Questions

Win. Antivirus Pro attack.

Tags:
+
0 Votes
Locked

Win. Antivirus Pro attack.

pbelke
Acquired malware which took over pc in a matter of minutes. Could not open browser, Add/Remove programs. Could not open cmd.exe or regedit.exe. All applications prompt for program to use to open.

Placed HDD as slave in another machine and cleaned malware. Re-installed as master...no luck. Same issue.

Attempted "upgrade", but receive error that Cab files and .dll's cannot be found on disk. Re-installed drive as slave and copied I386 folder to root of drive. Then after receiving error, I pointed install to folder on drive...still same error, "could not locate *.dll or *.cab. Now that installation has started, I cannot get past the installion screen.

I am guessing here, that "Recovery Console" may be my only answer, but am unfamiliar w/ this application and what files may be missing or corrupt on the HDD. Forgive me, for I am a HARDWARE technician and no not what I do! Thanx
  • +
    0 Votes
    Jacky Howe

    You could remove the Drive and add the Drive as a Slave to another System or a USB enclosure and then run MalwareBytes.

    Download Malwarebytes Anti-Malware, install it and update it.

    <a href="http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe" target="_blank"><u>Malwarebytes</u></a>

    * Double-click mbam-setup.exe and follow the prompts to install the program.
    * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform Quick Scan, then click Scan.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Be sure that everything is checked, and click Remove Selected.

    If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
    <a href="http://malwarebytes.gt500.org/mbam-rules.exe" target="_blank"><u>mbam-rules</u></a>

    I would keep scanning with it until it is clean by closing out and rebooting and running it again.


    Download Spybot - Search & Destroy and install it. Update it and run it.

    <a href="http://www.safer-networking.org/en/download/index.html " target="_blank"><u>Spybot</u></a>

    Also run this Rootkit Revealer GMer
    http://www.gmer.net/index.php

    FAQ
    http://www.gmer.net/faq.php


    Just to be on the safe side when you finish do an online scan with Bitdefender or Google for an online scanner.

    http://www.bitdefender.com/scan8/ie.html

    +
    0 Votes
    mydesktopworks

    If it were me, I would (assuming you no longer care about the user data on the drive) boot to the OS install disk and do a complete format by deleting and recreating the partition.

    Do not do this if you are still trying to recover data though.

  • +
    0 Votes
    Jacky Howe

    You could remove the Drive and add the Drive as a Slave to another System or a USB enclosure and then run MalwareBytes.

    Download Malwarebytes Anti-Malware, install it and update it.

    <a href="http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe" target="_blank"><u>Malwarebytes</u></a>

    * Double-click mbam-setup.exe and follow the prompts to install the program.
    * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform Quick Scan, then click Scan.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Be sure that everything is checked, and click Remove Selected.

    If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
    <a href="http://malwarebytes.gt500.org/mbam-rules.exe" target="_blank"><u>mbam-rules</u></a>

    I would keep scanning with it until it is clean by closing out and rebooting and running it again.


    Download Spybot - Search & Destroy and install it. Update it and run it.

    <a href="http://www.safer-networking.org/en/download/index.html " target="_blank"><u>Spybot</u></a>

    Also run this Rootkit Revealer GMer
    http://www.gmer.net/index.php

    FAQ
    http://www.gmer.net/faq.php


    Just to be on the safe side when you finish do an online scan with Bitdefender or Google for an online scanner.

    http://www.bitdefender.com/scan8/ie.html

    +
    0 Votes
    mydesktopworks

    If it were me, I would (assuming you no longer care about the user data on the drive) boot to the OS install disk and do a complete format by deleting and recreating the partition.

    Do not do this if you are still trying to recover data though.