and a site I often read for amusement has just started to throw up a splash screen last night. I will have to look into it.

    10 megabite is not a lot of data and some programs don't patch all the time they reload the whole folder or a section of a program rather than add that small patch .
    Yes I know, but at the time it was a lot, in fact It represented most if not all of my monthly data allowance at the time. This was a long time ago and as I mentioned I was on Dial-up at the time. This is also why I said it has probably changed now.

    I would hope that all programs update the entire database from time to time. Every patch increases the risk of a fault.

    I never found updating Trend micro to be a problem
    You live in a city / town? I don't have access to the same high speed internet that you do if that is the case. My concern at the time was that most people had access to fast internet and large data allowances, but Trend Micro did not take into account that not everyone had this access. Norton obviously did not treat customers the same.

    When you buy disc the whole program is not on the disc just an install exe
    I haven't actually bought a program on a disc for many years. No point as you say. They used to have the whole program on the disc, which would install and then reinstall at the first update, 10 mins later if you are sensible.

    Unless the OP gets back with some feedback on what is now happening we are just guessing .
    Not wrong there. Hopefully someone will learn something. How often have I read a thread where the OP never returns. Probably reading this and sniggering.

    Ive always had good luck cleaning up PC's using Malwarebytes, just install it and update/scan whenever you think you need it.
    I have nothing against it, but I see 2 problems here. Like I keep saying, don't just rely on a program to continually do the job you expect. Research to ensure that it is maintaining its ability in the extremely fast changing world of the net and don't rely on a single program if you can avoid it. With security suites you are stuck with a single suite generally, but you can do one off checks using other applications from time to time and when it comes to malware removal tools research tells me that there is a large variation in what each one will do and no one tool is perfect. It is recommended not to rely on a single tool. Most people just install a program and forget it. You need to stay proactive.

    This is why I won't recommend these types of programs. Everyone need to do the research themselves and keep doing it regularly.

    Other than the security suite I only have CC Cleaner. I have this only in the hope (dream) that it will tidy up at least some of the Registry errors caused by other programs. Some years ago I tried to clean up the registry using a number of programs. Each successive program just kept reporting a big list of errors found even tho the previous one declared the Registry was clean.

    Dean

    Dean

  12. #12
    Join Date
    Apr 2008
    Location
    NSW
    Posts
    537

    Default

    I did a test with malwarebytes once and it showed it found several trojans on the first scan . Trouble is the computer was scanned with three other up to date antivirus programs just before I downloaded and ran it . The initial results from most free malware programs are a con they report phantom results to make you think they are doing something the others can't . The big long list of stuff is mainly BS . After that they seem to work ok .
    I don't like to state what I use as it assists hackers to get at you but I do use UBlock in firefox but I don't think it will stop a browser highjacker virus .
    The volume of a pizza of thickness 'a' and radius 'z' is given by pi z z a.

  13. #13
    Join Date
    Nov 2004
    Location
    Bungama SA
    Age
    52
    Posts
    960

    Default

    When I mean online its advice from people in the know not an online program, sorry should have stated that.

    I've uninstalled CC but I dont think that was the problem, windows defender doesnt pick it up at all. Installed a McAfee suit has allready blocked a page just getting here... I haven't had much luck with paid antivirus they never seemed to work very well and always interfeared with the PC games I used to play, just hope they have improved.
    ....................................................................

  14. #14
    Join Date
    Nov 2004
    Location
    Bungama SA
    Age
    52
    Posts
    960

    Default

    Dam it its still hyjacking my clicks... just wasted my money yet again on a paid subscription

    Although it is blocking them from getting any further past the 1st hyjack page(its weevah2)... and I added the Ublock app... does SFA
    Its not opening a new page now just hyjacking the current tab and wont let me go back unless I hold on the back button to bring up the drop down box.
    Oh and Im using FF as my browser
    ....................................................................

  15. #15
    Join Date
    Apr 2008
    Location
    NSW
    Posts
    537

    Default

    Update McAfee and then run a full scan makes sure the scan is set to do everthing . I have never had this kind of trouble with , ESET , Trend micro or McAffe I have used them all at some point .
    Delete all your tabs that have addresses inside them . Search for the forum with a search engine and then if the site opens ok save it as a favourite .
    I did not think UBlock would do much about this problem . Have you done a system restore ? You might have to download malwarebytes they say it will remove weevah2 .
    Just don't panic if you see a long list of stuff just remove it all. If that fails I would do a system restore that should delete all the files installed after the date of the restore point . You will then have to re install and update McAfee and update windows but don't install any other free programs and see if that fixes it .
    The volume of a pizza of thickness 'a' and radius 'z' is given by pi z z a.

Page 1 of 3 123 LastLast

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •