Jump to content
Posted 14 February 2014 - 12:32 PM
Posted 19 February 2014 - 11:24 AM
Welcome to BC forums, Ccdogs!
Please download the following to a clean computer:
Save the file to a USB drive
Start the infected Windows 8 computer in Safe Mode with Command Prompt:
Press the Windows key and the C key, and then click: Settings
Click Power, hold down the Shift key, and click: Restart
Click on Troubleshoot and select: Advanced options.
In the Advanced Options screen, select: Startup Settings
Press 6 to select: Enable Safe Mode with Command Prompt
At the Command Prompt window, please type: explorer.exe
Press Enter on the keyboard.
You should now see the Desktop.
Close the Command Prompt by clicking the x on the upper right corner.
Plug in the USB drive.
Access the Computer (My Computer) link in Windows 8:
From the Desktop, right-click the File Explorer folder icon located on the TaskBar at the bottom of the screen.
From File Explorer right-click the Computer link on the left side and open it.
Right-click the USB drive, and select: Open
Double-click on the RemVimes.reg file it contains.
When prompted, allow the data to merge into the Registry.
Remove the USB drive from your computer.
Now, please use Malwarebytes Anti-Malware (MBAM)
Double-click the MBAM file to run it.
When the installation begins, follow the prompts in the setup process.
Do not make any changes to default settings and when the program has finished installing, make sure only the following options are checked:
>Update Malwarebytes’ Anti-Malware
>Launch Malwarebytes’ Anti-Malware
Uncheck: (if present)
>Enable free trial of Malwarebytes Anti-Malware PRO
Click on the Finish button.
If an update is found, the program automatically updates itself.
At the program console, on the Scanner tab, and select: Perform Full Scan
Next, click on the Scan button.
When the Malwarebytes scan is completed, click on: Show Results
When presented with a screen showing the malware detected, make sure everything is Checked, and click on: Remove Selected
When removal is completed, a report opens in Notepad.
Please copy/paste the entire contents of the MBAM report in your reply.
Note: If MBAM encounters a file that is difficult to remove, you are asked to reboot the computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) prevents MBAM from removing all the malware.
Edited by Aaflac, 19 February 2014 - 02:31 PM.
0 members, 0 guests, 0 anonymous users