Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Question

Is my computer just screwed now?

Sep 21, 2018 9:23AM PDT

So I downloaded something I shouldn't have, now I have things called Blunt.exe running at all times, i've tried getting rid of them but no dice, and they're causing annoying audio adds to play from an invisible area of my computer, I've tried to do a reset, even factory reset of my computer but I cant access it. I cant even boot up my computer in safe mode or activate a reset via command prompt. so is my computer just screwed? and is my only option to take it to some guy who'll have me pay an arm and a leg to fix it? I want direct answers so if anyone sees this, e-mail me at: email address removed by moderator because it's unsafe and all responses will be in this thread so all can see.

Post was last edited on September 21, 2018 9:55 AM PDT

Discussion is locked

- Collapse -
Answer
It's Sounds Like You Can Still Boot To Normal Windows
Sep 21, 2018 10:04AM PDT

And if that's the case, please click on the link below and follow all of the steps in the order they're given, to the letter. The scans provided should remove any malware found. Since it's possible you can't download the files mentioned on your "problem" computer, use a second 'clean' computer to download the files, then copy them to a CD or flash drive. Transfer the files to the problem computer and run them in the order mentioned.

“Expand” the post titled: "Please try this" at the link below:
http://www.cnet.com/forums/post/f742c795-5881-433b-a29b-6d758efe5cd3/

On the other hand, if you're unable to login to normal Windows, then use a separate "clean" computer to visit the Windows Media Creation Tool for your operating system, then create a Windows installation disk for reinstall or run a repair install of the computer. (See the link below.) Of course, if you have a brand name computer, you should be able to visit the computer manufacturer's site and obtain a recovery disk cheaply.

https://support.microsoft.com/en-us/help/15088/windows-create-installation-media

Unfortunately, you've not given us any information about your computer such as make and model, operating system installed, what you "downloaded but you shouldn't have" or anything else. That information would sure help us to provide more complete answers.

Hope this helps.

Grif

Post was last edited on September 21, 2018 10:05 AM PDT

- Collapse -
Reply to: It Sounds Like You Can Still Boot To Normal Window
Sep 21, 2018 11:41AM PDT

Ok, so as an update to my question, I'm using a Windows 10, Home, 64-bit Laptop, and as for booting normal windows, yes, and to further give details, i was able to boot it in safe mode, but ANYTHING involving restoring the computer does not work. i even re-installed the rstrui.exe file, and that doesnt even work. in the Task Manager, I activate the reset program, and it shows in the manager as what it's supposed to be, but only for a couple seconds and under status it says it's "suspended." I looked up how to un-suspend it by going into the Resource Manager, but in didnt show up in there, i activate the program file again, but just like the Task Manager, it shows up then leaves again. I'm seriously upset right now, because I dont have the money for a new laptop or for someone to fix it. I hope this helps.

P.S. I also tried looking up what Blunts.exe and Mazzini(I think this is a .exe as well)are, but nothing came up. What's even stranger is that even though I try to search for things in Google, it instead goes through a yahoo search engine. I dont know if that'd help, but I'm trying to give all the info I know. As for what I downloaded, I dont even know. it may have came in from an email, but i'm not sure

Post was last edited on September 21, 2018 11:46 AM PDT

- Collapse -
Revo
Sep 21, 2018 1:41PM PDT

Is it possible to uninstall these unwanted programs with Revo Uninstaller?

- Collapse -
You have malware.
Sep 21, 2018 1:53PM PDT

Did you follow Grif's advice above? I don't think Revo will help as this malware seems deep rooted.
Dafydd.

- Collapse -
Browser Settings
Sep 21, 2018 10:26PM PDT

You do not mention which browser you are using, but go into your browser search settings, set the default search engine to Google and remove the Yahoo option.
The most configurable browser is Firefox.
You may have installed a program which offered the "Yahoo Search Bar" at installation, and did not uncheck the box.
Go into "Control Panel" > "Programs and Features" , look for Yahoo, and uninstall anything with that tag .
Download "Spybot Search and Destroy 1.6.2", run that with your browsers off, select the "Immunise" option, it will analyse all browsers, then click the Immunise button. When that has completed click "Check for Problems", it will take some time, and shows a progress bar and counter at bottom of screen. When that has completed it will list all problems. Best option is to click "Remove Selected" and let it get rid of eveything it has found. Reboot.
Download and run Malwarebytes Antimalware Free, and let it quarantine everything it finds then reboot; for the small cost it is worth upgrading to Premium.
Hope that helps.

- Collapse -
Try Safemode with Networking
Sep 22, 2018 9:58AM PDT

You said you can boot into Safemode so why not try Safemode with Networking? This would allow you to download and run MalwareBytes or Microsoft's Safety Scanner, or both. Any chance those would help?

- Collapse -
Answer
Bleeping Computers
Sep 21, 2018 9:06PM PDT

I'm very surprised that a factor reset didn't solve the problem. I wonder if they've infiltrated your BIOS? Or, if they've written themselves into your factory partition. If the first, then fresh media won't help. If the latter, then a CD produced on a clean computer should wipe it.

I've removed malware from a couple of friends' machines, when they didn't have good backups. I found that the volunteers at the Bleeping Computers forum are extremely helpful.

They have a banner on that page that says that they have a five day waiting list. If you're in a position to be patient, they're the ones who can probably fix it.

Using them is a case where you turn your brain off and just follow their directions. Don't try to look ahead and guess what they want. Just do it step-by-step, cookbook style. After a half dozen exchanges, you'll see some clean reports, and you'll think you're done. You're not. Post the reports and wait for the next step. In my cases, it was about a dozen steps on each machine before they declared them clean.

- Collapse -
Answer
If you can't clean this up
Sep 22, 2018 5:24AM PDT

Contact the laptop maker and see if you can buy factory restore media.

Boot that up and let it restore the laptop to day one.