Frustrated

Discussion in 'other security issues & news' started by Rico, Dec 10, 2011.

Thread Status:
Not open for further replies.
  1. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,704
    Location:
    Texas
    Hi Guys,

    Working on a club members PC, infected with the rogue "System Fix"

    Boot to windows > Rkill > Hitman Pro 5 Trojans removed > Emsisoft Emergency Deep Scan 7 Trojans removed. This PC had no visible AV, but remnants of AVG & Symantec. Next ran AVG remover & Symantec removal tool. Symantec required a reboot. SYSTEM FIX is back.

    Next Rkill > MBAM > TDSS Killer 0 found > reboot > System Fix is a cripple with remnants left...

    I don't understand why MBAM could remove, while Hitman & Emsisoft could not.

    Are rogues exclusive for MBAM removal only.

    Besides 'Remove Fake AV" & "MBAM" whats available for rogue removalo_O?

    Rico
     
  2. Ranget

    Ranget Registered Member

    Joined:
    Mar 24, 2011
    Posts:
    846
    Location:
    Not Really Sure :/
    this guide will help you
    http://www.bleepingcomputer.com/virus-removal/remove-system-fix
    properly because of system restore is enabled


    try the guide in the Bleepingcomputer
    after that do on demand scanning
     
  3. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,704
    Location:
    Texas
    I've read that, Bleeping article, been there done that!

    How does system restore come into play, if it was not invoked?

    To the point the rogue 'System Fix' was not identified by Hitman, or Emsisoft Emergency, Deep scan.

    Are these designed not to see Rogues? Are there any other more appropriate antimalware for apps for Rogue's?

    Rico
     
  4. Dark Shadow

    Dark Shadow Registered Member

    Joined:
    Oct 11, 2007
    Posts:
    4,553
    Location:
    USA
    MBAM is very impressive and it is pretty sad when some others cant compete and do what MBAM consistently does.
     
  5. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,704
    Location:
    Texas
    drjohn:thumb:

    Rico
     
  6. Rico

    Rico Registered Member

    Joined:
    Aug 19, 2004
    Posts:
    1,704
    Location:
    Texas
    Conversation btwn. Rico & Emsisoft

    Hello,

    Recently on a machine with the rogue 'System Fix' "Emsisoft Emergency
    Kit Scanner" updated, completed the 'deep scan' & did not see the
    rogue. In order to finally remove this rogue I used Malwarebytes. Does
    this product not detect rogues? IMO this is not an endorsement for
    purchase of your product. As rogues seems to be a dominant malware.

    Thanks
    Rico
    _________________________

    Hello,

    the Emsisoft Emergency detects rouges too as any other software.

    Can you please attach a samplefile of this rouge so we can add it to our
    database?

    Sincerely yours,
    Christian
    Emsi Software GmbH - www.emsisoft.com
     
Thread Status:
Not open for further replies.