I was just doing bill on my laptop and I noticed that I was getting warnings on everything I tried to do. It looks like some kind of windows product but it's not. When I try to launch MWB or CCleaner it wont let me. Does anyone know how to get rid of this thing?
Announcement
Collapse
No announcement yet.
Nasty Virus ?? Win 7 Antivirus 2012
Collapse
X
-
Originally posted by Duke{CLR} View PostI was just doing bill on my laptop and I noticed that I was getting warnings on everything I tried to do. It looks like some kind of windows product but it's not. When I try to launch MWB or CCleaner it wont let me. Does anyone know how to get rid of this thing?[SIGPIC][/SIGPIC]
-
Sounds like somebody downloaded a fake antivirus/anti spyware app. Had to remove one of these from my GF's dads PC a month or so ago.
His prevented all application execution and copied his start menu to a hidden location.
As Quamin said, safe mode and malwarebytes should take care of most of it.
Comment
-
I ran MWB in the Safe mode and it removed a bunch of infected items. Now I cant launch any programs. I click on certain shortcuts and it asks me what program I want to use to launch it. I think the ones that were taken over are now unusable.[img]https://farm5.staticflickr.com/4373/35734799443_53cb20ef13_z.jpg[/img]
Killed by CLRs since 2004. WOOT!
Support Cainslair. Donate here! [url]http://www.cainslair.org/billspaypal.php?[/url]
Comment
-
Originally posted by juneau View PostSounds like somebody downloaded a fake antivirus/anti spyware app. Had to remove one of these from my GF's dads PC a month or so ago.
His prevented all application execution and copied his start menu to a hidden location.
As Quamin said, safe mode and malwarebytes should take care of most of it.Delivering bacon goodness one round at a time.
Comment
-
It all started just after an Adobe flash update so I wonder if that was it. I found a restore point from just before an Windows update at 0930 this AM so I went there remove and re installed MWB and ran it again along with a WSE scan. So far it seems to be normal. What a giant waste of my time.[img]https://farm5.staticflickr.com/4373/35734799443_53cb20ef13_z.jpg[/img]
Killed by CLRs since 2004. WOOT!
Support Cainslair. Donate here! [url]http://www.cainslair.org/billspaypal.php?[/url]
Comment
-
I think all the files are intact, it just messed with the path's to the executables maybe. Try manually making a shortcut icon to one of the programs you want to launch. If the new icon works, you can manually put in all the new shortcut Icons by hand.
I know it's a long way to do it, but the only other thing I know to do with missing paths is to do a system restore to a previous state. If you know whereabouts you picked up the virus you can go back before that.
---------------------------------------------------------------------------------------------------------------------------------------------------------------
Disregard the previous post. :-)[COLOR="#008080"][/COLOR][SIZE="5"][COLOR="LightBlue"][B]Not everything that counts on the battlefield is countable.[/B][/COLOR][/SIZE]
Comment
-
Originally posted by Duke{CLR} View PostI ran MWB in the Safe mode and it removed a bunch of infected items. Now I cant launch any programs. I click on certain shortcuts and it asks me what program I want to use to launch it. I think the ones that were taken over are now unusable.[SIGPIC][/SIGPIC]
Comment
-
Originally posted by The_Needle View PostGo into safe mode with networking. Download rkill, combofix and malwarebytes. Run them in that order. see bleepingcomputer.com for specifics but it will get rid of it.
Thanks for the help, I'm pissed that let my guard down and clicked on that thing I though was a java update.[img]https://farm5.staticflickr.com/4373/35734799443_53cb20ef13_z.jpg[/img]
Killed by CLRs since 2004. WOOT!
Support Cainslair. Donate here! [url]http://www.cainslair.org/billspaypal.php?[/url]
Comment
-
They certainly have some crafty programmers building these damned things.
A tool that I use at home is SuperAntiSpyware (http://www.superantispyware.com). I use the paid version which has real-time protection. But the free version has helped me fix infections where I worked many times. When it didn't work completely I would then use MWB. It was rare when it didn't get everything fixed.
Plus, there is a 'portable' version that is a COM file that you can run from a USB stick. That has been really helpful.--Slaughter
Comment
Cain's Lair Forums Statistics
Collapse
Topics: 26,187
Posts: 269,851
Members: 6,183
Active Members: 4
Welcome to our newest member, Fermin13Q.
Today's Birthdays
Collapse
There are no members with birthdays today.
Top Active Users
Collapse
There are no top active users.
More Posts
Collapse
-
Reply to Hi guys!by glasscasketArma Reforger off and on. Some Hell Let Loose. Been hopping around VR titles.
Hope all is well with y'all30 Nov 2024, 11:06 AM
Comment