How to delete mchinjdrv.sys in xp

Discussion in 'Malware Help (A Specialist Will Reply)' started by twindragon6, Apr 5, 2009.

  1. twindragon6

    twindragon6 Private E-2

    BRIEF RANT ABOUT A-SQUARED ANTI-DIALER:

    FIRST JUST LET ME SAY THAT I LOVE EMSISOFT'S SOFTWARE ESPECIALLY THE A-SQUARED LINE! :cool HOWEVER A-SQUARED ANTI-DIALER FREE SHIPS WITH MADCODEHOOK SPYWARE! :confused WHILE BY ITSELF MADCODEHOOK IS A LEGITIMATE PROGRAM; IT IS USED BY HACKERS AROUND THE WORLD TO GAIN ACCESS TO YOUR KEYSTROKES! THATS RIGHT BOY'S AND GIRLS; ANYTHING YOU TYPE THEY CAN SEE! FURTHERMORE UPON UNINSTALLATION OF THE ANTI-DIALER SOFTWARE THE CODEHOOKS REMAIN LOCKED IN YOUR REGISTRY TO BE EXPLOITED BY ANYONE OR ANY PIECE OF MALICIOUS SOFTWARE THAT RELIES ON THEM THAT JUST SO HAPPENS TO ACCIDENTALLY JUMP ON YOUR COMPUTER! SO WHY EMSISOFT? IN MY OPINION IT IS SIMPLY IRRESPONSIBLE AS A SOFTWARE COMPANY TO SHIP A PROGRAM TO ELIMINATE SPYWARE WITH KNOWN SPYWARE SOFTWARE IN IT AND FURTHERMORE LEAVE THE CODE HOOK POINTS IN THE REGISTRY UPON UNINSTALLATION OF SAID SOFTWARE FOR HACKERS TO EXPLOIT! :mad


    REMOVAL TOOLS AND INSTRUCTIONS:

    [1] DOWNLOAD ALL THE NECESSARY TOOLS AND PRINT ALL THE NECESSARY INSTRUCTIONS LISTED BELOW.

    [2] REBOOT INTO SAFE MODE BY HOLDING F8 DURING BOOT. SELECT SAFE MODE FROM LIST AND PRESS ENTER.

    [3] RUN MADSHOW.EXE AND UNLOAD ALL INSTANCES OF MCHINJDRV.SYS
    (A-SQUARED KNOWN INFECTED DLLS ARE LISTED AT THE BOTTOM OF THIS PAGE. UNLOAD ALL INSTANCES THEN DELETE THESE! YOU MAY HAVE TO USE UNLOCKER IF THE FILES ARE IN USE!)

    [4] FOLLOW SYMANTEC'S REMOVAL INSTRUCTIONS. CHANCES ARE THE REGISTRY KEYS WILL BE LOCKED AND THE PERMISSIONS WILL HAVE TO BE CHANGED IN ORDER TO DELETE THEM!

    [5] DELETE KNOWN PROBLEM DLLS THEN REBOOT ONLY AFTER ALL INSTANCES ARE ELIMINATED FROM THE REGISTRY (SOME KEYS MAY NOT BE PRESENT SO DON'T WORRY ABOUT THOSE. JUST DELETE THE ONES THAT ARE THERE!) THEN REBOOT! ENJOY!!!

    TOOLS APPS AND INFO:

    A TOOL TO SHOW ALL APPLICATIONS RUNNING MCHINJDRV.SYS:
    http://uall.cheat-project.com/madshiprogs/madShow.exe

    UNLOCKER (A USEFUL TOOL TO UNLOCK AND DELETE IN USE FILES):
    http://ccollomb.free.fr/unlocker/unlocker1.8.7.exe

    JV16 POWERTOOLS (THE MOST USEFUL SET OF REGISTRY TOOLS IN THE WORLD! FEATURES A KEYWORD SEARCH USEFUL FOR FINDING INFECTED KEYS!):
    http://www.macecraft.com/downloads/jv16pt_setup_hb.exe

    SYMANTEC MCHINJDRV.SYS REMOVAL INSTRUCTIONS:
    http://www.symantec.com/security_response/writeup.jsp?docid=2003-111816-3817-99&tabid=3

    SOME OF THE REGISTRY KEYS WILL BE LOCKED SO THE PERMISSIONS SETTINGS WILL HAVE TO BE CHANGED SO THAT THEY CAN BE DELETED:

    Assigning Permissions to a Registry Key

    1. Click the key that you want to assign permissions.
    2. On the Edit menu, click Permissions.
    3. Click the group or user name that you want to work with.
    4. Assign one of the following access levels to the key:
    * Select the Allow check box for Read to give permission to read the key contents, but not save any changes.
    * Select the Allow check box for Full Control to give permission to open, edit, and take ownership of the key.
    5. To grant special permission in the key, click Advanced, and then double-click the user or group that you want to assign special access. Under Permissions, select the Allow or the Deny check box for each permission you want to allow or deny.

    USEFUL LINKS:
    How to set or change registry editing permissions in Windows XP or in Windows Server 2003:
    http://support.microsoft.com/kb/310426

    DELETE THESE BEFORE RESTART:
    C:\Program Files\a-squared Anti-Dialer\A2HANDLER.DLL (IN XP 32-BIT)
    C:\Program Files (x86)\a-squared Anti-Dialer\A2HANDLER.DLL (IN XP 64-BIT)
     
    twindragon6, Apr 5, 2009
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    chaslang, Apr 9, 2009
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds