It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
Originally posted by Skewed
Get the data off that you can.
Nuke and load. The only sure fire way to clean it up.
Originally posted by webpirate
reply to post by cyoshi
If it;s as bad as it sounds..it will block Defender from installing.
My suggestion.....Remove the hard drive. Place as a non bootable secondary slave drive in a second computer with an up to date, competent antivirus. Use the second computer to scan the secondary hard drive and try to remove what you can. Sometimes that will work enough to at least let you load into safe mode after replacing it back where it came from.
Start in safe mode with command line.
Run a /SFC scannow scan from the command line...you might well need the installation disk.
Hopefully those will at least allow you to start it more. Reboot back into safe mode with networking. Connect to Microsoft's site and download the safety scanner from here.
Hopefully it will find more of it and remove it to the point of getting you cleaned up and ready to go again. Some of these latest ones have been putting themselves into the recycle bin too. And preventing you from deleting it there without stopping the running process.
Originally posted by junior2991
If the infection already affected that much part of the OS. My best suggestion to you is to put your HDD on another computer either via an enclosure(laptops) or directly in the motherboard. Make sure you have the best possible antivirus out there (you can get free trials, if not you can crack it) and scan your hardrive a few times with different antiviruses.
Back up only the NECESSARY data. And perform a clean install of the OS in the original machine (format hard drive, the long way not the "quick" format) (Recommend Windows 7 ultimate with Bit defender 2012 and any other possible combination) If not just stick with XP.
I am a: A+ certified, MCP on Windows 7, CCNA, CCNP. Also, a computer "scientist" (doesnt really matter). And currently run a business overseas for IT support.
The virus will come back even if you "successfully" disinfect your computer. Trust me I've seen it happen multiple times.
Originally posted by Skewed
The time you are going to spend hacking away at this thing, you could have the system reloaded and back up and running again. I have disk images for just this very reason. If a user gets one of these things, I just reload the entire thing and I am done with it and the user is happy.
Originally posted by webpirate
reply to post by Wrabbit2000
Yeah...I was still writing my post after yours came up and I hadn't seen it yet. I see what your saying...your basically booting to Defender outside of the OS before Windows kicks in. Hadn't thought of that.
These things can be an absolute nightmare to deal with. They will add themselves to the system restore. To the recycle bin. And multiple other places.
Originally posted by Komodo
reply to post by Wrabbit2000
can't install, admin rights hi-jacked .. It's only my pc and I don't have admin account since it's only me on the pc .. any suggestions
hold that thought.. windows safety scanner actually did load and is scanning now..
edit on 11-12-2011 by Komodo because: (no reason given)edit on 11-12-2011 by Komodo because: (no reason given)