Heat Damage or Virus?

SevSaint · 27 Aug 2013

okay thanks for the link on the tdsskiller..
After scanning with it and modifying options i had a suspect tdss file and did some search to make sure if it was an infection. After searching i downloaded adwcleaner, an option posted by someone on bleeping computers to someone else, and it found several infections. I have avast and maleware and some how they missed it..

Any suggestions on my next step. I wana create a restore point after i know for sure im clean and then do a disk image backup. Ill do a disk cleanup before running my restore point to clean up the old, if any, restore points. BTW my restore point thingy was off, and i didn't turn it off. Another reason i think i am infected.

ICIT2LOL · 27 Aug 2013

SevSaint said:

okay thanks for the link on the tdsskiller..
After scanning with it and modifying options i had a suspect tdss file and did some search to make sure if it was an infection. After searching i downloaded adwcleaner, an option posted by someone on bleeping computers to someone else, and it found several infections. I have avast and maleware and some how they missed it..

Any suggestions on my next step. I wana create a restore point after i know for sure im clean and then do a disk image backup. Ill do a disk cleanup before running my restore point to clean up the old, if any, restore points. BTW my restore point thingy was off, and i didn't turn it off. Another reason i think i am infected.

Yep mate that was me on the previous post re ADW LOL!! and look no security is 100% foolproof not even the Kaspersky I use it is impossible because the malware has to be developed and put out before it can be recognised as such so that is why your security and mine is everyday constantly updating:)

Now to move on just how are you going to back it up? Myself I would do either a clone to a spare drive or am image but if you are infected it will pass over too but not to worry the drive can then be thoroughly scanned with whatever is needed.
The alternative is a clean install and just bring over the data you want from that drive.

For your disk clean up I don't know what you are using but most members use CCleaner it is good for a lot of other things too CCleaner - Download download from piriform and watch out for any ads there may be. If yo get stuck using it post back:)

For the imaging / cloning Macrium is good for doing both operations but use whatever you feel comfortable with
Macrium Reflect FREE Edition - Information and download and see this Imaging with free Macrium very good tutorial and WHS is more than helpful.

Hna g in there mate we can get you out of this:)

SevSaint · 28 Aug 2013

should i scan some more.. and how do i know the tdss scanned by tdsskiller is an infection? i don't want to delete it untill i know for sure so i don't mess up my computer.
should i do some more scans with something else or anything?

redfang337 · 28 Aug 2013

Do a scan with MalwareBytes Anti-Malware(MBAM) download the free version from the link below:
Malwarebytes : Malwarebytes Anti-Malware removes malware including viruses, spyware, worms and trojans, plus it protects your computer

Then a scan with MalwareBytes Anti-Rootkit(MBAR) from the link below:
Malwarebytes : Malwarebytes Anti-Rootkit

While that's going start VipreRescueScanner from here:
VIPRE Rescue - VIPRE Computer Recovery Solution

after those are done, do another scan with adwcleaner and post the log from C:\AdwCleaner

then as ICit2lol suggested, make sure to back up your data after we're in the clear

--tell us how it goes! :)

ICIT2LOL · 28 Aug 2013

Yep do as Red says the TDSS Killer you can remove the infection mate it is just about 100% correct I have yet to have any problems with it (TDSS) and I use Kaspersky as normal anyway it has never been out of whack.

If you want run the SAS and the ADW again and for more rootkit scans

Best Free Rootkit Scanner and Remover try some from here if you want.

redfang337 · 28 Aug 2013

ICit2lol said:

TDSS Killer you can remove the infection mate it is just about 100% correct

Actually, i thought that too until the other day when it came up with a false-positive (or false-negitive maybe? -- It thought a preinstalled sony app was a virus) on my mothers VIAO Computer, but, you can just post a screenshot or ask about the program if you are unsure :)

ICIT2LOL · 28 Aug 2013

Yep Red I suppose there is always a slip through never had problems as I said but hey it happens.

Sev those other rootkits remember you can always try those or Hitman Pro Home - SurfRight the 3.7 version.

SevSaint · 30 Aug 2013

okay thanks for the imput you guys are awesome.
i never deleted the tdss file that was deteced by tdss killer and now my laptop is back to its old self. going to rerun the tdss killer and remove the infected tdss file thingy.. then going to follow red fangs advice.. ill post back once i get through with all the scans!

ICIT2LOL · 30 Aug 2013

Ok mate I'll leave you with Red then.

SevSaint · 31 Aug 2013

oh my goodness im back at square one..
slowly the computer is getting worse. it was running fine after adwcleaner ran the first time.. i got on facebook, no bad sites or nothing then it started acting slow again.. the first major sign was a major error when i started up from avg.
then no restore points found, ran rkillx64 and it found changed values in registry. now its constantly slow.

I cant recover from my partition either. each time i hit f11 it takes me straight to windows startup. i am trying from disk, but the recovery option is totaly greyed out. this virus is major, major, major pain in the butt. I ran the following
hitman, adwcleaner, maleware root kit, tdsskiller, avg quick scan antispyware.
Mostly finding tracking cookies. adwcleaner logs states nothing just system specs and no threats.
I am totally lost with this problem.. Even safe mode with network is to slow to run anything