A few weeks back two of our home laptops were hit by Anti-Virus System Pro, or some such malware. The av software we had did not catch it. Evertime we would try to run Norton, or go to a website on the pc to download the repair for this, we would be given error messages that this site could not be found, or that process could not be run. It got to the point we couldn’t connect to the internet.
What I had to do first was...as soon as the pc booted up, I had to ctrl alt del to get to the task manager, and then END the processes that were launching this bullshiite virus. Once I did this, I was able to copy (via thumb drive), the fix. Which really didn’t work, I still had to go into the registry and delete a bunch of files related to this virus.
At one point yesterday I had it disabled on the task manager but it continually turned itself on, much like Zero does to himself.
This is generally what I do:
As soon as the machine boots up, go to “Start/Run” and type “msconfig”.
On the “General” tab, select “Selective Startup” then unselect “Load Startup Items”, or just to be thorough, go to the “Startup” tab and deselect everything. But do note any startup items that have random letters in their names, that is usually a clue that is a rogue program.
Reboot in safe mode.
Usually if I know the virus was download that day, I will do a search of all files modified during the day, usually you will see a bunch of files with the same timestamp.
Make a note of any files that have the same timestamp. But unless you know what you’re doing, do not delete them, unless you are absolutely sure that none of those files are critical Windows System files. But just knowing where the files are could be important in solving where the virus came from.
Now even that won’t get rid of registry entries, so that’s especially where I would rely on Malwarebytes or Combo-Fix.