Windows Vista Recovery Virus I have the Window Vista Recovery Virus
#1
- Group: Member
- Posts: 9
- Joined: 26-November 10
Posted 22 May 2011 - 11:44 AM
#2
- Group: Malware Removal
- Posts: 5,978
- Joined: 20-April 09
Posted 23 May 2011 - 02:01 AM
Hello mhedge and welcome to G2G! 
My nick is maliprog and I'll will be your technical support on this issue. Before we start please read my notes carefully:
NOTE:
Step 1
We need to disable malware processes on your system first
NOTE: If malware blocks TheKiller from running please try to run it several more times
Step 2
Download OTL to your Desktop
Step 3
Please don't forget to include these items in your reply:
It would be helpful if you could post each log in separate post
My nick is maliprog and I'll will be your technical support on this issue. Before we start please read my notes carefully:
NOTE:
- Malware removal is NOT instantaneous, most infections require several courses of action to completely eradicate.
- Absence of symptoms does not always mean the computer is clean
- Kindly follow my instructions in the order posted. Order is crucial in cleaning process.
- Please DO NOT run any scans or fix on your own without my direction.
- Please read all of my response through at least once before attempting to follow the procedures described.
- If there's anything you don't understand or isn't totally clear, please come back to me for clarification.
- Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste so as to include the log in your reply.
- You must reply within 3 days or your topic will be closed
Step 1
We need to disable malware processes on your system first
- Download TheKiller to your Desktop
- Note that TheKiller is renamed as explorer.exe
- Run it by double click
- Press OK button after program finish
- Do not restart your system after this step
NOTE: If malware blocks TheKiller from running please try to run it several more times
Step 2
Download OTL to your Desktop
- Double click on the icon to run it (If running Vista or Windows 7, right click on it and select "Run as an Administrator")
. Make sure all other windows are closed and to let it run uninterrupted.
- Under the Custom Scan box paste this in
netsvcs %SYSTEMDRIVE%\*.exe /md5start explorer.exe winlogon.exe Userinit.exe svchost.exe /md5stop %systemroot%\*. /mp /s hklm\software\clients\startmenuinternet|command /rs hklm\software\clients\startmenuinternet|command /64 /rs CREATERESTOREPOINT
- Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
- Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them if you need to start a new topic.
- When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Step 3
Please don't forget to include these items in your reply:
- OTL log
- OTL Extras log
It would be helpful if you could post each log in separate post
#3
- Group: Malware Removal
- Posts: 5,978
- Joined: 20-April 09
Posted 26 May 2011 - 02:00 AM
Due to lack of feedback, this topic has been closed.
If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
Share this topic:
Page 1 of 1
