Today I am addressing one of the worst malware invasions in your computer, which act mostly when you visit the Internet. It happens with just about all browsers but I have had complaints from friends using IE and Google Chrome, both of which I also use frequently. (Guess what, it also happened to me a few days ago), IN SPITE OF THE FACT THAT MY COMPUTER IS SUPPER PROTECTED AGAINST INTRUDERS....
I am addressing item 1 of our post of last September 12, "Malicious malware" and I will try my best to teach you how to get rid of the problem.
One of the main culprits if not the top one is a sneaky malware program called SavePath Deals.
It gets installed in your computer surreptitiously when you open for instance a news title on Drudge Report, or on your web page, or during installation of certain free programs etc. All I can say is that it is very nasty and can disrupt your Internet browsing on a continuous and irritating way.
If you google SavePath Deals, you will find a multitude of articles teaching how to uninstall this malware program. I tried them all to no avail. WHY?
After hours of trying and checking all possible solutions suggested, I found out that the program was invisible not only to the Windows uninstalling program as well as other uninstalling programs that I have in my computer, even one of the best "REVO UNINSTALLER".
Some of the suggested ways to get rid of SavePath Deals tells you (after several steps that I am not going to elaborate here), to go into the registry and delete several associated SavePath Deals Windows registry entries, all clearly described such as the one below and many others, (about 20 entries):
HKEY_CLASSES_ROOT\CLASID\{F66C7EC4-63CC-4452-A8C9-5A2E898F8EFF}
Well friends I spent several hours trying, but could not find one single registry entry specified !
I was about ready to quit but before I did I checked again "Program Files (x86)" In my hard drive C.
I found a program folder titled SPD. (Bingo, I said to myself), is this the intruder ?, I opened the folder and found 2 sub folders. I right clicked each of them, went to "properties" and there it was, the program was created by Save Path Deals !
I right clicked again and selected "Uninstall with Revo Uninstaller", and the process on uninstallation started immediately. (Please note that there was no entry to uninstall with Windows Uninstaller !). Revo Uninstaller can be downloaded from:
http://www.revouninstaller.com/revo_uninstaller_free_download.html
At the end of the uninstallation, Revo shows and then removes at your command, all registry entries loaded by the SavePath Deals malware. GUESS WHAT ? none of the registry entries shown and there were tons of them, resembled any of those indicated in the uninstallation solutions suggested in any of the articles found when I googled SavPath Deals !
I have a gut feeling that the guys who run this malware have worked it out lately to make it more stealth and also changed the program structure and all old registry entries, so that it is almost impossible for people to get rid of it.
I am sure that there are many of you who have been attacked by this pesky malware program and don't know what it is or how to get rid of it. Now you know.
IF YOU HAVE QUESTIONS, E-MAIL ME AT gfreire@att.net, leave your phone # and I'll be glad to contact and help you.
George Freire
Sunday, October 12, 2014
Subscribe to:
Posts (Atom)