Jump to content

MalwareBytes cannot remove Packer.Gen, Packer.Gen X, FakeAV, Patched, Hijack.Help


Recommended Posts

Computer is in endless boot loop. Here is the DDS

.

DDS (Ver_2011-08-26.01) - NTFSx86

Internet Explorer: 6.0.2800.5512

Run by SYSTEM at 18:19:04 on 2012-08-26

.

============== Running Processes ===============

.

.

============== Pseudo HJT Report ===============

.

uPolicies-explorer: NoSMHelp = 1 (0x1)

uPolicies-explorer: NoSMMyDocs = 1 (0x1)

uPolicies-explorer: NoResolveTrack = 1 (0x1)

uPolicies-explorer: DisableLockWorkstation = 1 (0x1)

mPolicies-explorer: nosmmydocs = 1 (0x1)

mPolicies-explorer: NoDesktopCleanupWizard = 1 (0x1)

mPolicies-explorer: NoThemesTab = 1 (0x1)

mPolicies-system: NoDispAppearancePage = 0 (0x0)

mPolicies-system: NoDispSettingsPage = 0 (0x0)

dPolicies-explorer: NoSMHelp = 1 (0x1)

dPolicies-explorer: NoSMMyDocs = 1 (0x1)

dPolicies-explorer: NoResolveTrack = 1 (0x1)

dPolicies-explorer: DisableLockWorkstation = 1 (0x1)

TCP: DhcpNameServer = 192.168.2.1

TCP: Interfaces\{C2F7C8CB-45F0-45C5-BB5A-8A5B833B8BF3} : DhcpNameServer = 192.168.2.1

HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\Winsock

.

============= SERVICES / DRIVERS ===============

.

.

=============== Created Last 30 ================

.

2012-08-26 18:19:04 -------- d---a-r- x:\documents and settings\all users\Documents

2012-08-26 17:42:33 -------- d-s-a-w- x:\i386\system32\Microsoft

.

==================== Find3M ====================

.

2012-08-26 18:19:05 53 ----a-w- x:\i386\Wireless.cmd

2012-08-26 17:41:25 27 ----a-w- x:\i386\system32\wfwnet.drv

2012-08-26 17:41:23 252 ----a-w- x:\i386\system32\HBCDP.cmd

.

============= FINISH: 18:19:12.14 ===============

Link to post
Share on other sites

Hello Nbrose and welcome to MalwareBytes forums.

What is the Windows version on this system ? Do you have your Windows CD/DVD ?

What antivirus is installed on it ?

If for the time being normal mode of Windows is not useable, please try Safe Mode with Networking.

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools

For directions on how, see How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Do NOT turn off the firewall

Please download Rkill by Grinler and save it to your desktop.


Link 2
Link 3
Link 4
Double-click on the Rkill desktop icon to run the tool.
If using Vista or Windows 7, right-click on it and Run As Administrator.
A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
If not, delete the file, then download and use the one provided in Link 2.
If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
If the tool does not run from any of the links provided, please let me know.
If your antivirus program gives a prompt message, respond positive to allow RKILL to run.
If a malware-rogue gives a message regarding RKILL, proceed forward to running RKILL

IF you still have a problem running RKILL, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.

NEXT:

Download Random's System Information Tool (RSIT) by random/random from here and save it to your desktop.

  • Double click on RSIT.exe to run RSIT.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)

Link to post
Share on other sites

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.