Please help: virus has taken over my computer.

Page 1 of 3 123 LastLast

  1. Posts : 44
    Windows 7 64-bit
       #1

    Please help: virus has taken over my computer.


    Hi. My PC has a virus that will not let me run a windows defender scan, go to any antivirus sites, and is screwing up the Microsoft Safety Scanner.

    What can I do?
      My Computer


  2. Posts : 10,994
    Win 7 Pro 64-bit
       #2

    Have you tried Windows Defender Offline? Create a bootable disk on a machine that is not infected. The machine used to create the disk must be the same "bit-ness" as the infected machine. In other words, if the infected machine is running a 64-bit version of Windows 7, the uninfected machine must also be 64-bit.

    Windows Defender Offline
      My Computer


  3. Posts : 2,606
    Windows 7 Pro X64 SP1
       #3

    I'm not sure which of these to recommend, but a bootable antivirus CD or DVD may help.

    The Best Free Bootable Antivirus Rescue CDs

    Malwarebytes also has a utility, Chameleon, which is supposed to permit the anti-malware application to install and run on an infected system.

    Use Malwarebytes Chameleon to install Malwarebytes Anti-Malware on an already infected system : Malwarebytes Support

    Ultimately, you may want to reformat the drive(s) and re-install Windows. I hope that you've got backups. (obviously you don't have an OS image, or you'd have used it already.)
      My Computer


  4. Posts : 6,830
    Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
       #4

    Download Farbar Recovery Scan Tool from below on a non infected PC
    For 32-bit (x86) systems
    Download


    Farbar Recovery Scan Tool and save it to a flash drive.
    For 64-bit (x64) systems
    Download


    Farbar Recovery Scan Tool x64 and save it to a flash drive.

    Plug the flashdrive into the infected PC.

    Enter System Recovery Options.

    To enter System Recovery Options from the Advanced Boot Options:
    Restart the computer.
    As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
    Use the arrow keys to select the Repair your computer menu item.
    Select US as the keyboard language settings, and then click Next.
    Select the operating system you want to repair, and then click Next.
    Select your user account an click Next.

    To enter System Recovery Options by using Windows installation disc:
    Insert the installation disc.
    Restart your computer.
    If prompted, press any key to start Windows from the installation disc. If your computer is not configured to start from a CD or DVD, check your BIOS settings.
    Click Repair your computer.
    Select US as the keyboard language settings, and then click Next.
    Select the operating system you want to repair, and then click Next.
    Select your user account and click Next.

    On the System Recovery Options menu you will get the following options:

    Startup Repair

    System Restore

    Windows Complete PC Restore

    Windows Memory Diagnostic Tool

    Command Prompt

    Select Command Prompt

    In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
       Note
    Replace letter e with the drive letter of your flash drive.

       Tip
    Type the commands below to see what your letter is for the USB drive and press ENTER after each command

    Code:
    Diskpart
    List volume
    The tool will start to run.
    When the tool opens click Yes to disclaimer.
    Press Scan button.
    FRST will let you know when the scan is complete and has written the FRST.txt to file, close out this message, then type the following into the search box:
    services.exe
    Now press the Search button
    When the search is complete, search.txt will also be written to your USB
    Type exit and reboot the computer normally
    Please copy and paste both logs in your reply.(FRST.txt and Search.txt)
      My Computer


  5. Posts : 2,470
    Windows 7 Home Premium
       #5

    Jaypaul97,

    ...virus that will not let me...go to any antivirus sites...
    That is a tough one.

    As a starting point, let's see if we can get to the root of the problem with this short scan.
    From its results, we can press on to additional actions.

    Please download RogueKiller:
    Tlcharger RogueKiller (Site Officiel)

    When you get to the website, go to where it says:
    (Download link) Lien de téléchargement

    Select the version that applies to your system: x64.
    Click the dark-blue button that applies.
    Save to the Desktop

    Close all windows and browsers

    Right-click RogueKiller and select: Run as Administrator
    Press: SCAN

    When done, a report opens on the Desktop: RKreport.txt

    Please provide the RKreport.txt (Mode: Scan) in your reply.
    (Please do not delete anything!)

    Note:
    If the program is blocked by the virus, try it a few times, and if it is still blocked, rename it to RK.com
      My Computer


  6. Posts : 44
    Windows 7 64-bit
    Thread Starter
       #6

    Hey, thanks for all the responses, I'm going to have to try some of the earlier ones but in the meantime this has happened: I downloaded "Rkill", ran it once, then installed AVG, ran it again and this time it said no problems found. So now I have this AVG telling me C\windows\system32\services.exe is malware. It's telling me to manually remove it...should I do this?

    For the other solutions I'd have to find another 64bit PC, my laptop is 32bit :s
      My Computer


  7. Posts : 2,470
    Windows 7 Home Premium
       #7

    No problems with RogueKiller, it has a 32-bit version. You can pick the 32-bit version or the 64-bit.

    The program is a fast scanner, and targets malware and other problems.

    Give it a whirl!
      My Computer


  8. Posts : 44
    Windows 7 64-bit
    Thread Starter
       #8

    Rogue killer didn't get rid of the services.exe but AVG is telling me that it's a virus. Should I just delete it? AVG says I have to manually remove it
      My Computer


  9. Posts : 3,822
    Windows10 Pro - 64Bit vs.10547
       #9

    can u confirm that u have installed and run Windows Defender Offline.. (?)

    remember to pull the plug on the wifi - before u reboot from the CD/DVD/Stick
    - it should be run direct from boot-up and in offline mode..

    the scan will take quite a while to complete - it's very thorough..
      My Computer


  10. Posts : 143
    32 bit
       #10

    Hi Jaypaul,

    You need to post the roguekiller log.

    You cannot delete services.exe.If you change the permission and delete it,system would become unbootable on next reboot.You need to replace it with a clean copy.
      My Computer


 
Page 1 of 3 123 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 01:54.
Find Us