Tech Support Forum banner
Cancel

HELP PLEASE. Win 7 Total Security VIRUS

Jump to Latest Follow
Status
Not open for further replies.
1 - 4 of 4 Posts
D

· Registered
Joined
·
2 Posts
Discussion Starter · #1 ·
Help please, ive been trying to find methods which could help me get rid of this virus, but none of them seem to work.

For one, i cant access the internet because its being blocked by trojan-bnk.win32.keylogger.gen,

Secondly, i cant stop processes or delete any programs. When i try to delete programs it says "Access Denied" or "Need Permission". And when i try to terminate processes the same thing happens

HELP PLEASE!
 
tetonbob

· TSF Security Manager, Emeritus
Joined
·
51,795 Posts
#3 ·
Hello and Welcome.

Windows7 System Restore is very robust. I wonder if you've tried that yet? If not, try going back to a point a day or so before the event, and see how things are. I would use Method 2, Through System Recovery Options at Boot, for running System Restore.

System Restore - Windows 7 Forums

If you're able to perform a System Restore, post new logs as outlined here:

NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help - Tech Support Forum

If you are unable to perform a System Restore...

If you have an active internet connection, copy/paste the links below into your browser, don't click them or the rogue might redirect. If you don't have an active internet connection, download the tools from another machine, and transfer them to the affected machine via USB flash drive.


Please download and run the following tool to help allow other programs to run. (courtesy of BleepingComputer.com)
There are 3 different versions. If one of them won't run then download and try to run the other one.
Vista and Win7 users need to right click and choose Run as Admin
You only need to get one of them to run, not all of them.


http://download.bleepingcomputer.com/grinler/rkill.exe
http://download.bleepingcomputer.com/grinler/rkill.com
http://download.bleepingcomputer.com/grinler/rkill.scr



Note:

You will likely see a message from this rogue telling you the file is infected. Ignore the message. Leave the message OPEN, do not close the message. Run rkill repeatedly until it's able to do it's job. This may take a few tries. You'll be able to tell rkill has done it's job when your desktop (explorer.exe) cycles off and then on again.

At this point, you should now be able to run analysis tools.

Once the tool has run, do NOT reboot the machine, and then try once again to run DDS and GMER as outlined here:


Please follow our pre-posting process outlined here:

NEW INSTRUCTIONS - Read This Before Posting For Malware Removal Help - Tech Support Forum

After running through all the steps, you shall have a proper set of logs.

If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply.

If for some reason the machine reboots, repeat the process. Again, try not to restart the machine.
 
tetonbob

· TSF Security Manager, Emeritus
Joined
·
51,795 Posts
#4 ·
1 - 4 of 4 Posts
Status
Not open for further replies.
About this Discussion
3 Replies
2 Participants
Last post:
tetonbob
Tech Support Forum
A forum community dedicated to tech experts and enthusiasts. Come join the discussion about articles, computer security, Mac, Microsoft, Linux, hardware, networking, gaming, reviews, accessories, and more!
Full Forum Listing
Explore Our Forums
Windows XP Support Windows 7 , Windows Vista Support Motherboards, Bios|UEFI & CPU Networking Support Laptop Support
Top