Virus blocking attempts of removal via antivirus scan

scop8 · 22 Dec 2016

Hello,

So, using Firefox and protected (I thought) by AVIRA and Comodo, I logged on a Yahoo community forum to request info about the latest email infiltration fiasco. Logged out. Was logged in Facebook all the while, and after 'liking' a BBC video, all went haywire. Any Facebook page kept scrolling down so I could never get to the top, and the cursor in any search window went off to the right and flickered. I tried deleting history and cookies, I did, but when I tried unchecking 'accept cookies' it flickered. Everything was slow, multiple windows of the same thing opened (ie/ Facebook or any page on my actual PC after I disconnected from the net). Closing or moving a Word window or file would not work. clicking on the windows start button bypassed the main features and went always to the Cortana page. I restarted. on the log in page it looked as if someone was typing in a password that I at first could not delete it, then I could and logged in.

Previously, I got advice about using these programs in this order: Rkill, TempFile Cleaner, JRT, ADWCleaner, then ESET Scan.

Upon attempting to start RKill, Windows kept saying it could not start it and program would close. ESET would flicker upon starting so it could not be launched. I tried running AVIRA scan (this after attempts to get to the correct feature - basically, if you hover over the program features, you'd be brought down to the bottom and could not make your way to the top where the launching of the A/V is) and the scan was stuck at 87.8% of hidden files feature, this after detecting 15 hidden files.

I restarted in Safe Mode with Networking, but it keeps only starting in Safe Mode.

Here I was able to launch RKill, but it said nothing was wrong, no malware found. Malwarebytes (with rootkit scan enabled) scan also found no problems.

Currently trying ESET – (of course, I had to download updates for it with no protections *sigh*) scan in progress...

I can't tell the extent of this filthy infiltration, so if anyone has some newest scorched earth cleaning program to check for minute traces of a virus or malware and get rid of it, I'd greatly appreciate it. How can I tell if my computer is clean when all is said and done?

Thanks very much

dencal · 23 Dec 2016

Try Disconnecting your Router....start computer and open Task Manager if possible to see if anything suspicious is running or showing in processes, disable if necessary.
Close down computer, restart Router then computer to see if this solves problem.

Another thing you can try...Settings, Update and Security, Windows Defender......scroll down to Windows Defender Offline.

Borg 386 · 23 Dec 2016

You might want to try Norton Power Eraser.

Norton Power Eraser | Free Tool | Easily remove scamware that traditional virus scanning can’t detect.

Because Norton Power Eraser is an aggressive virus removal tool, it may mark a legitimate program for removal. However, you can always undo the results of a scan. It can also help detect and remove Potentially Unwanted Programs.
For instructions on using Norton Power Eraser, see the tutorial.

When you ran RKill did you run it as an administrator? If not then running it as such may allow it to run. I would add that your other malware scanners should also be run as administrator.

Another rootkit tool you can use to check your system is TDSSKiller.

TDSSKiller Download

Note

When running TDSSKiller, launch the program, click on the blue text "Change Parameters" & check the box marked "Detect TDLFS File system." Click OK & then run the scan.

simrick · 28 Dec 2016

I don't suppose you are able to do a system restore to get rid of things?

Barman58 · 28 Dec 2016

Do you have offline backups, especially of your data, (which is far more important than the Operating systems and applications)?

If so a Nuke and Start again may be the best option