-
Welcome to TechPowerUp Forums, Guest! Please check out our forum guidelines for info related to our community.
How to Fix a Malware Infected Computer?
- Thread starter lisaglenn
- Start date
- Joined
- Feb 19, 2006
- Messages
- 6,270 (0.94/day)
- Location
- New York
| Processor | INTEL CORE I9-9900K @ 5Ghz all core 4.7Ghz Cache @1.305 volts |
|---|---|
| Motherboard | ASUS PRIME Z390-P ATX |
| Cooling | CORSAIR HYDRO H150I PRO RGB 360MM 6x120mm fans push pull |
| Memory | CRUCIAL BALLISTIX 3000Mhz 4x8 32gb @ 4000Mhz |
| Video Card(s) | EVGA GEFORECE RTX 2080 SUPER XC HYBRID GAMING |
| Storage | ADATA XPG SX8200 Pro 1TB 3D NAND NVMe,Intel 660p 1TB m.2 ,1TB WD Blue 3D NAND,500GB WD Blue 3D NAND, |
| Display(s) | 50" Sharp Roku TV 8ms responce time and Philips 75Hz 328E9QJAB 32" curved |
| Case | BLACK LIAN LI O11 DYNAMIC XL FULL-TOWER GAMING CASE, |
| Power Supply | 1600 Watt |
| Software | Windows 10 |
Well Malewarbytes is good as it gets for maleware removal.
http://www.malwarebytes.org/
AS for the files well recuva should be able to get them but if they were removed in part of the cleaning process then they are probably infected as well. If the virus did the removal then recuva should get them back. Be sure to scan for maleware or virus when recovering files. Good luck.
http://www.malwarebytes.org/
AS for the files well recuva should be able to get them but if they were removed in part of the cleaning process then they are probably infected as well. If the virus did the removal then recuva should get them back. Be sure to scan for maleware or virus when recovering files. Good luck.
Last edited:
de.das.dude
Pro Indian Modder
- Joined
- Jun 13, 2010
- Messages
- 8,783 (1.73/day)
- Location
- Stuck in a PC. halp.
| System Name | Monke | Work Thinkpad| Old Monke |
|---|---|
| Processor | Ryzen 5600X | Ryzen 5500U | FX8320 |
| Motherboard | ASRock B550 Extreme4 | ? | Asrock 990FX Extreme 4 |
| Cooling | 240mm Rad | Not needed | hyper 212 EVO |
| Memory | 2x16GB DDR4 3600 Corsair RGB | 16 GB DDR4 3600 | 16GB DDR3 1600 |
| Video Card(s) | Sapphire Pulse RX6700XT 12GB | Vega 8 | Sapphire Pulse RX580 8GB |
| Storage | Samsung 980 nvme (Primary) | some samsung SSD |
| Display(s) | Dell 2723DS | Some 14" 1080p 98%sRGB IPS | Dell 2240L |
| Case | Ant Esports Tempered case | Thinkpad | Antec |
| Audio Device(s) | Logitech Z333 | Jabra corpo stuff |
| Power Supply | Corsair RM750e | not needed | Corsair GS 600 |
| Mouse | Logitech G400 | nipple |
| Keyboard | Logitech G213 | stock kb is awesome | Logitech K230 |
| VR HMD | ;_; |
| Software | Windows 10 Professional x3 |
| Benchmark Scores | There are no marks on my bench |
malwarebytes + tdss killer. i had a similar porblem and i was recomended the same here.
Wrigleyvillain
PTFO or GTFO
- Joined
- Oct 13, 2007
- Messages
- 7,702 (1.28/day)
- Location
- Chicago
| System Name | DarkStar |
|---|---|
| Processor | i5 3570K 4.4Ghz |
| Motherboard | Asrock Z77 Extreme 3 |
| Cooling | Apogee HD White/XSPC Razer blocks |
| Memory | 8GB Samsung Green 1600 |
| Video Card(s) | 2 x GTX 670 4GB |
| Storage | 2 x 120GB Samsung 830 |
| Display(s) | 27" QNIX |
| Case | Enthoo Pro |
| Power Supply | Seasonic Platinum 760 |
| Mouse | Steelseries Sensei |
| Keyboard | Ducky Pro MX Black |
| Software | Windows 8.1 x64 |
Run in Safe mode...failing that Google for a Live CD you can boot from that is for exactly this purpose (disinfecting). Can more effectively clean when infected volume not the startup (nothing "in use").
- Joined
- Aug 13, 2009
- Messages
- 3,188 (0.59/day)
- Location
- Czech republic
| Processor | Ryzen 5800X |
|---|---|
| Motherboard | Asus TUF-Gaming B550-Plus |
| Cooling | Noctua NH-U14S |
| Memory | 32GB G.Skill Trident Z Neo F4-3600C16D-32GTZNC |
| Video Card(s) | Sapphire Radeon Rx 580 Nitro+ 8GB |
| Storage | HP EX950 512GB + Samsung 970 PRO 1TB |
| Display(s) | HP Z Display Z24i G2 |
| Case | Fractal Design Define R6 Black |
| Audio Device(s) | Creative Sound Blaster AE-5 |
| Power Supply | Seasonic PRIME Ultra 650W Gold |
| Mouse | Roccat Kone AIMO Remastered |
| Software | Windows 10 x64 |
Me myself, I don't believe in removal of such stuff at all, no matter how good the software used is. Backing up some documents, music, movies and whatever, and doing clean install of the OS might even be significantly faster, too - with guaranteed result.
Just my 2c.
P.S. Wrong forum section.
Just my 2c.
P.S. Wrong forum section.
- Joined
- Mar 8, 2009
- Messages
- 1,077 (0.19/day)
| System Name | Primary Rig |
|---|---|
| Processor | e8500 Q822A549 4.5ghz AIR |
| Motherboard | Foxconn Mars P35 |
| Cooling | TRUE |
| Memory | 2 x2GB Patriot Viper 1066 5-5-5-12 @ 1.8v |
| Video Card(s) | Sapphire 5870 Unlocked |
| Storage | 300gb Velociraptor |
| Display(s) | Dell 24" Ultrasharp |
| Case | Coolermaster CM690 |
| Power Supply | PC Power & Cooling 750w Quad Silencer |
| Software | Windows 7 Ultimate x86 |
1) Boot up in safe mode (usually f8)
2) First run Rkill http://www.bleepingcomputer.com/forums/t/308364/rkill-what-it-does-and-what-it-doesnt-a-brief-introduction-to-the-program/
3) Then full malwarebytes scan and clean
4) Reboot
5) May need to boot from your Windows installation CD/DVD and select the "Repair Windows" option after a safe mode clean if some components are damaged or missing.
6) In the future, create a backup image on another partition or hard drive, so you can reinstall from the image in case this happens again. The backup image containing your OS and programs, you should keep your files and data elsewhere.
2) First run Rkill http://www.bleepingcomputer.com/forums/t/308364/rkill-what-it-does-and-what-it-doesnt-a-brief-introduction-to-the-program/
3) Then full malwarebytes scan and clean
4) Reboot
5) May need to boot from your Windows installation CD/DVD and select the "Repair Windows" option after a safe mode clean if some components are damaged or missing.
6) In the future, create a backup image on another partition or hard drive, so you can reinstall from the image in case this happens again. The backup image containing your OS and programs, you should keep your files and data elsewhere.
- Joined
- Aug 29, 2005
- Messages
- 7,083 (1.04/day)
- Location
- Asked my ISP.... 0.0
| System Name | Lynni PS \ Lenowo TwinkPad T480 |
|---|---|
| Processor | AMD Ryzen 7 7700 Raphael \ i7-8550U Kaby Lake-R |
| Motherboard | ASRock B650M PG Riptide Bios v. 2.02 AMD AGESA 1.1.0.0 \ Lenowo 20L60036MX Bios 1.47 |
| Cooling | Noctua NH-D15 Chromax.Black (Only middle fan) \ Lenowo WN-2 |
| Memory | G.Skill Flare X5 2x16GB DDR5 6000MHZ CL36-36-36-96 AMD EXPO \ Willk Elektronik 2x16GB 2666MHZ CL17 |
| Video Card(s) | Asus GeForce RTX™ 4070 Dual OC GPU: 2325-2355 MEM: 1462| Nvidia GeForce MX™ 150 2GB GDDR5 Micron |
| Storage | Gigabyte M30 1TB|Sabrent Rocket 2TB| HDD: 10TB|1TB \ SKHynix 256GB 2242 3x2 | WD SN700 1TB |
| Display(s) | LG UltraGear 27GP850-B 1440p@165Hz | LG 48CX OLED 4K HDR | AUO 14" 1440p IPS |
| Case | Asus Prime AP201 White Mesh | Lenowo T480 chassis |
| Audio Device(s) | Steelseries Arctis Pro Wireless |
| Power Supply | Be Quiet! Pure Power 12 M 750W Goldie | 65W |
| Mouse | Logitech G305 Lightspeedy Wireless | Lenowo TouchPad & Logitech G305 |
| Keyboard | Akko 3108 DS Horizon V2 Cream Yellow | T480 UK Lumi |
| Software | Win11 Pro 23H2 UK |
| Benchmark Scores | 3DMARK: https://www.3dmark.com/3dm/89434432? GPU-Z: https://www.techpowerup.com/gpuz/details/v3zbr |
Tatty_Two
Gone Fishing
- Joined
- Jan 18, 2006
- Messages
- 25,801 (3.87/day)
- Location
- Worcestershire, UK
| Processor | Rocket Lake Core i5 11600K @ 5 Ghz with PL tweaks |
|---|---|
| Motherboard | MSI MAG Z490 TOMAHAWK |
| Cooling | Thermalright Peerless Assassin 120SE + 4 Phanteks 140mm case fans |
| Memory | 32GB (4 x 8GB SR) Patriot Viper Steel 4133Mhz DDR4 @ 3600Mhz CL14@1.45v Gear 1 |
| Video Card(s) | Asus Dual RTX 4070 OC |
| Storage | WD Blue SN550 1TB M.2 NVME//Crucial MX500 500GB SSD (OS) |
| Display(s) | AOC Q2781PQ 27 inch Ultra Slim 2560 x 1440 IPS |
| Case | Phanteks Enthoo Pro M Windowed - Gunmetal |
| Audio Device(s) | Onboard Realtek ALC1200/SPDIF to Sony AVR @ 5.1 |
| Power Supply | Seasonic CORE GM650w Gold Semi modular |
| Mouse | Coolermaster Storm Octane wired |
| Keyboard | Element Gaming Carbon Mk2 Tournament Mech |
| Software | Win 10 Home x64 |
Moved to the software section.... I like to keep me drawers tidy!
- Joined
- Apr 15, 2013
- Messages
- 1,261 (0.31/day)
| System Name | Some computer stuff |
|---|---|
| Processor | Mostly Intel or AMD |
| Motherboard | ATX or mATX |
| Cooling | Bong Cooler |
| Memory | DDR2-4 |
| Video Card(s) | A few |
| Storage | Plenty Platters or SSDs or USBs |
| Display(s) | Samsung 23" |
| Case | 5 on the floor |
| Audio Device(s) | There's one for my M7 Gene, Oh I have 3-4 PCI 5.1 ones.Sabrent! lol |
| Power Supply | 750-1000W |
| Mouse | cheap |
| Keyboard | Used ps2 from garage sales |
| Software | Yeah |
| Benchmark Scores | http://hwbot.org/user/schmuckley/#Hardware_Library http://valid.canardpc.com/rbjpbg |
I'd save browser profiles/pic/etc;then wipe it and do fresh install.
http://www.howtogeek.com/136116/how-to-easily-back-up-and-migrate-your-browser-bookmarks/
Idk about that method but..I find where the folder is and copy it;then save to usb and re-paste after installing browser on fresh Windows.
For Firefox it's C:\users\(username)\appdata\roaming\mozilla (mozilla is what gets copied)
http://www.howtogeek.com/136116/how-to-easily-back-up-and-migrate-your-browser-bookmarks/
Idk about that method but..I find where the folder is and copy it;then save to usb and re-paste after installing browser on fresh Windows.
For Firefox it's C:\users\(username)\appdata\roaming\mozilla (mozilla is what gets copied)
qubit
Overclocked quantum bit
- Joined
- Dec 6, 2007
- Messages
- 17,865 (2.99/day)
- Location
- Quantum Well UK
| System Name | Quantumville™ |
|---|---|
| Processor | Intel Core i7-2700K @ 4GHz |
| Motherboard | Asus P8Z68-V PRO/GEN3 |
| Cooling | Noctua NH-D14 |
| Memory | 16GB (2 x 8GB Corsair Vengeance Black DDR3 PC3-12800 C9 1600MHz) |
| Video Card(s) | MSI RTX 2080 SUPER Gaming X Trio |
| Storage | Samsung 850 Pro 256GB | WD Black 4TB | WD Blue 6TB |
| Display(s) | ASUS ROG Strix XG27UQR (4K, 144Hz, G-SYNC compatible) | Asus MG28UQ (4K, 60Hz, FreeSync compatible) |
| Case | Cooler Master HAF 922 |
| Audio Device(s) | Creative Sound Blaster X-Fi Fatal1ty PCIe |
| Power Supply | Corsair AX1600i |
| Mouse | Microsoft Intellimouse Pro - Black Shadow |
| Keyboard | Yes |
| Software | Windows 10 Pro 64-bit |
I don't see why people are giving tips on how to remove the malware, since the OP has already said he's removed it? It looks to me like he wants to recover data, although it's not especially clear.
@lisaglenn
You need to be more specific about this data if we're to help you. What do you mean by important files? Are these Windows system files? Are they files in your data area such as Documents? Tell us.
Note that the data may be gone forever and hence cannot be recovered.
Finally, I don't trust anything to properly remove malware, so I would format and reinstall Windows, which is guaranteed to remove all malware. Backup your data first, obviously. It should be backed up regularly, anyway.
@lisaglenn
You need to be more specific about this data if we're to help you. What do you mean by important files? Are these Windows system files? Are they files in your data area such as Documents? Tell us.
Note that the data may be gone forever and hence cannot be recovered.
Finally, I don't trust anything to properly remove malware, so I would format and reinstall Windows, which is guaranteed to remove all malware. Backup your data first, obviously. It should be backed up regularly, anyway.
MxPhenom 216
ASIC Engineer
- Joined
- Aug 31, 2010
- Messages
- 12,945 (2.60/day)
- Location
- Loveland, CO
| System Name | Ryzen Reflection |
|---|---|
| Processor | AMD Ryzen 9 5900x |
| Motherboard | Gigabyte X570S Aorus Master |
| Cooling | 2x EK PE360 | TechN AM4 AMD Block Black | EK Quantum Vector Trinity GPU Nickel + Plexi |
| Memory | Teamgroup T-Force Xtreem 2x16GB B-Die 3600 @ 14-14-14-28-42-288-2T 1.45v |
| Video Card(s) | Zotac AMP HoloBlack RTX 3080Ti 12G | 950mV 1950Mhz |
| Storage | WD SN850 500GB (OS) | Samsung 980 Pro 1TB (Games_1) | Samsung 970 Evo 1TB (Games_2) |
| Display(s) | Asus XG27AQM 240Hz G-Sync Fast-IPS | Gigabyte M27Q-P 165Hz 1440P IPS | Asus 24" IPS (portrait mode) |
| Case | Lian Li PC-011D XL | Custom cables by Cablemodz |
| Audio Device(s) | FiiO K7 | Sennheiser HD650 + Beyerdynamic FOX Mic |
| Power Supply | Seasonic Prime Ultra Platinum 850 |
| Mouse | Razer Viper v2 Pro |
| Keyboard | Razer Huntsman Tournament Edition |
| Software | Windows 11 Pro 64-Bit |
Its TPU dude. People only read the title, and well his/her title is misleading to say the least.
qubit
Overclocked quantum bit
- Joined
- Dec 6, 2007
- Messages
- 17,865 (2.99/day)
- Location
- Quantum Well UK
| System Name | Quantumville™ |
|---|---|
| Processor | Intel Core i7-2700K @ 4GHz |
| Motherboard | Asus P8Z68-V PRO/GEN3 |
| Cooling | Noctua NH-D14 |
| Memory | 16GB (2 x 8GB Corsair Vengeance Black DDR3 PC3-12800 C9 1600MHz) |
| Video Card(s) | MSI RTX 2080 SUPER Gaming X Trio |
| Storage | Samsung 850 Pro 256GB | WD Black 4TB | WD Blue 6TB |
| Display(s) | ASUS ROG Strix XG27UQR (4K, 144Hz, G-SYNC compatible) | Asus MG28UQ (4K, 60Hz, FreeSync compatible) |
| Case | Cooler Master HAF 922 |
| Audio Device(s) | Creative Sound Blaster X-Fi Fatal1ty PCIe |
| Power Supply | Corsair AX1600i |
| Mouse | Microsoft Intellimouse Pro - Black Shadow |
| Keyboard | Yes |
| Software | Windows 10 Pro 64-bit |
erocker
*
- Joined
- Jul 19, 2006
- Messages
- 43,587 (6.72/day)
| Processor | AMD Ryzen 7 7800X3D |
|---|---|
| Motherboard | ASUS TUF x670e |
| Cooling | EK AIO 360. Phantek T30 fans. |
| Memory | 32GB G.Skill 6000Mhz |
| Video Card(s) | Asus RTX 4090 |
| Storage | WD m.2 |
| Display(s) | LG C2 Evo OLED 42" |
| Case | Lian Li PC 011 Dynamic Evo |
| Audio Device(s) | Topping E70 DAC, SMSL SP200 Headphone Amp. |
| Power Supply | FSP Hydro Ti PRO 1000W |
| Mouse | Razer Basilisk V3 Pro |
| Keyboard | Tester84 |
| Software | Windows 11 |
I'm sure lisaglenn or some other new member will give us the answer by providing a nice spammy link soon. 
- Joined
- Feb 27, 2008
- Messages
- 8,743 (1.48/day)
| System Name | OrangeHaze / Silence |
|---|---|
| Processor | i7-13700KF / i5-10400 / |
| Motherboard | ROG STRIX Z690-E / MSI Z490 A-Pro Motherboard |
| Cooling | Corsair H75 / TT ToughAir 510 |
| Memory | 64Gb GSkill Trident Z5 / 32GB Team Dark Za 3600 |
| Video Card(s) | Palit GeForce RTX 2070 / Sapphire R9 290 Vapor-X 4Gb |
| Storage | Hynix Plat P41 2Tb\Samsung MZVL21 1Tb / Samsung 980 Pro 1Tb |
| Display(s) | 22" Dell Wide/24" Asus |
| Case | Lian Li PC-101 ATX custom mod / Antec Lanboy Air Black & Blue |
| Audio Device(s) | SB Audigy 7.1 |
| Power Supply | Corsair Enthusiast TX750 |
| Mouse | Logitech G502 Lightspeed Wireless / Logitech G502 Proteus Spectrum |
| Keyboard | K68 RGB — CHERRY® MX Red |
| Software | Win10 Pro \ RIP:Win 7 Ult 64 bit |
Depending on what he had, he may be looking for this. Unhide. some of the more recent viruses had the fun habit of ultra-hiding documents, desktop icons, programs, etc. This will show you what's been hidden (or more accurately, "un-hide" them). If that's your issue, there's also some directions about recovering the program links you're missing. If so, post back here, and for Zeus's sake, don't delete your temporary files: that's where they're moved.
- Joined
- Mar 13, 2009
- Messages
- 827 (0.15/day)
- Location
- Bannock County
| Processor | AMD FX-8320 4.1Ghz |
|---|---|
| Motherboard | Asus Aura |
| Cooling | Corsair H60 |
| Memory | Crucial Ballistix Sport 32GB |
| Video Card(s) | EVGA 1060 SC |
| Storage | Intel 535 Series SSD + Seagate FireCuda 2TB |
| Case | NZXT |
| Power Supply | EVGA 650 Watt |
| Software | Windows 10 Pro 64-Bit |
Sometimes this is a much better option. But it all depends on the severity of the malware.
TheVanillatech
New Member
- Joined
- Apr 1, 2013
- Messages
- 9 (0.00/day)
| System Name | Brutal Beast |
|---|---|
| Processor | AMD K6-III 400 @ 550Mhz |
| Motherboard | Matsonic MS6260S |
| Cooling | Modded AKASA Copper Base |
| Memory | 2 x 128MB Crucial PC100 |
| Video Card(s) | Riva TNT2 Ultra + VooDoo 2 SLI 8Mb |
| Storage | 20GB 5400RPM Quantum |
| Display(s) | 17" Diamond Mitsubishi SB |
| Case | Modded Fujitsu Steel Case |
| Audio Device(s) | SB Live! |
| Power Supply | Alpine 500W |
| Software | Windows 98SE + Dos 6.22 |
People may disagree - I have read some good solutions here. The problem is once a PC becomes so bogged down with malware and spyware, the cleanup process is a long drawn out headache and sometimes a losing battle.
Try what LagunaX said and if you succeed then cool!
But remember that the best way to fully clean a PC is to have your boot drive (with your operating system) on a small partition of the hard drive, and keep all your important stuff on another. Then the fastest and most sure way of cleaning a PC of Malware is to simply format the boot drive back to clean and re-install the OS and drivers. You will be back up and running in under an hour with no important data lost.
Try what LagunaX said and if you succeed then cool!
But remember that the best way to fully clean a PC is to have your boot drive (with your operating system) on a small partition of the hard drive, and keep all your important stuff on another. Then the fastest and most sure way of cleaning a PC of Malware is to simply format the boot drive back to clean and re-install the OS and drivers. You will be back up and running in under an hour with no important data lost.