ilikenemo Posted November 28, 2013 Share Posted November 28, 2013 Hi all, I'm having mega problems with downloading and running programs. I had the ukash virus a few weeks ago and when I ran malwarebytes it found a rootkit and said it removed it, is it possible it's still here? and this is whats giving me the downloading probs? I'm currently running avg. I'm going to scan now. Any ideas please? Link to post Share on other sites
caintry_boy Posted November 28, 2013 Share Posted November 28, 2013 The best sure fire way to get rid of a rootkit is a format and clean install of Windows. Link to post Share on other sites
ilikenemo Posted November 28, 2013 Author Share Posted November 28, 2013 Thanks,I can do this but is there anyway to save my emails which are in thunderbird? Should avg have picked this up? Link to post Share on other sites
Juliet Posted November 28, 2013 Share Posted November 28, 2013 These type infections go after disabling antivirus first, so no wonder AVG can't find it or even run. Thunderbird Backup any files that cannot be replaced. You can put them on a CD/DVD, external drive or a pen drive, anywhere except on the computer. Emergency Backup Procedure - Tech Support Forum Link to post Share on other sites
ilikenemo Posted November 29, 2013 Author Share Posted November 29, 2013 These type infections go after disabling antivirus first, so no wonder AVG can't find it or even run.Yeah my security centre has been turned off and I can't turn it on. I'm quite happy to reinstall windows but if I put some photos on a pen drive will they transer the virus? I have forwarded my important emails to another email address. Thanks for your help Link to post Share on other sites
Juliet Posted November 29, 2013 Share Posted November 29, 2013 Don't think I've heard of photos being infected but, if your USB is infected it could wreck a clean install. Link to post Share on other sites
ilikenemo Posted November 29, 2013 Author Share Posted November 29, 2013 I used my sons usb to put itunes on my computer so won't use it incase its infected. If I email the photos will they be ok? I have tried a system restore but it's unable to do this. Thanks Link to post Share on other sites
ilikenemo Posted November 29, 2013 Author Share Posted November 29, 2013 What's the best free antivirus to use? Any recommendations? I scanned with avg last night, nothing was picked up. Link to post Share on other sites
Juliet Posted November 29, 2013 Share Posted November 29, 2013 right now, with this infection, very unlikely scanning with a typical antivirus will help. can you read the PM I sent? Link to post Share on other sites
Juliet Posted November 29, 2013 Share Posted November 29, 2013 I can post info for cleaning an USB drive. Do you have another computer that we can use to download and transfer tools with a flash drive? If so, continue below. If not, let me know. On the clean computer: Download/Run Panda USB Vaccine: Please download Panda USB Vaccine from here to the desktop of your machine. [*]Right-click on USBVaccineSetup.exe and and select Run as Administrator >> follow the prompts in the installation wizard. [*]At the configuration screen(settings)... [*]Ensure both Run Panda USB Vaccine automatically when computer boots (/resident mode) & Automatically vaccinate any newly inserted USB key are selected >> plus NTFS support [*]Now click on Next> >> ensure Launch Panda USB Vaccine is selected >> clcik on Finish. [*]Insert the USB Drive in your machine...it will be automatically vaccinated(as will any USB drives connected in the future). Note: You may uninstall Panda USB Vaccine when we have completed the Malware Removal process if you so wish. Though my advise would be to keep it installed. Link to post Share on other sites
Juliet Posted November 29, 2013 Share Posted November 29, 2013 Let's see if we can get your machine to scan with this tool. Then, I want you to go here, start a new topic, and post the logs. http://forums.pcpitstop.com/index.php?/forum/25-have-i-been-hijacked/ Please download Farbar Recovery Scan Tool and save it to your Desktop. Note: You need to run the version compatible with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version. [*]Right click to run as administrator (XP users click run after receipt of Windows Security Warning - Open File). When the tool opens click Yes to disclaimer. [*]Press Scan button. [*]It will produce a log called FRST.txt in the same directory the tool is run from. [*]Please copy and paste log back here. [*]The first time the tool is run it generates another log (Addition.txt - also located in the same directory as FRST.exe/FRST64.exe). Please also paste that along with the FRST.txt into your reply. ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ Copies of logs are saved at %systemdrive%:FRSTLogs (in most cases this will be C:FRSTLogs). Link to post Share on other sites
ilikenemo Posted November 29, 2013 Author Share Posted November 29, 2013 Just doing the farbar scan now, it didn't save to desktop it just started running. Link to post Share on other sites
ilikenemo Posted November 29, 2013 Author Share Posted November 29, 2013 Have started new topic to show results but it won't paste. Link to post Share on other sites
Juliet Posted November 29, 2013 Share Posted November 29, 2013 thank you, infection found. Please follow the HJT forum topic. Link to post Share on other sites
.png.9d4b89b15b2cd5e65edd93a0e6823dce.png)
Recommended Posts
Archived
This topic is now archived and is closed to further replies.