| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 100439 | 2009-06-07 23:04:00 | Koobface facebook worm - | Gobe1 (6290) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 780463 | 2009-06-07 23:04:00 | Hi, i have a families pc that supposedly had this worm. When it booted it said windows needed to be activated, so i clicked yes and it came up that windows was already activated, then click ok and it goes back to login.. so this keep repeating and you couldnt login. So i booted in to safemode and restored back to before the worm was downloaded and then it let me login..? (wow i was very surprised this worked) I uninstalled all programs not required, installed avast and malware bytes and trojan remover, then rebooted (cautiously) and it logged in again. Sweet... Then i turned off windows restore (bad move as i find out later) then updated all the avast etc then scanned the pc. Avast found nothing Trojan remover found nothing Malware Bytes found 12 items, 4 of which were koobface (ahah) and then required to be rebooted to finish removing these items. I rebooted on which had the same "need to activate cycle" :crying Now i had no restore point to go back to... damn SO is there a way to patch the activation cycle?? Has anyone else had to tackle this worm? What did you do to get it successfully? BTW i formatted the machine as there was nothing that need to be saved (luckily) but i still would have liked to repair this just to say i could.:cool: |
Gobe1 (6290) | ||
| 780464 | 2009-06-07 23:09:00 | So does safe mode work? | Blam (54) | ||
| 780465 | 2009-06-07 23:11:00 | i would suggest you put that harddrive in a clean PC and then run the programs on that drive.... External harddrive enclosures are $40 - $60 though, ill edit my post with some links.... btw what is it 3.5 ide or sata? | ZapperBoy10647 (11988) | ||
| 780466 | 2009-06-07 23:12:00 | Did you select all options under utilities in TR? | Speedy Gonzales (78) | ||
| 780467 | 2009-06-07 23:12:00 | Yeah it did, so i shouldnt have been so lazy eh I was dissapointed in avast actually to tell the truth Online it says you just need to have an uptodate virus scanner and firewall and do an online scan to remove it... yeah right (new tui ad):thumbs: Drives were normal 3.5 ide, i was doing it over the weeked for gratis so spending money on it when there was nothing to be saved would have been a waste, but i could have whacked it in to my pc but didnt want to compromised my stuff (too much to lose) |
Gobe1 (6290) | ||
| 780468 | 2009-06-07 23:14:00 | I know there hardrives, im asking which one he has... P.S which region do you live in?!? |
ZapperBoy10647 (11988) | ||
| 780469 | 2009-06-07 23:15:00 | Did you select all options under utilities in TR? Nope TR picked up nothing, another dissapointment all options, theres an "all options?", damn again |
Gobe1 (6290) | ||
| 780470 | 2009-06-07 23:16:00 | Yup didnt read it properly which is why I changed my post :p | Speedy Gonzales (78) | ||
| 780471 | 2009-06-07 23:17:00 | Im in New Plymouth | Gobe1 (6290) | ||
| 780472 | 2009-06-07 23:20:00 | www.playtech.co.nz pconlineshop.co.nz.219.88.240.130.orcon.net.nz www.computerlounge.co.nz Heres a few links for HDD enclosures Playtech + pconline shop you have to pay freight for, computerlounge you dont have to. EDIT: Heres some more links www.techmaster.co.nz www.techmaster.co.nz |
ZapperBoy10647 (11988) | ||
| 1 2 | |||||