Posted: 10/26/2012 8:23:37 PM EDT
|
I recently got tagged with the new FBI ransom computer scam and just like it says it locked my laptop down.
I pulled the power and restarted in safe mode and did a system restore and than ran my spy hunter 4 virus scan, It found 2 trojans and other various tracking cookies. I deleted everything it found but how do i know I got it all ? My AVG just popped up and caught the same trojan and I just told avg to remove it... |
|
Quoted:
Spy Hunter 4? That sounds like a terrible novel and not a piece of software I'd be running. A quick Google search indicates some shady stuff about it, so proceed with caution. I'd get rid of your other AV programs and run Microsoft Security Essentials. This and sys restore will do nothing for you |
|
Run rkill or rougekiller in safe with networking then scan malwarebytes, tdss ,gmer. Then get rid of avg. Try eset or kaspersky. Shut off or atleast keep java and flash updated. Sometimes shit happens like the root kit i got through a iframe exploit while back.
Here is a handy app for when stuff gets broken. http://www.tweaking.com/content/page/windows_repair_all_in_one.html |
|
I got wacked with this a few weeks ago, and my buddy got it yesterday. Both of us were running avg at time of infection. Both cases restarted in safe mode, did an install of eset from a thumb drive and then scanned and the problem went away. Eset had found 27 infections on my computer and 60 on my buddies, all the while avg was saying it was all clear. I've definitely switched and wont be going back. |
http://www.microsoft.com/en-us/download/details.aspx?id=16This |
| Version: | 4.13 | Date published: | 10/9/2012 |
<label for="change-language">Change language:</label> |
| Windows-KB890830-V4.13.exe | 16.2 MB | Download |
Overview
The Microsoft Windows Malicious Software Removal Tool
checks Windows Vista, Windows 7, Windows XP, Windows 2000, and Windows
Server 2003 computers for and helps remove infections by specific,
prevalent malicious software—including Blaster, Sasser, and Mydoom. When
the detection and removal process is complete, the tool displays a
report describing the outcome, including which, if any, malicious
software was detected and removed. The tool creates a log file named
mrt.log in the %WINDIR%\debug folder.
To download the x64 version of Malicious Software Removal Tool, click here.
This tool is not a replacement for an anti-virus product. To help protect your computer, you should use an anti-virus product.
Microsoft will release an updated version of this tool on the second
Tuesday of each month. New versions will be made available through this
web page, Windows Update, and the Malicious Software Removal Tool Web site on Microsoft.com.
To have the newest versions automatically delivered and installed as
soon as they are released, set the Automatic Updates feature to Automatic.
The version of this tool delivered by Windows Update runs on your
computer once a month, in the background. If an infection is found, the
tool will display a status report the next time you start your computer.
If you would like to run this tool more than once a month, run the
version that is available from this Web page or use the version on the
Malicious Software Removal Tool Web site.
Please review KB890830
for the list of malicious software that the current version of the tool
is capable of removing as well as usage instructions. Also, please be
aware that this tool reports anonymous information back to Microsoft in
the event that an infection is found or an error is encountered. The
above KB article contains information on how to disable this
functionality and what specific information is sent to Microsoft.
It is strongly recommended that you review KB891716 before you consider deploying this tool in an enterprise environment.
The user must be an administrator to run this tool. This tool will not
run on any version of Windows 98, Windows ME, or Windows NT 4.0.
Note that this download is now a multi-lingual tool. For all supported
languages, the same tool will show the correct language depending on the
language of the operating system.
checks Windows Vista, Windows 7, Windows XP, Windows 2000, and Windows
Server 2003 computers for and helps remove infections by specific,
prevalent malicious software—including Blaster, Sasser, and Mydoom. When
the detection and removal process is complete, the tool displays a
report describing the outcome, including which, if any, malicious
software was detected and removed. The tool creates a log file named
mrt.log in the %WINDIR%\debug folder.
To download the x64 version of Malicious Software Removal Tool, click here.
This tool is not a replacement for an anti-virus product. To help protect your computer, you should use an anti-virus product.
Microsoft will release an updated version of this tool on the second
Tuesday of each month. New versions will be made available through this
web page, Windows Update, and the Malicious Software Removal Tool Web site on Microsoft.com.
To have the newest versions automatically delivered and installed as
soon as they are released, set the Automatic Updates feature to Automatic.
The version of this tool delivered by Windows Update runs on your
computer once a month, in the background. If an infection is found, the
tool will display a status report the next time you start your computer.
If you would like to run this tool more than once a month, run the
version that is available from this Web page or use the version on the
Malicious Software Removal Tool Web site.
Please review KB890830
for the list of malicious software that the current version of the tool
is capable of removing as well as usage instructions. Also, please be
aware that this tool reports anonymous information back to Microsoft in
the event that an infection is found or an error is encountered. The
above KB article contains information on how to disable this
functionality and what specific information is sent to Microsoft.
It is strongly recommended that you review KB891716 before you consider deploying this tool in an enterprise environment.
The user must be an administrator to run this tool. This tool will not
run on any version of Windows 98, Windows ME, or Windows NT 4.0.
Note that this download is now a multi-lingual tool. For all supported
languages, the same tool will show the correct language depending on the
language of the operating system.
Top of pageSystem requirements
Supported operating systems: Windows 7, Windows Server 2003, Windows Vista, Windows XP
Top of pageInstructions
- Click the Download button on this page to start the download.
- Do one of the following:
- To start the installation immediately, click Run.
- To save the download to your computer for installation at a later time, click Save.
- To cancel the installation, click Cancel.
|
Download and install this: Windows Defender Offline It will create you a boot disk with Windows Defender (aka Microsoft Security Essentials). Since you are booting off a cd, the virus doesn't load into system memory and Windows Defender has full access to the hard drive to clear out the virus. I've had good luck with this. ETA: I've never had the Malicious Software Removal Tool find viruses, Windows Defender Offline will do better, just my opinion. |