Remove Windows Process Organizer Virus

March 3, 2011 at 02:20:21
Specs: Windows Vista
I've got the Windows Process Organizer virus. It's been pretty evasive so far. A family member has infected multiple machines (only last weekend!) so I've been focusing on fixing it on one machine first. Basically it locks out my attempts to get to the process manager and bombs out every virus/spyware software I try to run after about 10/20 seconds. Super AntiSpyware runs in its entirety and detects some problems which it claims to remove. After running Super AntiSpyware and rebooting, the computer seems fine and Windows does appear at least to have returned to normal. When you reboot once again however, the same Windows Process Organizer screen comes up claiming to do a 'scan' as Windows starts, so it doesn't get rid of it and I'm pretty much back where I started. What would be the next step in these cases? Any help on this would be appreciated.

Thanks a lot!


See More: Remove Windows Process Organizer Virus

Report •


#1
March 3, 2011 at 04:59:20
Google dos'nt find that virus name. What you have to do is outsmart the virus, here are the techniques used to run this program or any others.

Malwarebytes' Anti-Malware
http://www.softpedia.com/get/Antivi...
http://www.softpedia.com/progScreen...
http://www.malwarebytes.org/mbam.php
http://www.spywareinfoforum.com/ind...
http://www.bleepingcomputer.com/vir...
Forum
http://www.malwarebytes.org/forums/
Error codes
http://forums.malwarebytes.org/inde...
Common Issues, Questions, and their Solutions, Frequently Asked Questions.
http://forums.malwarebytes.org/inde...
http://www.spywareinfoforum.com/ind...
VIPRE Rescue Program
http://vipre.malwarebytes.org/
http://live.sunbeltsoftware.com/
Try it in Safe mode.
If it won't run, rename the downloaded mbam-setup.exe file to mb.exe to help work around certain malware that will block it from being run.
If it still will not run.
1: Go to Control Panel > Programs and Features and uninstall Malwarebytes.
Next redownload Malwarebytes but rename it before you download it to your desktop. As you are in the process of downloading when you get to the point that the "enter name of file to save to" box appears, in the "filename" slot, rename mbam-setup.exe to something.exe, then click Save.
If it installed but will not run, navigate to this folder:
2: C:\Programs Files\Malwarebytes' AntiMalware
At the top of the page, Tools > Folder Options > View, click > Show hidden files and folders and untick > Hide extensions for known file types.
How to see hidden files in Windows
http://www.bleepingcomputer.com/tut...
Rename all the .exe files in the Malwarebytes' Anti-Malware folder and try to run it again.
When it opens, update 1st.
If it won't update after installing, update manually.
http://www.malwarebytes.org/mbam/da...
Download & install.


Report •

#2
March 3, 2011 at 06:32:17
Hi Johnw,

Thanks for the reply! I probably should have explained in more detail. I had no issues in actually installing Malwarebytes' Anti-Malware but the problems come when I run it.

In my initial attempt, I renamed the .exe from the download and tried a few things which usually gets over the naming block. That seemed to do the trick and it installed correctly as far as I could tell. The thing was it was never a problem with downloading or installing Malwarebytes but more like I would start a scan then it would close Malwarebytes after 10/20 seconds. The only thing above I haven't tried was to show hidden folders and rename ALL .exe files, although I'm thinking this would be no good seen as its not the installation is the problem, more like the scan when its up and running.

Regarding the virus name. The malicious software shows the name Windows Process Organizer on its GUI screen. I'm not sure however of the exact name of the virus as Super AntiSpyware found multiple infections which it claims to have fixed and Malwarebytes as mentioned wont even run! If you type in Windows Process Organizer into google, virus information websites will show but I can't find the exact name for the virus at the moment sorry.

Any other suggestions would be much appreciated, thanks again!


Report •

#3
March 3, 2011 at 06:37:54
Did you try safe mode?

Report •

Related Solutions

#4
March 3, 2011 at 06:43:00
"The only thing above I haven't tried was to show hidden folders and rename ALL .exe files, although I'm thinking this would be no good seen as its not the installation is the problem, more like the scan when its up and running"

This part is for when it won't continue running.

If it still will not run.
1: Go to Control Panel > Programs and Features and uninstall Malwarebytes.
Next redownload Malwarebytes but rename it before you download it to your desktop. As you are in the process of downloading when you get to the point that the "enter name of file to save to" box appears, in the "filename" slot, rename mbam-setup.exe to something.exe, then click Save.
If it installed but will not run, navigate to this folder:
2: C:\Programs Files\Malwarebytes' AntiMalware
At the top of the page, Tools > Folder Options > View, click > Show hidden files and folders and untick > Hide extensions for known file types.
How to see hidden files in Windows
http://www.bleepingcomputer.com/tut...
Rename all the .exe files in the Malwarebytes' Anti-Malware folder and try to run it again.


Report •

#5
March 3, 2011 at 06:49:06
Going to bed now, if you get the EXACT name of the infection, Google it. Doubt very much if you will be the first in the world with it.

Catch you later.


Report •

#6
March 4, 2011 at 02:05:16
Hi Johnw,

Thanks again for your advice, I fixed the problem. Basically you gave me the idea of using Malwarebytes' Anti-Malware after Super AntiSpyware had cleaned out what it could. It was my last ditch attempt before I went about getting around the name block by renaming the MBAM .exe files and I'm pleased to say, it did finally work. After running Super AntiSpyware, I re-booted and then did a scan with MBAM, which picked up the rest.

Thanks for taking time to help me out!


Report •

#7
March 4, 2011 at 02:12:30
Good one DarkSoldier, now to make really sure, run this.

Also, to get infected, that is telling you, your defense's are not good enough.


Using ESET's Online Scanner
General clean up and Prep (Do prior to any AV scans)
http://www.computing.net/howtos/sho...
http://forums.majorgeeks.com/showth...
http://www.eset.eu/online-scanner
How can I view the log file from ESET Online Scanner?
http://www.eset.eu/eset-online-scan...
The ESET Online Scanner saves a log file after running, which can be examined or sent in to ESET for further analysis. The path to the log file is "C:\Program Files\EsetOnlineScanner\log.txt". You can view this file by navigating to the directory and double-clicking on it in Windows Explorer, or by copying and pasting the path specification above (including the quotation marks) into the Start ? Run dialog box from the Start Menu on the desktop.


Report •

#8
March 4, 2011 at 06:32:40
Cool I haven't tried ESET's Online Scanner but I’ll be sure to give it a go. Regarding getting infected, good point, I will have to tighten things up to limit the likelihood of this happening again!

Thanks for your time.


Report •


Ask Question