I have a virus that reinstalls after a recovery. Please help.

Page 1 of 3 123 LastLast

  1. SevSaint
    Posts : 162
    Microsoft Windows 7 Home Premium 64-bit
       New #1

    I have a virus that reinstalls after a recovery. Please help.


    I had some guys help me get rid of a virus a few weeks back. But it came back for some reason. My restore points gone, my diagostic tools not working again. When i click on it to do something the blue circle just spins for up to a minute if not more. Sometimes for so long i just shut down the computer and try restarting in safe mode.
    In safe mode it runs ok, sometimes a lil laggy.
    Btw its an HP Pavillion d7.
    Amd duo core
    4 gigs ram
    Win 7 x64 home prem.

    Please someone walk me through how to get rid of this problem!
      My Computer
    Quote Quote

  3. redfang337
    Posts : 467
    Linux Mint 15 "Olivia" x32
       New #2

    hello again sev happy to see you here again--wait, that didn't come out right... Anyways...
    OT have you tried going thru the ropes of what we did last time? I added the link so you could see it again, or do you want to just go thru the steps again in this thread, since, of course, the thread is a bit mixed up?
    Heat Damage or Virus?
      My Computer
    Quote Quote

  4. SevSaint
    Posts : 162
    Microsoft Windows 7 Home Premium 64-bit
    Thread Starter
       New #3

    Lets go through the steps again. But how does it keep coming back?
      My Computer
    Quote Quote

  6. cottonball
    Posts : 2,470
    Windows 7 Home Premium
       New #4

    SevSaint,

    This tool has been updated, and would like for you to download a new copy of it.
    There is a variant of the ZeroAccess rootkit that is very tricky to identify and remove.
    Let's see what the reports show.

    Please go to the Farbar Recovery Scan Tool Download
    Select the version that applies to your system.

    Save it to your Desktop.
    Double-click the downloaded file to run it.

    When the tool opens click Yes to the disclaimer.
    Press the Scan button.

    FRST makes a log (FRST.txt) in the same directory from which the tool is run (Desktop).

    Please provide the FRST.txt in your reply.

    The first time the tool is run, it also makes another log: Addition.txt
    Also post the: Addition.txt in your reply.
      My Computer
    Quote Quote

  7. SevSaint
    Posts : 162
    Microsoft Windows 7 Home Premium 64-bit
    Thread Starter
       New #5

    alrighty.. doing that now, but windows keeps trying to restart a funny box pops up and says windows has stopped working click to restart.. if i do it redoes broswer everything, so i just drag that box off to side.. nows its hung up...but got it downloaded to desktop
      My Computer
    Quote Quote

  8. SevSaint
    Posts : 162
    Microsoft Windows 7 Home Premium 64-bit
    Thread Starter
       New #6

    trying to get it uploaded.. taking a long time
    I have a virus that reinstalls after a recovery. Please help. Attached Files
      My Computer
    Quote Quote

  10. ICIT2LOL
    Posts : 21,004
    Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
       New #7

    Hiyya Sev I don't know much about those attached files Cotton Ball is better qualified than me to read them. But out of interest what security have you got on this machine?
    Plus have you got any on call scanners ir Malwarebytes SuperAntiSpyware or ADWCleaner on the machine you can run in safe mode?.
      My Computer
    Quote Quote

  11. UsernameIssues
    Posts : 10,485
    W7 Pro SP1 64bit
       New #8

    SevSaint said:
    I had some guys help me get rid of a virus a few weeks back. But it came back for some reason....
    I would suggest that you uninstall Java and see if you can live without it.

    If you must have it installed, then at least use the latest (safest?) version.

    The versions that you have...
    Java(TM) 6 Update 15 (64-bit) (Version: 6.0.150)
    Java(TM) 6 Update 15 (x32 Version: 6.0.150)
    Java(TM) SE Development Kit 6 Update 15 (64-bit) (Version: 1.6.0.150)
    ...are way out of date.

    You might want to read the bottom part of this post... and maybe this one too.
      My Computer
    Quote Quote

  12. ICIT2LOL
    Posts : 21,004
    Desk1 7 Home Prem / Desk2 10 Pro / Main lap Asus ROG 10 Pro 2 laptop Toshiba 7 Pro Asus P2520 7 & 10
       New #9

    cottonball said:
    SevSaint,

    This tool has been updated, and would like for you to download a new copy of it.
    There is a variant of the ZeroAccess rootkit that is very tricky to identify and remove.
    Let's see what the reports show.

    Please go to the Farbar Recovery Scan Tool Download
    Select the version that applies to your system.

    Save it to your Desktop.
    Double-click the downloaded file to run it.

    When the tool opens click Yes to the disclaimer.
    Press the Scan button.

    FRST makes a log (FRST.txt) in the same directory from which the tool is run (Desktop).

    Please provide the FRST.txt in your reply.

    The first time the tool is run, it also makes another log: Addition.txt
    Also post the: Addition.txt in your reply.
    Cotton Ball I did a bit of scouting round and came up with a few hits on that Zero access rootkit. There were a few refs to the Kaspersky TDSS and the Eset online scanner plus a German listing that included GMER do you think they would be of any use??
      My Computer
    Quote Quote

  13. SevSaint
    Posts : 162
    Microsoft Windows 7 Home Premium 64-bit
    Thread Starter
       New #10

    the computer, even in safe, is barely useable. It keeps saying windows explorer has quit working and then gives me option to check online for solution and restart, or just to restart. Once it restarts it closes most of the stuff im doing down. So doing any updates on java etc.. are not going to happen. It took me 30 minutes just to get something uploaded due to constant resets on windows explorer.
    Ill wait on Icit2lol and cottonball to come up with my next step.
      My Computer
    Quote Quote

 
Page 1 of 3 123 LastLast

  Related Discussions
a virus deleted my shadow copies so now i cant restore my system to a previous restore point, i just want to know if there is any way to recover those shadow copies of the restore point so thst i can restore, if its possible. :cry: :cry: :cry:
Hi Gents, I had the "German" version of the virus (Bundespolizei) 2 times in the last 1 year and I managed to get rid of it. But now... One of my biggest problems is BitLocker - my hard drive is encrypted (but I have the codes) I am having the following problem now: 1. The screen after a...
I have no shortage of relatives who will not use a good AV program. This one got the Win 7 recovery virus. Its gone now. It had hidden all the user files. I was given a program named "unhide.exe" which really restored all user files. The All Programs menu is the last problem. the unhide program...
BSOD continues after Reinstalls.
in BSOD Help and Support

This is my first post looking for help so sorry if I forget to add somethings. I recently (within the last two weeks) rebuilt my computer and upgraded a bunch of stuff. All of the stuff is compatible on the hardware side. The following paragraph is no longer true as of 1:31 am after booting...
I just installed Windows 7 on my parents laptop, they got that Fake AntiSpyware virus which Geek Squad at BestBuy...geniuses...not. Cost $130 and they "recommend" a $65 antivirus, which my mother thought would be a great idea while not telling me.. Anyways, I installed Windows 7 and I saw in...
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

 © Designer Media Ltd
All times are GMT -5. The time now is 20:47.
Find Us