Virus Deletion

Berne · Mar 3, 2011

Hi,
So I have a virus on my machine. Unable to access Safe Mode, Booting to desktop is possible and getting online also, BUT , desktop is freezing, no internet activity allowed, and unable to run antivirus even offline due to freezing desktop....seemed like an antivirus company trying to sell me thier product, wierd.

Anyhow been looking around on the issue but it looks like a format OR can you save me doing that?

All good advice welcome,

Berne

VirtualLarry · Mar 3, 2011

Sounds like you need to use a second, working computer, to download and burn an anti-virus bootable CD, that will scan your computer and hopefully remove the infection. I don't know of any URLs offhand, someone a long time ago posted a list of the most popular ones.

Either that, or get a hold of rkill, it comes it several flavors, and put it on a USB stick. It's wierd that you claim that the mouse isn't working, does it move the mouse cursor at all? Is it just that you cannot click on anything?

Maybe you would have to use keyboard shortcuts to launch rkill. Once you get rkill running, it will (hopefully) terminate the rogue AV process, and then allow you to launch a real malware removal tool, like malwarebytes, etc.

Those are my only two suggestions that I can think of offhand, other than a reformat.

Lemon law · Mar 3, 2011

If you can get to the desktop, using system restore to an earlier date will sometimes save your butt. Can't hurt.

Berne · Mar 4, 2011

Hi People,
Well this virus was good, if you dont mind wanted me to buy a years subscription their antivirus product! Froze on boot at desktop mouse was moveable but commands not activated. It blocked sys restore as well as not allowing anyprogrames to run at desktop level.

Safe mode was the saviour, sys restore was wide open.

Many thanks people, this site is also a saviour to many many people.

Berne

chin311 · Mar 5, 2011

safe mode + hitmanpro or combofix = FTW

Berne · Apr 20, 2011

Hi People,

Many thanks for the replies. The dreaded format, ....backup.

Berne

LiuKangBakinPie · Apr 21, 2011

Well that sounds like the dangerous sality virus. Its a deadly file virus. So Combofix won't work against it. What tools do you have with you or on a cd that you assist with trying to kill its startup process. You need Autoruns, process explorer, unlocker, gmner and killbox. Do you have or can you get any off those applications?

if you can get me a hijack this log i can analyze it for you

Virus Deletion

Berne

Member

VirtualLarry

No Lifer

Lemon law

Lifer

Berne

Member

chin311

Diamond Member

Berne

Member

LiuKangBakinPie

Diamond Member

TRENDING THREADS