Need Help Removing Virus

[Durvelle27]

I believe my PC has a very nasty virus. Google Chrome no longer connects to the internet. IE randomly opens werid tabs and doesn't allow me to download anything at all. Also whenever i run Malwarbytes and do a Full Scan it detects 2 viruses and then hangs. Could someone please help me with this.

 

[MustISO]

First thing I do in these cases is go back to a previous restore point from Safe Mode. Then I would boot to safe mode and scan with Malwarebytes and any other scanners that run in safe mode.
I would also consider using an offline scanner such as the Kaspersky Rescue Disk. It's a bootable CD that will scan outside of Windows.

 

[Durvelle27]

First thing I do in these cases is go back to a previous restore point from Safe Mode. Then I would boot to safe mode and scan with Malwarebytes and any other scanners that run in safe mode.
I would also consider using an offline scanner such as the Kaspersky Rescue Disk. It's a bootable CD that will scan outside of Windows.

Being such a knuckle head I never created a restore point but I will try kaspersky

 

[Fardringle]

Unless you disabled System Restore, your computer will have automatically created restore points that you can use.

 

[Albatross]

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

 

[Durvelle27]

Kaspersky Rescue Disk has been running for 4 1/2 hours now.


@Fardringle yes its disabled

 

[Durvelle27]

Kaspersky Rescue Disk has been running since 3 pm yesterday how long does it take to finish

 

[blankslate]

copy the important files you need to an external hard drive or optical media then turn off autoplay on a second computer and use it to scan your backed up data for malware.

Reinstall the OS on your fubared computer.

Once malware is on a system the only way to be 100% sure that it has been removed is to wipe and reinstall.

 

[xgsound]

As has been stated you can't beat a reformat to fix a compromised system, but I'm one of those that likes finding out what is attacking us.

For the internet connection check that "proxy" hasn't been ticked under control panel/ internet settings/ connections/ lan. If you have virus names see if bleeping computer has a suggested specific removal method.

Rkill and tdsskiller often stop malware enough to be discovered and removed by other programs. If you reboot, rkill must be run again. On the left in the "Most downloaded" section find rkill, malwarebytes, and tdsskiller links at this link. http://www.bleepingcomputer.com/download/windows/ There are also numerous other utilities there. Their site is the only comprehensive virus removal site left of the many I used to visit.

Jim

 

[blankslate]

As has been stated you can't beat a reformat to fix a compromised system, but I'm one of those that likes finding out what is attacking us.

For the internet connection check that "proxy" hasn't been ticked under control panel/ internet settings/ connections/ lan. If you have virus names see if bleeping computer has a suggested specific removal method.

Rkill and tdsskiller often stop malware enough to be discovered and removed by other programs. If you reboot, rkill must be run again. On the left in the "Most downloaded" section find rkill, malwarebytes, and tdsskiller links at this link. http://www.bleepingcomputer.com/download/windows/ There are also numerous other utilities there. Their site is the only comprehensive virus removal site left of the many I used to visit.

Jim

True enough. I think it depends on who this is for if it's your own computer and you feel like troubleshooting an attempt to identify and remove all of the infections could be worth it.


If you're doing it for a friend or being paid as a consultant to remove the virus for a customer then they may want the closer to 100% solution of a wipe and reload... that way there's not hidden infection that helps return the computer to a fubared state after you "fixed" the computer the first time.

 

[Durvelle27]

Ok guys i was finally able to remove all the Virus off of my PC but it took forever and a combination of different programs: Malwarebytes, ComboFix, RKill, TDSSKiller, and Kaspersky Rescue Disk but i finally got it fixed.

 

[blankslate]

Ok guys i was finally able to remove all the Virus off of my PC but it took forever and a combination of different programs: Malwarebytes, ComboFix, RKill, TDSSKiller, and Kaspersky Rescue Disk but i finally got it fixed.

How long did it take?

Just curious because if there is something hiding that somehow got missed and you get reinfected backing up, wiping and re-installing might be a faster option.

 

[Durvelle27]

How long did it take?

Just curious because if there is something hiding that somehow got missed and you get reinfected backing up, wiping and re-installing might be a faster option.

Kaspersky took 1 day 17 hours
Malwarebytes took 8hrs 55mins
ComboFix took 4hrs 12mins


Used my other PC to do the cleaning so windows wouldn't be active and the virus couldn't hide

 

[JEDIYoda]

why did you disable restore points??

 

[Durvelle27]

why did you disable restore points??

Its been so long that i really don't remember

 

[Ketchup]

Its been so long that i really don't remember

Glad you were able to fix it. And I wouldn't lose too much sleep over the restore points. A lot of viruses will infect your restore points if they have been on there for any length of time.

 

[Durvelle27]

Glad you were able to fix it. And I wouldn't lose too much sleep over the restore points. A lot of viruses will infect your restore points if they have been on there for any length of time.

I was so happy when it finally finished and felt relief that i didn't have to wipe the drive and have to re install all my games and programs but i am making a clone of my HDD just in case it ever happens again

 

[ringtail]

try this

http://usa.kaspersky.com/downloads/free-anti-virus-scan

then find a free/cheap deal and put in KIS.