We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message
Contact Forum Editor

Send an email to our Forum Editor:


PLEASE NOTE: Your name is used only to let the Forum Editor know who sent the message. Both your name and email address will not be used for any other purpose.

Tech Helproom


It's free to register, to post a question or to start / join a discussion


 

malaware has locked my computer. what can I do ?


bigdavey

Likes # 0

My computer won't boot up I get a screen saying I have done all sorts of illegal stuff and I have to pay a fine, I have tried holding f8 and gone into the reboot in safe mode, but this virus has hijacked the safe boot as well so it kicks back into normal startup halfway through the safe boot!!

I am totally stuck for ideas, i don't have restore disks, I am running XP. If there is a way to wipe the system back to factory settings or if I can download some boot disk or usb boot drive that would help I don't care if i lose data.

thanks guys

Like this post
HondaMan

Likes # 0

Probably shows something which purports to come from Metropolitan Police.

Search in this site fort "Trojan Killer"

Like this post
bigdavey

Likes # 0

yes its pretending to be from the police it would never fool anyone. I have looked at virus removal stuff but I can't acess the pc at all, I need some way to just reset it to factory, or to get it into safe mode maybe booting from a disk or a usb drive....

Like this post
Chronos the 2nd

Likes # 0

Have a look here. Or here.

Like this post
onthelimit1

Likes # 0

I had this virus - the version I had would not let me start in safe mode, but a bootable kaspersky rescue disc found and got rid of the nasty. You should not have to do a factory reset.

Like this post
Secret-Squirrel

Likes # 0

"or if I can download some boot disk or usb boot drive that would help"

Because you're unable to access Safe Mode your options are somewhat limited. Don't worry too much just yet as you'll probably be able to remove the infection by starting the PC with the Kaspersky Rescue Disk - see here for full details.

Like this post
SillBill

Likes # 0

on the limit1

I also used Kaspersky Rescue Disc 10 then Malwarebytes found the remains and quarantined the nasty.

Like this post
bigdavey

Likes # 0

I have done what you say, used the kaspersky disk, but I still have this problem. maybe i am doing something wrong, with the disk, i did a scan all sectors and it found some trojans and i think it quaranteened them, but I still cant get it to boot up to the desktop I still get that screen "your computer is locked"

I am happy to do a restore to factory if there is a way, I use this mostly for email and facebook and theress no data that is important on there. Thanks so far, i thought I'd got it fixed!!

Like this post
Fruit Bat /\0/\

Likes # 0

Do you have a XP Pro CD?

Restore XP

Boot to the command prompt and type:

%systemroot%\system32\restore\rstrui.exe

Press Enter and follow the on-screen prompts to restore to an earlier date/time

if will not boot to command prompt then:

Restore from recovery console http://www.myfixes.com/articles/system

boot from the XP CD. Start Windows Setup and press R to access the recovery console. Select your Windows installation, then type the administrator password – press Enter if there isn't one. Now enter the following commands:

CD C:\ CD "system volume information_resto~1" DIR

You'll see a list of restore point folders with names such as RP1, RP2 and so on. Pick the restore point you wish to use, using the folder date stamps to guide you. Enter the commands:

CD RPx (the restore point you chose) CD SNAPSHOT

This takes you into the folder containing the restore point snapshot files. Copy the Registry backups so that they overwrite the existing Registry files.

COPY Registrymachine_system C:\Windows\System32\Config\System COPY Registrymachine_software C:\Windows\System32\Config\Software COPY Registrymachine_sam C:\Windows\System32\Config\Sam COPY Registrymachine_security C:\Windows\System32\Config\Security COPY Registryuser_.default C:\Windows\System32\Config\Default

Type the command exit to close the Recovery Console and restart the PC.

You should now be able to boot normally scan the machine using Malwarebytes and Hitman pro

Follow Step 2 from here to see how to use malwarebtes and hitman pro

Like this post
onthelimit1

Likes # 0

Have you tried Chronus's second link?

Like this post
bigdavey

Likes # 0

I'm afraid I don't have the disks, its a pre installed version xp home edition :(

Like this post

Reply to this topic

This thread has been locked.



IDG UK Sites

Swatch to release its own line of smartwatches to rival iWatch

IDG UK Sites

From the iPhone 6 to the iWatch and a new Apple TV we look at the products Apple is set to launch...

IDG UK Sites

Miranda July's Somebody app offers a very unusual take on messaging

IDG UK Sites

The 7 most ridiculous iPhone 6 rumours: what Apple WON'T reveal on 9 September