[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 623
  • Last Modified:

I changed msconfig to boot in safe mode now i cannot open msconfig!

Hi There,

I was getting fake security software on the machine so i changed MSCONFIG to boot to safe mode with networking (the reason for this is I am IT guy at company and blokes machine is about 200miles away!) so i could access it remotely, strange, now it loads into safe mode with networking but i cannot switch it off! (or rather, the user can't, i cannot access the machine at all!) but when he tries to run msconfig he gets an error saying its not there, and if we browse to it, when he tries to open it the 'Open With' box comes up!

any ideas would be greatly appreciated!

thanks
0
catomax
Asked:
catomax
  • 4
  • 3
  • 2
2 Solutions
 
vguzmanIT ManagerCommented:
You def need to scan for viruses/spyware before you do anything else, doing the scan is always better if while in Safe Mode so you are half way done.
Without knowing the virus I still suggest using Combofix:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix
After that you can try using Malwarebytes and remove anything it could find.
Also consider using Hijackthis and remove any traces of this fake security software
0
 
catomaxAuthor Commented:
UPDATE- ok, i have found that by 'Running as administrator' i can open programs in safe mode, now i just need to get to malwarebytes and get rid of this horrible virus!!!
0
 
vguzmanIT ManagerCommented:
I forgot to add that you need to turn off "system restore" to prevent this rogue virus to be reinstalled upon reboot. Once you reboot your PC with system restore off a few times, turn it back on.
0
Prepare for your VMware VCP6-DCV exam.

Josh Coen and Jason Langer have prepared the latest edition of VCP study guide. Both authors have been working in the IT field for more than a decade, and both hold VMware certifications. This 163-page guide covers all 10 of the exam blueprint sections.

 
catomaxAuthor Commented:
thanks! i have got Malwarebytes running a full scan and i will switch off system restore before restarting it, who the hell makes virus's anyway?? have they nothing better to do?
0
 
BillDLCommented:
catomax, there is often a misconception about System Restore Points being able to just automatically reinfect your system. You should read this article by our esteemed expert in malware, rpggamergirl:
http://www.experts-exchange.com/Software/Internet_Email/Anti-Virus/A_1934-Viruses-in-the-System-Volume-Information-System-Restore.html
0
 
BillDLCommented:
You also asked:
"who the hell makes virus's anyway?? have they nothing better to do?"
Gone are the days when a "virus" was just a really annoying popup that said "Ha, Ha! Gotcha!".  Many of the numerous versions of Fake AntiVirus are designed to fool people into paying for a service that never happens, because the malware is incapable of doing anything useful at all.  Some of them lock up your access to files on your computer and won't release them until you either pay up or find the appropriate method to get rid of them.  Others dig for personal and private information useful in the commission of crime.  There is big money behind a lot of the malware that is currently around, and the people creating them are almost as clever as rpggamergirl ;-)  If you have time, view the presentations here:
http://www.sophos.com/en-us/security-news-trends/anatomy-of-an-attack.aspx
(especially the "New breed of cyber criminals" presentation at the bottom of the list) and I am sure that you will begin to get an idea that it's more than just mischief.
0
 
catomaxAuthor Commented:
thanks all, i have got rid of the virus and all is well, i will check out the links you posted and award you both points for helping!

cheers
0
 
BillDLCommented:
Thank you catomax.
0
 
catomaxAuthor Commented:
ay! fawgedaboudit!
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

  • 4
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now