I have had my laptop taken over by the Antivirus System Pro spyware or malware. I have searched the web and found self help tips but I am unable to find any of the listed files anywhere on my pc including the registry. I am unable to access my restore points, as I am getting an error message that says that it has been disabled by group policy and to contact my domain administrator. I am also unable to access my task manager, as it too has been disabled, and I need to contact my administrator, who btw is me.

The aim of the malware is to get me to buy the fake software, and will disrupt and create system damages if I do not cooperate, which I have not been doing. I finally managed to install Spyware Doctor, but I am still open to a more cost effective solution in removing this foreign invasion from my pc. I am also hoping to have it fixed before too much damage occurs.

Can anyone assist me with this problem. I am quite capable of following IT instructions.

Hi,

Please do the following:


Please download exeHelper to your desktop.

• Double-click on exeHelper.com to run the fix.
• A black window should pop up, press any key to close once the fix is completed.
• Post the contents of log.txt (Will be created in the directory where you ran exeHelper.com)

Note If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).

NOTE: If exeHelper will not run initially, reboot...then run exeHelper as soon as possible before everything finishes loading.



NEXT:

Please download DDS from either of these links

LINK 1
LINK 2

and save it to your desktop.

• Disable any script blocking protection
• Double click dds.pif to run the tool.
• When done, two DDS.txt's will open.
• Save both reports to your desktop.

---------------------------------------------------
Please include the contents of the following in your next reply:

DDS.txt
Attach.txt.


NEXT



Download GMER Rootkit Scanner from here or here.

• Extract the contents of the zipped file to desktop.
• Double click GMER.exe. If asked to allow gmer.sys driver to load, please consent .
• If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
  
  
  Click the image to enlarge it
  
• In the right panel, you will see several boxes that have been checked. Uncheck the following ...
  • Sections
  • IAT/EAT
  • Drives/Partition other than Systemdrive (typically C:\)
  • Show All (don't miss this one)
• Then click the Scan button & wait for it to finish.
• Once done click on the [Save..] button, and in the File name area, type in "Gmer.txt" or it will save as a .log file which cannot be uploaded to your post.
  
• Save it where you can easily find it, such as your desktop, and post it in your next reply.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries

Due to inactivity this topic will be closed.
If you need help please start a new thread.