Laptop infected with Spywarer/malware

Hi,
My laptop faced a similar problem where the desktop came with a red message saying that your machine is infected. Also in the Start > Run > cmd ; An error comes saying that 'Windows can not find 'cmd'. Not able to open a word document or Adobe.
Also volume icons are gone and no sound is coming while playing songs or movies.

I started the fixing process from http://forums.majorgeeks.com/showthread.php?t=80987 and have reached till http://forums.majorgeeks.com/showthread.php?t=154672 ( Malwarebytes Anti-Malware ). However I am stuck here as after the installation when I click on quick scan, the window closes after 1-2 seconds.

I then tried to move ahead with combofix.exe but there also I just get a combo fix progress bar after double clicking combofix.exe which closes after some time.

Can someone please advise on the next steps? Thanks in advance..

Puneet

 

Welcome to Major Geeks!

Let's see if we can get some info so that we can determine which system file has been corrupted. That way we can try to replace it.

Download and save the below to your PC (save it anywhere you can find it. The Desktop is fine). Then double click on it to run it.

AVPFind.bat

It should take a couple minutes to run. You will see a black command prompt window while it is running and it should close when it is finished. Once it finishes, attach the c:\avplog.txt


Now download and Run exeHelper

• Please download exeHelper to your desktop.
• Double-click on exeHelper.com to run the fix.
• A black window should pop up, press any key to close once the fix is completed.
• Post the contents of log.txt (Will be created in the directory where you ran exeHelper.com)

Note: If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file)


Next, try running the below online scan:

http://www.superantispyware.com/onlinescan.html

Reboot immediately after scanning if it finds and removes anything. Let me know if anything was found. See if you can save a log with it and attach it in the next reply.



Now run a scan with MGtools and attach the log. Using MGtools



Next post please attach:

• c:\avplog.txt
• log.txt (from exeHelper)
• SAS log (if you can)
• New MGlogs.zip

 

Hi,

Thanks for this email. However situation has worsen now on my infected laptop. I am not able to access internet using the laptop and IE and Firefox are also not opening. Double clicking on IE doesn't result into anything (as if I have never clicked on it) and double clicking on Firefox gives an error.

I downloaded AVPFind.bat from another laptop, trasferred it to infected laptop using memory key. Copied it on desktop and double clicked on it. I got the error that Windows can not find the file. ( I can see that it is present on destop).

I copied AVPFind.bat directly under C: and tried to run it by double clicking it but again the same error.

Please advise.

Regards
Puneet

 

You may need to try a Rescue CD. Avira AntiVir Rescue System