regsweep virus removal help ...

Viper · 29-11-2009, 09:33 PM

my ol man thought he was doing the righty and downloaded and paid for regsweep. He said he hasn't been able to sign on to his pc before he downloaded this regsweep.

turns out regsweep is a bad ass fucking virus and they took his money (only $22) and gave him the virus. Nice work you bunch scamming cheap fucks .... anyway!

The system won't let him log on. Instead you get this privacy centre screen come up and when I shut down the process it won't continue through to windows. Can't install programs so can't install spyzooka to get rid of it. I do have malware bytes on there from earlier though. That found the trojans. I'm not running it again in full scan which will take a couple hours to see if it will completely wipe it.

any ideas on how I can get spyzooka installed is really what I'm after or how I can make windows log on.

cheers

merctom · 29-11-2009, 09:35 PM

run a virus scanner off of a cd (boot off the cd not the hdd)

Viper · 29-11-2009, 09:37 PM

such as?

Viper · 29-11-2009, 09:40 PM

I should add the virus won't let me access the web so I can't go to the spyzooka website and use their scan either.

brodes · 29-11-2009, 10:11 PM

Try this link for a list of bootable CD virus scanners.

FREE Bootable AntiVirus Rescue CDs Download List

Good luck, viruses like this are a pain in the ass.

Magilla · 30-11-2009, 10:29 AM

Question: How are you running MalwareBytes if Windows won't log on correctly?

Directly from Task Manager?

Viper · 30-11-2009, 02:13 PM

I installed that a few months ago and can log in to safe mode to run it ...

ran it again overnight and it says it found nothing ... i'm thinking because safe mode doesn't start up all DLL's etc the virus isn't running. when I restart in normal mode the virus fires up and takes over.

I can't run malware bytes in normal windows though. Nothing works.

Viper · 30-11-2009, 02:35 PM

just loaded the bitdefender antivirus on to a recovery disc ... see how it goes.

Magilla · 30-11-2009, 03:21 PM

In normal mode, can you get to task manager?

kenty · 30-11-2009, 08:21 PM

Try a program called what's running basically it can shut programs off and also modify ur startup

Viper · 30-11-2009, 08:24 PM

Yeah magilla I can. I actually saved a copy of the registry from 2 weeks ago and thought manually running regedit and import a good registryight work
but nope. Bit defender didn't find the virus either

Viper · 30-11-2009, 09:09 PM

sorted ... magilla you gave me an idea ...

ran CMD from task bar then navigated to the malware bytes directory and run it from there. Cleaned it up in 9 minutes ... woot!

cheers

Magilla · 30-11-2009, 09:34 PM

That was my suggestion if you could get to task mangler (nearly). You can go to File -> Run in TM and browse to the MalwareBytes directory and run it from there without using the commandline.

Glad you got it sorted though.

Viper · 01-12-2009, 07:18 AM

malware bytes kicks fkn ass on this shit ... just have to be in normal windows environment for it to work ...