I am sure some of the people here have came across this or know of someone that has had their PC infected with this malware.
In my current job I must come across at least 1 computer a day with this on it. Most of the people getting it have Norton, Mcafee, AVG, Avira, etc...
So my question is: Is there a commercial antivirus out there that will stop this thing before it infects the PC, and pretty much causing a full system restore?
It used to be, I could boot to safemode, and manually remove the key parts of this application. Then I started coming across computers where it deleted the registry keys needed to boot to safemode, and if I changed it in msconfig I would be stuck in an endless reboot cycle, unless I pulled the drive and mounted it to another PC to change the boot.ini file.
Lately some variants start giving me the "this action has been disabled by the system administrator" when attempting to open msconfig, or task manager, and I can't boot to safemode, and some variants, explorer will not even load. A recent pc must of had it, and later they had another virus, and after norton cleaned it, they got stuck in an endless loop, if they logged on they got logged off, they can't boot to safemode, and they can't run a windows repair, because they just have a recovery disk that will do a destructive recovery.
I can't use stuff like malwarebytes in my job, so that isn't an option, and lately it isn't possible anyways.
So back to my original question, why do the big name companies out there not have a way to stop this, when it has been around for several years, how come they can't remove it, but malwarebytes can?
I have been pushing Kaspersky, and to my knowledge it will block it with banner ad blocking enabled, BUT I am not sure otherwise.
Thanks.
P.S. If this needs to be moved to Computer Help, then please move it mod. But I figured it was more a software security, than help. Thanks.
In my current job I must come across at least 1 computer a day with this on it. Most of the people getting it have Norton, Mcafee, AVG, Avira, etc...
So my question is: Is there a commercial antivirus out there that will stop this thing before it infects the PC, and pretty much causing a full system restore?
It used to be, I could boot to safemode, and manually remove the key parts of this application. Then I started coming across computers where it deleted the registry keys needed to boot to safemode, and if I changed it in msconfig I would be stuck in an endless reboot cycle, unless I pulled the drive and mounted it to another PC to change the boot.ini file.
Lately some variants start giving me the "this action has been disabled by the system administrator" when attempting to open msconfig, or task manager, and I can't boot to safemode, and some variants, explorer will not even load. A recent pc must of had it, and later they had another virus, and after norton cleaned it, they got stuck in an endless loop, if they logged on they got logged off, they can't boot to safemode, and they can't run a windows repair, because they just have a recovery disk that will do a destructive recovery.
I can't use stuff like malwarebytes in my job, so that isn't an option, and lately it isn't possible anyways.
So back to my original question, why do the big name companies out there not have a way to stop this, when it has been around for several years, how come they can't remove it, but malwarebytes can?
I have been pushing Kaspersky, and to my knowledge it will block it with banner ad blocking enabled, BUT I am not sure otherwise.
Thanks.
P.S. If this needs to be moved to Computer Help, then please move it mod. But I figured it was more a software security, than help. Thanks.
Last edited: