virus protection 2010 new age crap Solved/Closed

Question

same thing above happend to me scan fake virus crap some1 using my email shit spam or somethin.. then my mate shut my comp down now when i start it i get to my log on screen. I log on but i get a black screen cant do shit no task manger so i cant find the process crap.. so i tried safe mode same shit black screen cant do anythin.. so i then tried safe mode wth network ran processes there but i cant see anythin there that shouldnt be there. so wat can i do about that?? cant access anythin so i cant download anythin or run anythin. the only thing i can think of now is formatting hardrive reinstalling windows 7 but ill lose everythin and i dont really wanna... CAN SOME1 PLZ HELP ME FIND ANOTHER OPTION SO I DONT HAVE TO LOSE MY SHIT!! PLZ..   

          if i can get to my desktop im all good i can work from there i got stuff i can use..  
             
                    ...plz respond asap i love my comp lol...

Ambucias · Accepted Answer

Hello,

I have returned and here is what I suggest to you:

reboot your computer in the Safe mode with command prompt. 

Once Windows loaded, command prompt (black window) opens. Type notepad and press Enter. 

A notepad window opens. Type the following text into notepad: 

[Version] 
Signature="$Chicago$" 
Provider=Myantispyware.com 

[DefaultInstall] 
AddReg=regsec 

[regsec] 
HKCU, Software\Microsoft\Windows\CurrentVersion\Policies\System,DisableRegistryTools,0x00000020,0 
HKLM, Software\Microsoft\Windows NT\CurrentVersion\Winlogon,Shell,0x00000020,"Explorer.exe" 

Save this as fix.inf to your Desktop (remember to select Save as file type: All files in Notepad). Close Notepad. 

In the command prompt type Explorer.exe and Press Enter. Windows Explorer opens. Locate the fix.inf, click right button and select Install. Close Windows Explorer. 

In the command prompt type shutdown -r and press Enter. Your computer will be rebooted. 

Download MalwareBytes Anti-malware (MBAM). Once downloaded, close all programs and windows on your computer. 

https://ccm.net/downloads/security-and-maintenance/4621-malwarebytes-anti-malware/ 

Double-click on the icon on your desktop named mbam-setup.exe. This will start the installation of MalwareBytes Anti-malware onto your computer. When the installation begins, keep following the prompts in order to continue with the installation process. Do not make any changes to default settings and when the program has finished installing, make sure a checkmark is placed next to "Update Malwarebytes' Anti-Malware" and Launch "Malwarebytes' Anti-Malware". Then click Finish. 

Insure to update Malwarebyte 

Please return to me for further instructions.

Good luck

Ambucias · Answer

Hi Leo,

I understand your worry and I trust that you will be able to preserve your data.

I will be happy to help you, however, do me a favour for it gets confusing for me when I must decypher your message, that is put all of your excrement words to one side and then the others to the another side to get to understand.

I think that the process your were looking for might be:

AV2010.exe svchost.exe wingamma.exe 

If you find the above process, please tell me and I will have further instructions for you to remove the rest of this rogue Trojan Horse.

Regards

asianbaby · Answer

I have that same problem currently  ! :(
what did you do to fix it?

Ambucias · Answer

Hello,

It isn't fixed yet!  See Ambucias answer for the moment and come back.

Leo1469 · Answer

Please download and run ComboFix:

http://www.combofix.org/download.php

WORKED BEAUTIFULY IM BACK BIG THANX TO ALL


                              HIGHLY RECOMMENDED

Leo1469 · Answer

hit shift 5 times click got to the ease of access center access full computer that way download combo fix WORKS WELL

Ambucias · Answer

Thank you very much!

You"re a real pal!  

I will remember this even if I don't know why it worked and what gave you the idea of doing it like Shift! With all my dealing with viruses never heard of it... what else...

God save the Queen!

My very best regards.

dimitris · Answer

dear Ambucias

I must admit that your comment looks helpfull but anfortunatally did not work on my pc (propably becouse i have greek windows...). What i did is recover my pc to a previous date before i download virus protector. 

Just type in the command propt : %systemroot%\system32\restore\rstrui.exe

It's quite easy and will do the trick!

Best regards and thanks for everysthing
Dimitris

Leo Fuellas · Answer

after one week of nerve wracking experience with this virus, i finally have it removed...i tried everything based on the instructions of different people having this sort of problem but to no avail, probably i have the worst case here, thanks to my spanish journalist friend! she told me to create another user account, because vst virus is usually attached to the user account, so i did, when open the new user account, i didn't encounter the virus, but just to make sure, i scanned my hard drives using malwarebytes and avast and found several viruses, after deleting the virus i reboot to my previous user account just to check if the virus is still there, thank GOD....finally, VST IS ALL GONE! hope this will work for you also..... thank you TERESA! HEAVEN SENT ANGEL.

Ambucias · Answer

Hello HELPP,

No, no, we shall not surrender!

As one great American commander replied to the Germans in Bastogne: "Nuts!".

To quote (in part) Winston Churchill: Should computers live for a thousand years, this will be our finest hour.

Please download this Rogue Kill which will delete the process, if you must, downlaod from another computer and run it from command prompt.

https://download.bleepingcomputer.com/grinler/rkill.com 

1. Double-click on the rkill.com in order to automatically attempt to stop any processes associated with Security Tool and other Rogue programs. 

Please be patient while the program looks for various malware programs and ends them. When it has finished, the black window will automatically close and you can continue with the next step. If you get a message that rkill is an infection, do not be concerned. This message is just a fake warning given by Security Tool when it terminates programs that may potentially remove it. If you run into these infections warnings that close Rkill, a trick is to leave the warning on the screen and then run Rkill again. By not closing the warning, this typically will allow you to bypass the malware trying to protect itself so that rkill can terminate Security Tool . So, please try running Rkill until malware is no longer running. 

Do not reboot your computer or the soul of the dead trojan horse will come back to haunt you. 

Then, follow the procedure for ComboFix.

Regards

Let me kill them · Answer

I too have this problem and tried the command prompt boot solution, however most of the software in the Windows\system32 directory has been renamed to some random name so most things dont work anymore.  By the way I had 2 virus scanner running on my PC; McAffe and Microsoft Essentials.

I am going to re-install Vista to get into a clean state.

JDR · Answer

Restart your computer, and then press and hold F8 during the initial startup to start your computer in safe mode with a Command prompt.

Use the arrow keys to select the Safe mode with a Command prompt option.

If you are prompted to select an operating system, use the arrow keys to select the appropriate operating system for your computer, and then press ENTER.

Log on as an administrator or with an account that has administrator credentials.
At the command prompt, type %systemroot%\system32\restore\rstrui.exe, and then press ENTER.

Follow the instructions that appear on the screen to restore your computer to a functional state.

ee · Answer

yeah

Virus protection 2010 new age crap

13 responses

Similar discussions

Subscribe To Our Newsletter!