Netgear – Speedtouch – Broadband – Windows
Free Technology Guides, Drivers and Resources at Ultimate One

trojan horse hiloti avg cannot install

Posted by: who last updated this on October 15, 2011

We found a fake antivirus message when powering a windows xp based computer.

There were signs of AVG previously installed ( an avg free 8.5 installation file on the desktop gave that away ) but it was not running. The fake antivirus / security center replaced the background picture and prevented any other applications running.

Previously it looks as though the customer had attempted removal by running malwarebytes. This was now failing as the virus/malware had managed to get hooks into the registry preventing proper application execution from taking place.

The computer displayed a warning on boot into windows, rather like an oversized message box.

Boot the computer to safe mode by pressing the f8 key during the windows splash screen.

Although the fake message is still shown applications can be executed. So first task is to launch malwarebytes and perform an update. Remember that safe mode with networking is required to complete this task. In this case malwarebytes required a program update and a definition update. Perform a quick scan with malwarebytes. This discovered 40 infections/registry changes. Remove all the infections and reboot normally. This time the computer reboots with no fake antivirus message.

When trying to install AVG the installation fails when trying to write to the registery with an access denied error.

Download the reset privilege tool from the avg website and in our case we removed spyware doctor as some reports were indicating that some spyware programs prevent avg from accessing the registry.

We then ran the avg free 9 setup file and this time installation completed successfully.

Next we install superantispyware and ran a full scan, detecting a few tracking cookies and 3 nasties in the system restore. Perform removal on completion, a reboot is necessary.

Run a full scan with malwarebytes, checking for updates first. 3 infections were found, select all to remove at the end of the scan.

Perform a full scan with AVG 9 now installed, after checking for updates. Remove the trojan horse trojan.hiloti.

Reboot and check that the computer is responsive and programs correctly run and that the internet is accessible with no detriment or unexpected behaviour.

 

Related Links:

Here are some other related sites that we found for you to browse providing further information. Ultimate One is not responsible for the content of external Internet sites.

  • No Related Links
↑ Back to Top

Comments are closed.

© 2011 Mollusc Limited a company registered in England no. 05042989