Jump to content
Posted 04 March 2011 - 06:41 PM
Posted 05 March 2011 - 10:55 AM
Posted 05 March 2011 - 04:29 PM
Edited by JerinDS, 05 March 2011 - 04:42 PM.
Posted 05 March 2011 - 07:13 PM
Edited by RSBjr, 05 March 2011 - 07:28 PM.
Posted 05 March 2011 - 10:23 PM
Thanks for this, I caved in the end and went looking for an OS disk, although it is still re-installing, so potentially still not resolved yet, ill see how the reinstall goes and shall update from there.
I had this issue on my General Manager's computer today. I was so frustrated and defeated I didnt even think of the obvious. Here is how I defeated this beast using system restore.
1. restarted in safe mode with command prompt (was lucky enough to get cmd up)
2. here is the filepath for system restore C:\windows\system32\restore\rstrui.exe
After the restore and reboot i ran rkill and Malwarebytes to make sure and computer is fully functional.
It worked for me hopefully it works for you!
Posted 08 March 2011 - 01:29 AM
Edited by TheHaaz, 08 March 2011 - 01:30 AM.
Posted 08 March 2011 - 07:50 AM
Posted 08 March 2011 - 08:18 AM
It is not recommended to manually edit the registry without first making a backup! Likewise I do not recommend to delete files if you are not absolutely sure what they are.
so I navigated through the registry to hkey_current_user/software/microsoft/windows/currentVersion/policies/system and deleted the value called DisableTaskMgr...(or set the value to "0"). Once I was able to open task manager I closed the processes I found harmful and continued searching for those .exe files on the disk.
"Now faith is the substance of things hoped for, the evidence of things not seen."
Malware analyst @ Emsisoft
0 members, 0 guests, 0 anonymous users