Win32/Cryptor infection on windows xp pro

View previous topic View next topic Go down

Win32/Cryptor infection on windows xp pro

Post by mark24317 on 12th December 2009, 11:21 pm

Yeah I have it. What should I do run Malwarebyte?

Thanks please help ,
Mark

mark24317
Beginner
Beginner

Posts Posts : 1
Joined Joined : 2009-12-12
OS OS : XP Pro
Points Points : 25553
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Win32/Cryptor infection on windows xp pro

Post by Dr Jay on 13th December 2009, 12:15 am

Please download ComboFix from [You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.]

[You must be registered and logged in to see this link.]

Rename ComboFix.exe to commy.exe before you save it to your Desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found [You must be registered and logged in to see this link.]
  • Click Start>Run then copy paste the following command into the Run box & click OK "%userprofile%\desktop\commy.exe" /stepdel
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console


Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


  • Click on Yes, to continue scanning for malware.
  • When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 14310
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Arch. Arch. : x64 (64-bit)
Protection Protection : Bitdefender Total Security
Points Points : 302971
# Likes # Likes : 10

View user profile

Back to top Go down

Re: Win32/Cryptor infection on windows xp pro

Post by ssfblue on 15th December 2009, 11:37 am

Hey there! Thanks a lot for the info; however, I might have been too late.

I see that this particular post was December 12, 2009 so this was the most recent post about win32/cryptor.

I attempted to download ComboFix.exe; however, the publisher BleepingCompter has temporarily disabled the program due to an issue.

Is there an alternative solution to the problem or will it be okay to wait a little bit until the issue with ComboFix is solved?



Info:

Windows XP Pro
AVG Anti-Virus Free Edition 9.0

I ran program and it successfully removed 156/160 infected files; however, four still remain. The still-infected files are as follows:

System (4):\memory_04420000
System (4):\memory_043f0000
System (4):\memory_043c0000
System (4)


Any more help is appreciated!

ssfblue
Beginner
Beginner

Posts Posts : 1
Joined Joined : 2009-12-15
OS OS : Windows XP Pro
Points Points : 25535
# Likes # Likes : 0

View user profile

Back to top Go down

Re: Win32/Cryptor infection on windows xp pro

Post by Dr Jay on 15th December 2009, 11:52 am

Thanks for that info. I will pass it on to my other staff.

Please download [You must be registered and logged in to see this link.] and save to your desktop.
[You must be registered and logged in to see this link.]

  • Be sure to print out the instructions provided on the same page.
  • Restart your computer in "Safe Mode".
  • Double-click on Norman_Malware_Cleaner.exe to start the program.
  • Read the End User License Agreement and click the Accept button to open the scanning window.
  • Click Start Scan to begin.
  • In some cases Norman Malware Cleaner may require that you restart the computer to completely remove an infection. If prompted, reboot and run the tool again to ensure that all infections are removed.
  • After the scan has finished, a log file with the date (i.e. NFix_2009-06-22_07-08-56.log) will be created on your desktop with the results.
Note: For usb flash drives and/or other removable drives to scan, use the Add button to browse to the drives location, click on the drive to highlight and choose Ok.


Dr. Jay (DJ)


[You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.] ~ [You must be registered and logged in to see this link.]

Dr Jay
Head Administrator
Head Administrator

Posts Posts : 14310
Joined Joined : 2009-09-06
Gender Gender : Male
OS OS : Windows 10 Home & Pro
Arch. Arch. : x64 (64-bit)
Protection Protection : Bitdefender Total Security
Points Points : 302971
# Likes # Likes : 10

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum