Sign-in / Sign-up
Your question
Solved

Help removing virus (long story)

Tags:
  • Virus
  • Windows Security
  • Apps
Last response: in Apps General Discussion
May 29, 2014 12:21:51 PM

UPDATE: I discovered an ad-ware virus by "conduit", and have taken every measure to eliminate it, I appear to have suceeded as I can now DOWNLOAD AND WATCH YOUTUBE VIDEOS, I reinstalled adblock and now ads have ceased. So it all appears well for now. Thank everyone of TomsHardware for all the help!



Windows Security Essentials detected a virus named "Hacktool:MSIL/Gendows" and I clicked delete, however my computer is still running
very slow and has random ads assigned to words, my chrome adblocker is now blank when I click it and many pages are LITTERED with ads. THIS IS NOT A CHROME EXTENSION.

I looked at a few tutorials to remove it online, most said some files I need to delete in safe mode such as:
%AllusersProfile&\[RANDOM]
%AllusersProfile&\ Application Data
C:/Windows/System32/ Svchost.exe

But I don't have most of these files, and I'm too scared to delete something from system 32, aswell as it having a protection by "Trusted Installer" preventing me from doing so.
However I don't have any of the files it says to delete, and there are no "suspicious" processes in task manager. I don't even have the regedit entries that belong to the virus, even though I have it.

Help would be GREATLY appreciated, I've been fighting this all day and all I want to do is watch freaking youtube videos.

ALSO NOTEWORTHY, Whatever I try to download fails, the download time goes insanely high for even kilobytes worth of files and then it goes blank, and fails.

More about : removing virus long story

May 29, 2014 12:27:48 PM

The injected hyperlinks can be caused by a malicious browser extension. If you are using Chrome, go to the Menu (top right) -> Tools -> Extensions. Check to see if there are any extensions you don't recognize. In Internet Explorer you can check the same thing under File -> Manage Add-Ons (assuming you are running the latest version).

Also I would recommend downloading the free Avast or AVG antivirus software. These will do a better job of cleaning and protecting your PC than Windows Security Essentials.
m
0
l

Best solution

May 29, 2014 12:37:41 PM

Hello,

Also download HitmanPro www.surfright.nl - Malwarebytes Antimalware www.malwarebytes.org - SUPERAntiSpyware www.superantispyware.com

Run these through your computer until they all come out clean - as a technician these were my go-to programs (the easy to use ones)

I 2nd the use of Avast or AVG (I prefer Avast) as MS Security Essentials has always been junk in my experience
Share
Related resources
May 29, 2014 12:58:10 PM

fricklesmn said:
Hello,

Also download HitmanPro www.surfright.nl - Malwarebytes Antimalware www.malwarebytes.org - SUPERAntiSpyware www.superantispyware.com

Run these through your computer until they all come out clean - as a technician these were my go-to programs (the easy to use ones)

I 2nd the use of Avast or AVG (I prefer Avast) as MS Security Essentials has always been junk in my experience


Sorry I should have also mentioned...the icing of the cake...ANY DOWNLOAD I try to do, even around 1000kb, the download time spikes up to 45< minutes and then it goes blank, and fails.

m
0
l
May 29, 2014 1:00:13 PM

mgolus said:
The injected hyperlinks can be caused by a malicious browser extension. If you are using Chrome, go to the Menu (top right) -> Tools -> Extensions. Check to see if there are any extensions you don't recognize. In Internet Explorer you can check the same thing under File -> Manage Add-Ons (assuming you are running the latest version).

Also I would recommend downloading the free Avast or AVG antivirus software. These will do a better job of cleaning and protecting your PC than Windows Security Essentials.


Thanks for the help but it wasn't an extension. Also, I have updated the post about my download problem..

m
0
l
May 29, 2014 1:08:19 PM

You could try rebooting in "Safe Mode with Networking" and attempt the downloads again. Sometimes this helps to bypass any excess from starting up

Windows XP/Vista/7 - repeatedly press F8 just before windows starts

Windows 8 - Hold Shift while clicking the Power Button then Restart on screen, and select it from there
m
0
l
May 29, 2014 1:15:30 PM

fricklesmn said:
You could try rebooting in "Safe Mode with Networking" and attempt the downloads again. Sometimes this helps to bypass any excess from starting up

Windows XP/Vista/7 - repeatedly press F8 just before windows starts

Windows 8 - Hold Shift while clicking the Power Button then Restart on screen, and select it from there


I did manage to download some antivirus software, I already had malwarebyte too, but neither of them detect the virus whatsoever, this is really frustrating me as it appears as if my PC is completely fine, the files in regedit aren't there either.

m
0
l
May 29, 2014 1:22:03 PM

It is possible you are dealing with a Rootkit Virus, which are very hard to detect with normal Antivirus/Antimalware

Try downloading TDSSKiller from Kaspersky, it has helped me in the past with systems which showed clean through normal means (Antivirus/Antimalware softwares)

http://media.kaspersky.com/utilities/VirusUtilities/EN/...
m
0
l
May 29, 2014 1:25:20 PM

fricklesmn said:
It is possible you are dealing with a Rootkit Virus, which are very hard to detect with normal Antivirus/Antimalware

Try downloading TDSSKiller from Kaspersky, it has helped me in the past with systems which showed clean through normal means (Antivirus/Antimalware softwares)

http://media.kaspersky.com/utilities/VirusUtilities/EN/...


Alright ill try to download TDSSkiller. Ill let you know how it goes. For the record, again, my "harmful software" was called Hacktool:MSIL/Gendows and I couldn't understand much by looking it up, if you know anything it would be helpful.

m
0
l
May 29, 2014 1:33:30 PM

fricklesmn said:
It is possible you are dealing with a Rootkit Virus, which are very hard to detect with normal Antivirus/Antimalware

Try downloading TDSSKiller from Kaspersky, it has helped me in the past with systems which showed clean through normal means (Antivirus/Antimalware softwares)

http://media.kaspersky.com/utilities/VirusUtilities/EN/...


Kaspersky TDSS killer didn't detect anything...what is up with this damn virus.

m
0
l