[Infected] Antivirus2008 Pro [Aggressive form]

Hello everyone!

I am quite a newbie, and I am aware that previous posts regarding Antivirus2008 exist here, however I havent found anything related to the version I apparently have.

I have Windows XP Home.

My main problem in getting rid of it through the steps details out there, is that it has blocked and deleted every access for me to remove it or kill the process, since

a) It deleted the access to my C: drive
b) It deleted the Start menu access to the Control Panel
c) It deleted the Start menu access to Run
d) It blocks my Task manager
e) It apparently blocks me from installing Ad-Aware (upon install I get a message saying the process has been blocked from the Manager)

and all of this in my Safe Mode with Networking enabled. I even had a software for removing SmitFraud, but when opening it now it has got my computer stuck.

Any ideas how to start dealing with this horrible bug?


Kind regards from Chile
Germán

 

Welcome to Major Geeks!

Please follow the instructions in the below link and attach the requested logs when you finish these instructions. If something does not run, write down the info to explain to us later but keep on going. Do not assume that because one step does not work that they all will not.

READ & RUN ME FIRST. Malware Removal Guide

 

Thank you for your reply Shadow_Puter_Dude


I have started dealing with the guide you linked me to, and which I had previously avoided because of pretty much nothing working for me. But here is a detail of what my problems are with it, to see if you know any workarounds or so.


1) I cant access my Control Panel thus I cant clean programs through the usual Add/Remove programs method (by the way, I cant access my Registry either).

2) I cant properly set ut Msconfig, since there is no longer a Run icon in my Start menu.

3) I didnt download MGtools.exe since you point out it is critical to save it to the root folder of Windows' drive, and I cant access my C: drive anymore from any Explorer or so, thus I couldnt install it there. I have other drives, I dont know if its useful to install it there.

4) Upon intalling SUPERAntiSpyware, I get error message saying: System admin established directives to block this installation (or something similar, since it was in Spanish).

5) I couldnt avoid having TEATIMER installed with respect to Spybot S&D, since I had it installed from before.



Should keep installing the rest?



Kind regards from Chile
Germán

 

Download and install
- ExplorerXP

Use ExplorerXP to move MGTools to the C drive and install it.

Skip what doesn't work and continue with the instructions.

Let me know if this works are not.

 

Well ExplorerXP doesnt do the trick because my C: drive has been hidden or something similar, as I cant access it anywhere from my computer, even though I can install some things on it. Was this key to proceed? I will just go on as you told me with whatever bit I can and will let you know.

So many thanks for everything.

Regards from Chile

Germán

 

Going to try using a different tool. This is similar in function to MGTools

Download:
- ISeeYouXP by ShadowPuterDude

Double-click ISeeYouXP.exe, ISeeYouXp will be extracted to C:\ISeeYouXP; and a shortcut to ISeeYouXP.bat will be placed on the Desktop.

Double-click the ISeeYouXP shortcut to run ISeeYouXP.

Possible Error Messages

• If your ISeeYouXP.txt log appears to be empty or semi-empty or you get an error message similar to the below when running ISeeYouXP.bat and you are running Windows XP or Windows 2000, follow the steps further down that relate to your OS
  
  To fix the above error message, choose the download below which is appropriate for your system
  • For Windows XP Pro: download and run: XPproFix
  • For Windows XP Home: download and run: XPHomeFix
  • For Windows 2000: download and run: W2KFix
  
  Then run ISeeYouXP.bat again and attach the log.
• A possible second type of error message may occur as shown in the quote box below! If you get either of these two messages, perform the Resolution steps given in this: Virtual Device Driver Error Message in 16-Bit MS-DOS Subsystem

After attempting to fix the above errors, run ISeeYouXP.bat and attach the log.

IMPORTANT NOTE:

Vista Users

UAC must be turned off to run this script.

Turning Off/On UAC in Vista
1. Open the Control Panel.
2. Under User Account and Family settings click on the "Add or remove user account".
3. Click on your user account.
4. Under the user account click on the "Go to the main User Account page" link.
5. Under "Make changes to your user account" click on the "Change security settings" link.
6. In the "Turn on User Account Control (UAC) to make your computer more secure" click to unselect the "Use User Account Control (UAC) to help protect your computer". Click on the Ok button.
7. You will be prompted to reboot your computer. Do so.

In order to re-enable UAC just select the above checkbox and reboot.

To Run ISeeYouXP right-click on the batch file and select "Run as Administrator"

Attach the ISeeYouXP log along with ay other logs you successfully obtain.

The ISeeYouXP log can get quite large; so, it may be necessary to zip it before attaching it here.