macatte was downloaded onto my computer.
- I saw the recent post of the other macatte problem. I downloaded all the things listed and the uninstaller one still cant find the software that is causing this. The Malware one did find trojans and deleted them. Every 2 mins Macatte comes up and says that the was a spyware reported. Its very frustrating and dont know what to do. That program erased my windows defender and turned off my security settings. So I just dont know where to look for the issue.
- Moved byKevin - Support EngineerMSFT, ModeratorMonday, November 02, 2009 7:19 PM (From:System repair & recovery)
- Moved byKevin - Support EngineerMSFT, ModeratorMonday, November 02, 2009 7:06 PMcorrect category (From:Performance & Maintenance)
1 person got this answerI do too
Answers
This is relatively new wave of malware. It is designed to somewhat mimic McAfee, and it is indeed Malware. It's a backdoor.trojan that installed itself without your notice while you downloaded something.
Try this:
Restore Point:
Do System Restore in Safe Mode, if unable to do it in Normal Mode.
Try tapping F8 at startup, and from the list of startup selections, select Safe Mode by using UP Arrow Key to go there > then hit Enter.
Try a System Restore once there, to pick a Restore Point before your problem..
Click Start > Programs > Accessories > System Tools > System Restore > pick a different time > Next > etc
And see if this will remove it:http://www.revouninstaller.com/
“Revo Uninstaller helps you to uninstall software and remove unwanted programs installed on your computer even if you have problems uninstalling and cannot uninstall them from "Windows Add or Remove Programs" control panel applet.
Revo Uninstaller is a much faster and more powerful alternative to "Windows Add or Remove Programs" applet!
With its advanced and fast algorithm, Revo Uninstaller analyzes an application's data before uninstall and scans after you uninstall an application. After the program's regular uninstaller runs, you can remove additional unnecessary files, folders and registry keys that are usually left”
And scan for Malware with this Program:http://www.malwarebytes.org/mbam.php
Malwarebytes is as the name says, a Malware Remover!
Download the Free Version from the link above.
Download, install, update and scan once a fortnight.
How to use Malwarebytes after it is installed and Updated:
1. Open Malwarebytes > Click on the Update Tab across the top> get the latest updates.
2. On the Scanner tab, make sure the the Perform quick scan option is selected and then click on the Scan button to start scanning your computer
3. MBAM will now start scanning your computer for malware. This process can take quite a while.
4. When the scan is finished a message box will appear
5. You should click on the OK button to close the message box and continue with the Malware removal process.
6. You will now be back at the main Scanner screen. At this point you should click on the Show Results button.
7. A screen displaying all the malware that the program found will be shown
8. You should now click on the Remove Selected button to remove all the listed malware. MBAM will now delete all of the files and registry keys and add them to the programs quarantine. When removing the files, MBAM may require a reboot in order to remove some of them. If it displays a message stating that it needs to reboot, please allow it to do so. Once your computer has rebooted, and you are logged in, please continue with the rest of the steps.
9. When MBAM has finished removing the malware, it will open the scan log and display it in Notepad. Review the log as desired, and then close the Notepad window.
10. You can now exit the MBAM program.
Cheers.
Mick Murphy - Microsoft Partner- Marked As Answer byMarilyn-Support EngineerMSFT, ModeratorMonday, November 02, 2009 3:52 PM
- Hi,
Macatte is not legit antivirus, it is a rogue program that wants your money and will do nothing except annoy you.
Macatte Removal Instructions
http://www.spywarehelper.org/macatte-removal-instructions
A quick way that will work for many is to do a System Restore to a point before it was installed.
This works with MaCatte though not often correct to do so with virus issues.
How to Do a System Restore in Vista
http://www.vistax64.com/tutorials/76905-system-restore-how.html
-----------------------------------------------------
Download malwarebytes and scan with it, run MRT, and add Prevx to be sure it is gone. (If Rootkits run UnHackMe)
Download - SAVE - go to where you out it - Right Click on it - RUN AS ADMIN
Malwarebytes - free
http://www.malwarebytes.org/
Run the Microsoft Malicious Removal Tool
Start - type in Search box -> MRT find at top of list - Right Click on it - RUN AS ADMIN.
You should be getting this tool and its updates via Windows Updates - if needed you can download it here.
Download - SAVE - go to where you out it - Right Click on it - RUN AS ADMIN
(Then run MRT as above.)
Microsoft Malicious Removal Tool
http://www.microsoft.com/downloads/details.aspx?FamilyID=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en
-----------------------------
also install Prevx to be sure it is all gone.Prevx - Home - Free - small, fast, exceptional CLOUD protection, works with other security programs. This is
a scanner only, VERY EFFECTIVE, if it finds something come back here or use Google to see how to remove.
http://www.prevx.com/PCmag - Prevx - Editor's Choice
http://www.pcmag.com/article2/0,2817,2346862,00.asp
--------------------------------------------
Here are some online free scanners to help if needed :
http://www.eset.com/onlinescan/
http://www.kaspersky.com/virusscanner
Other Free online scans
http://www.google.com/search?hl=en&source=hp&q=antivirus+free+online+scan&aq=f&oq=&aqi=g1
--------------------------------------------
Also do these to cleanup general corruption.
Run DiskCleanup - Start - All Programs - Accessories - System Tools - Disk Cleanup
Start - type this in Search Box -> COMMAND find at top and RIGHT CLICK - RUN AS ADMIN
Enter this at the prompt - sfc /scannow
How to analyze the log file entries that the Microsoft Windows Resource Checker (SFC.exe) program
generates in Windows Vista cbs.log
http://support.microsoft.com/kb/928228
Run checkdisk - schedule it to run at next start and then Apply OK your way out then restart.
How to Run Check Disk at Startup in Vista
http://www.vistax64.com/tutorials/67612-check-disk-chkdsk.html
-----------------------------------------------------------------------
If any Rootkits are found use this thread and other suggestions. (Run UnHackMe)
http://social.answers.microsoft.com/Forums/en-US/InternetExplorer/thread/a8f665f0-c793-441a-a5b9-54b7e1e7a5a4/
Hope this helps.
Rob - Bicycle - Mark Twain said it right.- Marked As Answer byMarilyn-Support EngineerMSFT, ModeratorMonday, November 02, 2009 3:52 PM
All Replies
This is relatively new wave of malware. It is designed to somewhat mimic McAfee, and it is indeed Malware. It's a backdoor.trojan that installed itself without your notice while you downloaded something.
Try this:
Restore Point:
Do System Restore in Safe Mode, if unable to do it in Normal Mode.
Try tapping F8 at startup, and from the list of startup selections, select Safe Mode by using UP Arrow Key to go there > then hit Enter.
Try a System Restore once there, to pick a Restore Point before your problem..
Click Start > Programs > Accessories > System Tools > System Restore > pick a different time > Next > etc
And see if this will remove it:http://www.revouninstaller.com/
“Revo Uninstaller helps you to uninstall software and remove unwanted programs installed on your computer even if you have problems uninstalling and cannot uninstall them from "Windows Add or Remove Programs" control panel applet.
Revo Uninstaller is a much faster and more powerful alternative to "Windows Add or Remove Programs" applet!
With its advanced and fast algorithm, Revo Uninstaller analyzes an application's data before uninstall and scans after you uninstall an application. After the program's regular uninstaller runs, you can remove additional unnecessary files, folders and registry keys that are usually left”
And scan for Malware with this Program:http://www.malwarebytes.org/mbam.php
Malwarebytes is as the name says, a Malware Remover!
Download the Free Version from the link above.
Download, install, update and scan once a fortnight.
How to use Malwarebytes after it is installed and Updated:
1. Open Malwarebytes > Click on the Update Tab across the top> get the latest updates.
2. On the Scanner tab, make sure the the Perform quick scan option is selected and then click on the Scan button to start scanning your computer
3. MBAM will now start scanning your computer for malware. This process can take quite a while.
4. When the scan is finished a message box will appear
5. You should click on the OK button to close the message box and continue with the Malware removal process.
6. You will now be back at the main Scanner screen. At this point you should click on the Show Results button.
7. A screen displaying all the malware that the program found will be shown
8. You should now click on the Remove Selected button to remove all the listed malware. MBAM will now delete all of the files and registry keys and add them to the programs quarantine. When removing the files, MBAM may require a reboot in order to remove some of them. If it displays a message stating that it needs to reboot, please allow it to do so. Once your computer has rebooted, and you are logged in, please continue with the rest of the steps.
9. When MBAM has finished removing the malware, it will open the scan log and display it in Notepad. Review the log as desired, and then close the Notepad window.
10. You can now exit the MBAM program.
Cheers.
Mick Murphy - Microsoft Partner- Marked As Answer byMarilyn-Support EngineerMSFT, ModeratorMonday, November 02, 2009 3:52 PM
- Hi,
Macatte is not legit antivirus, it is a rogue program that wants your money and will do nothing except annoy you.
Macatte Removal Instructions
http://www.spywarehelper.org/macatte-removal-instructions
A quick way that will work for many is to do a System Restore to a point before it was installed.
This works with MaCatte though not often correct to do so with virus issues.
How to Do a System Restore in Vista
http://www.vistax64.com/tutorials/76905-system-restore-how.html
-----------------------------------------------------
Download malwarebytes and scan with it, run MRT, and add Prevx to be sure it is gone. (If Rootkits run UnHackMe)
Download - SAVE - go to where you out it - Right Click on it - RUN AS ADMIN
Malwarebytes - free
http://www.malwarebytes.org/
Run the Microsoft Malicious Removal Tool
Start - type in Search box -> MRT find at top of list - Right Click on it - RUN AS ADMIN.
You should be getting this tool and its updates via Windows Updates - if needed you can download it here.
Download - SAVE - go to where you out it - Right Click on it - RUN AS ADMIN
(Then run MRT as above.)
Microsoft Malicious Removal Tool
http://www.microsoft.com/downloads/details.aspx?FamilyID=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en
-----------------------------
also install Prevx to be sure it is all gone.Prevx - Home - Free - small, fast, exceptional CLOUD protection, works with other security programs. This is
a scanner only, VERY EFFECTIVE, if it finds something come back here or use Google to see how to remove.
http://www.prevx.com/PCmag - Prevx - Editor's Choice
http://www.pcmag.com/article2/0,2817,2346862,00.asp
--------------------------------------------
Here are some online free scanners to help if needed :
http://www.eset.com/onlinescan/
http://www.kaspersky.com/virusscanner
Other Free online scans
http://www.google.com/search?hl=en&source=hp&q=antivirus+free+online+scan&aq=f&oq=&aqi=g1
--------------------------------------------
Also do these to cleanup general corruption.
Run DiskCleanup - Start - All Programs - Accessories - System Tools - Disk Cleanup
Start - type this in Search Box -> COMMAND find at top and RIGHT CLICK - RUN AS ADMIN
Enter this at the prompt - sfc /scannow
How to analyze the log file entries that the Microsoft Windows Resource Checker (SFC.exe) program
generates in Windows Vista cbs.log
http://support.microsoft.com/kb/928228
Run checkdisk - schedule it to run at next start and then Apply OK your way out then restart.
How to Run Check Disk at Startup in Vista
http://www.vistax64.com/tutorials/67612-check-disk-chkdsk.html
-----------------------------------------------------------------------
If any Rootkits are found use this thread and other suggestions. (Run UnHackMe)
http://social.answers.microsoft.com/Forums/en-US/InternetExplorer/thread/a8f665f0-c793-441a-a5b9-54b7e1e7a5a4/
Hope this helps.
Rob - Bicycle - Mark Twain said it right.- Marked As Answer byMarilyn-Support EngineerMSFT, ModeratorMonday, November 02, 2009 3:52 PM
- MaCatte Antivirus 2009 is a misleading anti-virus application that attempts to impersonate well known and trusted McAfee security software.
Removal instructions:
Remove MaCatte Antivirus 2009. Description and removal instructions
Remove MaCatte Antivirus 2009 (Uninstall Guide)
- In addition...
http://www.avertlabs.com/research/blog/index.php/2009/11/10/rogue-security-product-copies-mcafees-look-and-feel/
"Rogue Security Product Copies McAfee’s Look and Feel".
FakeAlert-MaCatte: http://vil.nai.com/vil/content/v_240540.htm
Vincenzo Di Russo
Microsoft® MVP Windows Internet Explorer, Windows Desktop Experience & Security - Since 2003.
My MVP Profile: https://mvp.support.microsoft.com/profile/Vincenzo
