Windows 7: Want ideas for Virus removal if virus shows up in safemode CMD

Hi, Looking for general ideas on how everyone else handles a strong virus. If the virus is showing up in Windows regular mode, it opens in safemode and opens in safmode with command prompt.

Besides the usual such as boot to repair mode and use system restore, dock hard drive to another pc and scan there, what would be the way you would handle this situation. Thanks for the input

Run windows defender offline.

Here is the link for the Windows Defender Offline Tutorial

This must be made on a clean PC to ensure the scanner isn't compromised.

If the infection is that deeply embedded in the system, it really wouldn't be a good idea to trust it again & your best bet is a Clean Install

to the above.

Sorry I didn`t dig up the tut, but I`m messin with my new sig.

Isn`t it beautiful !!!!!

Thanks, I will try this method. They is a way of running attrib's from the command prompt and cleaning, but some of the virus's hide very well. Happy New year

For most "normal" viruses, I would check what things autoruns at startup, in start menu and in the registry key and task scheduler. Task manager can also show strange processes and point out the executable's location for you to delete. Most viruses can be removed in this way once you detect its presence, it's not hard if you have patience. Antiviruses are also good detecting those.

But if you happen to got a kernel-mode virus (rootkit), it's much more complicated, because you can't trust Windows to show you the real virus (it may tamper with all system activities). For those, the only true way is a full reformat and a clean install. Trying to repair Windows from any damage often results in an even worse system and more effort, while a reinstall gets a fresh system.

The FBI or Moneypak virus usually let you into safemode with command prompt where you could use, Malwarebytes, superantispyware, viper rescue and tdss killer, but there is a variant that pops up as soon as safemode with command prompt opens. I had to use system restore from a repair cd and then when I was back into windows I used all four scanner to find anything hiding. I did find the fake alert and some other Trojans. I am removing temp files and looking for unusual files. Thanks

In the future, once you get things cleaned up, it would be a good idea to make a system image & the next time something like this happens, you can just restore to the state the PC was in when you made the system image. Keep 2 or 3 on an external HD in case you accidentally make one with a virus. I keep at least 5 on file to revert back to, just in case....

Backup Complete Computer - Create an Image Backup

Thanks, I purchased Acronis and have used in the past, I will do a weekly image for now on.