Annoying Malware, cant' open anything or access network & internet

[Andarthiel]

My Dad's got what I suspect to be Malware on his PC(or some other infection). Basically it disables his internet(Windows says it can't detect his proxy settings) and he can't open most programs(including Tools like Malwarebyte Anti-Malware and Process Hacker). Every time he tries to open a program it gives him the message"Windows cannot access the specified device, path, or file. You may not have the appropriate permission to access the item"

Even in safe mode it doesn't let him do anything, almost like it sabotaged his admin rights.
so fixing it is somewhat complicated. We tried deleting the trojan/malware file(called "3703645047;2296135203.exe" which lies in the Windows directory) It just keeps coming back
Is there a way to get rid of this infection without reinstalling Windows?

 

[Maguscreed]

http://www.sevenforums.com/tutorials/19449-default-file-type-associations-restore.html

scroll down to the exe fix.
You should be able to boot safe mode, use that fix and then run the malware scanners. I suggest this one Malwarebytes : Malwarebytes Anti-Malware PRO removes malware including viruses, spyware, worms and trojans, plus it protects your computer

If you boot safe mode with networking, you may find yourself able to use the internet (depending on how deeply it's embedded
)
http://www.sevenforums.com/tutorials/69585-safe-mode.html

 

[Andarthiel]

Merging the registry file didn't change anything,still can't open exe files. Not even in safe mode. And the detail in the network adapter properties reveal that both IP Addresses are wrong and don't fit in with the router's pattern and the DNS as well as the Gateway are also completely wrong.

 

[Golden]

Hi,

I think your best bet at this stage is to try scanning outside the Windows environment. Please follow this tutorial to use Microsoft Standalone System Sweeper, and then post the results here. It might take a few hours to get through everything.

http://www.sevenforums.com/tutorials/166445-microsoft-standalone-system-sweeper.html

For future reference, simply deleting the malware usually won't work : these malware usually self-replicate, carry other more malicious payload, or "copy" themselves elsewhere on your system. What sort of anti-malware software did your Dad's PC have at the time of these problems?

Regards,
Golden

 

[Andarthiel]

Just Spyware Doctor, which I don't think potects that well against spyware.
I'll give that scanner a shot.

 

[belikexp]

My Dad's got what I suspect to be Malware on his PC(or some other infection). Basically it disables his internet(Windows says it can't detect his proxy settings) and he can't open most programs(including Tools like Malwarebyte Anti-Malware and Process Hacker). Every time he tries to open a program it gives him the message"Windows cannot access the specified device, path, or file. You may not have the appropriate permission to access the item"

Even in safe mode it doesn't let him do anything, almost like it sabotaged his admin rights.
so fixing it is somewhat complicated. We tried deleting the trojan/malware file(called "3703645047;2296135203.exe" which lies in the Windows directory) It just keeps coming back
Is there a way to get rid of this infection without reinstalling Windows?

Probably returning using system restore. Turn off system restore and try deleting the file in safe mode. Clear all browser caches. Clear java cache. Get a copy of Malwarebytes and see if you can run it in safe mode. The guys over at malwarebytes can also help you.

 

[damien76]

Hmmm..yeah I agree. Might be good to scan "outside the Windows environment". Try which Golden suggests. Equally there are alike ways of scanning outside of Windows via usb stick (also) or CD like Dr.Web LiveUSB and Live CD

A good read 13 Antivirus Rescue CDs Software Compared in Search For the Best Rescue Disk

Goodluck

 

[Andarthiel]

He couldn't even run the Sweeper(error on launch) so I'm a little doubtful the others will work. And there are no restore points to go back to. He's pretty much given up now and he's going to buy a new HDD to reinstall Windows to.

 

[Golden]

Hi,

If you are intent on re-installing Windows (and thats often the best approach when you have very heavy malware infections), you don't need a new hard disk. If you have a Windows installation disk, then simply boot from it and install Windows from scratch - be sure to format the disk during installation (the install will give you that option). Post back here if you need help with any of this.

Regards,
Golden