HELP! Onboard virus!


RAMWolff

Well-known member
VIP
Local time
8:51 AM
Posts
71
Location
RWC, CA USA
OS
Windows 11
Michael posted: This might help. https://support.microsoft.com/en-us/home/expcontact...
You can also use your Microsoft Account to sign-in and get support directly from Microsoft. They will help you get rid of the virus....


Me: Can't find anything with these scans so not sure what's going on. I've not had anything like this happen since Windows 98!

I'm typing in a text editor and copy and pasting as I can't even type into a reply box!

This thing just replicates things ALLOT and then freezes my system up so I have to do a cold boot down!

If I try to access my Start menu it freezes so I can't access the onboard virus app! This is crazy! Not how I wanted to spend my day!
 
Last edited:

My Computer

System One

  • OS
    Windows 11
    Computer type
    PC/Desktop
    Manufacturer/Model
    CyberPower PC
    CPU
    RYZEN 7 5700G 3.8GHz
    Motherboard
    GIGABYTE B550 UD AC
    Memory
    ADATA 8GB DDR4-3200 XPG Z1 4
    Graphics Card(s)
    GIGABYTE GEFORCE RTX 3060 GAMING OC 12GB GDDR6 REV 2.1
    Sound Card
    HIGH DEFINITION ON-BOARD 7.1 AUDIO
    Monitor(s) Displays
    M1-Samsung Smart TV, M2- ViewSonic
    Screen Resolution
    M1-1920X1080 - M2-1920X1080
    Hard Drives
    1 Tb SSd (main Windows) 1 SSd external drives and two internal SATA HD's
    PSU
    APEVIA 800WATT GOLD 80 PLUS POWER SUPPLY
    Case
    In-Win G7 w/ USB 3.0, EZ Swap HDD Dock
    Cooling
    Liquid
    Keyboard
    Perixx PERIBOARD-331 Wired Backlit USB Keyboard
    Mouse
    Logitech MX Ergo Wireless Trackball Mouse
    Internet Speed
    WAVE, highest tier so FAST enough
    Browser
    Opera
    Antivirus
    MS
Hey, Id try and Run Rkill which should hopefully stop the malware at the time allowing you to run further scans.
I would then run AdwCleaner and then Malwarebytes as listed above by San Martino.
Let us know if this pulls anything up.
Edit: It may be worth booting into safe mode to do this.
If safe mode doesn't do the trick alone, Boot into it anyway and try the Command Line Version Of Rkill
 

My Computer

System One

  • OS
    11
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom
    CPU
    10700k@5.2
    Motherboard
    Gigabyte Gaming X Z490
    Memory
    Viper Steelseries 32gb@ 3600mhz
    Graphics Card(s)
    Gigabyte 2070 Super 8GB, +200 core + 600 memory
    Monitor(s) Displays
    ASUS 4k HDR, Two 1080p Benq and Samsung
    Screen Resolution
    3840x2160/2560x1440/1920x1080
    Hard Drives
    Adata XPG SX8200 PRO 1tb
    Samsung EVO 870 500GB
    PSU
    Corsair RX 650
    Case
    NZXT h510
    Cooling
    CM HYPER 212 RGB
    Keyboard
    Razer Ornata Chroma
    Mouse
    Steelseries Rival 710
Little update. Seems that there is something strange going on with the Auto Play tool. It was causing all this. I've got 3 hours of the full scan to go, started it yesterday and it's now 8 in the AM here but it's going to finish as I hope that it will find any other strange things and fix or delete them.

In the mean time I disabled Auto Play completely and all the replication stuff and bogging down my system with all the extra being held in memory, eating it like french fries is all gone. Didn't know that Auto Play could go rouge like that. Very strange.
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    PC/Desktop
    Manufacturer/Model
    CyberPower PC
    CPU
    RYZEN 7 5700G 3.8GHz
    Motherboard
    GIGABYTE B550 UD AC
    Memory
    ADATA 8GB DDR4-3200 XPG Z1 4
    Graphics Card(s)
    GIGABYTE GEFORCE RTX 3060 GAMING OC 12GB GDDR6 REV 2.1
    Sound Card
    HIGH DEFINITION ON-BOARD 7.1 AUDIO
    Monitor(s) Displays
    M1-Samsung Smart TV, M2- ViewSonic
    Screen Resolution
    M1-1920X1080 - M2-1920X1080
    Hard Drives
    1 Tb SSd (main Windows) 1 SSd external drives and two internal SATA HD's
    PSU
    APEVIA 800WATT GOLD 80 PLUS POWER SUPPLY
    Case
    In-Win G7 w/ USB 3.0, EZ Swap HDD Dock
    Cooling
    Liquid
    Keyboard
    Perixx PERIBOARD-331 Wired Backlit USB Keyboard
    Mouse
    Logitech MX Ergo Wireless Trackball Mouse
    Internet Speed
    WAVE, highest tier so FAST enough
    Browser
    Opera
    Antivirus
    MS
And thanks for the help folks. I've downloaded the two suggested apps from Bleeping Computer so I'll get those installed and see if these two finds other stuff that needs to go. I do have Malwarebytes installed and it's scan didn't turn up anything so again I think the Auto Run tool went rogue!
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    PC/Desktop
    Manufacturer/Model
    CyberPower PC
    CPU
    RYZEN 7 5700G 3.8GHz
    Motherboard
    GIGABYTE B550 UD AC
    Memory
    ADATA 8GB DDR4-3200 XPG Z1 4
    Graphics Card(s)
    GIGABYTE GEFORCE RTX 3060 GAMING OC 12GB GDDR6 REV 2.1
    Sound Card
    HIGH DEFINITION ON-BOARD 7.1 AUDIO
    Monitor(s) Displays
    M1-Samsung Smart TV, M2- ViewSonic
    Screen Resolution
    M1-1920X1080 - M2-1920X1080
    Hard Drives
    1 Tb SSd (main Windows) 1 SSd external drives and two internal SATA HD's
    PSU
    APEVIA 800WATT GOLD 80 PLUS POWER SUPPLY
    Case
    In-Win G7 w/ USB 3.0, EZ Swap HDD Dock
    Cooling
    Liquid
    Keyboard
    Perixx PERIBOARD-331 Wired Backlit USB Keyboard
    Mouse
    Logitech MX Ergo Wireless Trackball Mouse
    Internet Speed
    WAVE, highest tier so FAST enough
    Browser
    Opera
    Antivirus
    MS
Have you got an image you can go back to from before it happened
 

My Computers

System One System Two

  • OS
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Alienware M18 R1
    CPU
    13th Gen Core i9 13900HX
    Memory
    32GB DDR5 @4800MHz 2x16GB
    Graphics Card(s)
    Geforce RTX 4090HX 16GB
    Sound Card
    Nvidia HD / Realtek ALC3254
    Monitor(s) Displays
    18" QHD+
    Screen Resolution
    25660 X 1600
    Hard Drives
    C: KIOXIA (Toshiba) 2TB KXG80ZNV2T04 NVMe PCIe M.2 SSD
    D: KIOXIA (Toshiba) 2TB KXG80ZNV2T04 NVMe PCIe M.2 SSD
    Case
    Dark Metallic Moon
    Keyboard
    Alienware M Series per-key AlienFX RGB
    Mouse
    Alienware AW610M
    Browser
    Chrome and Firefox
    Antivirus
    Norton
    Other Info
    Killer E3000 Ethernet Controller
    Killer Killer AX1690 Wi-Fi Network Adaptor Wi-Fi 6E
    Bluetooth 5.2
    Alienware Z01G Graphic Amplifier
  • Operating System
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Alienware Area 51m R2
    CPU
    10th Gen i-9 10900 K
    Memory
    32Gb Dual Channel DDR4 @ 8843MHz
    Graphics card(s)
    Nvidia RTX 2080 Super
    Sound Card
    Nvidia
    Screen Resolution
    1920 x 1080
    Hard Drives
    Hard Drive C: Samsung 2TB SSD PM981a NVMe
    Hard Drive D:Samsung 2TB SSD 970 EVO Plus
    Mouse
    Alienware 610M
    Browser
    Chrome
    Antivirus
    Norton
No, new system like less than a month old. Seems better now with the Auto Run tool disabled. Maybe MS knows about it and will fix it in an update.
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    PC/Desktop
    Manufacturer/Model
    CyberPower PC
    CPU
    RYZEN 7 5700G 3.8GHz
    Motherboard
    GIGABYTE B550 UD AC
    Memory
    ADATA 8GB DDR4-3200 XPG Z1 4
    Graphics Card(s)
    GIGABYTE GEFORCE RTX 3060 GAMING OC 12GB GDDR6 REV 2.1
    Sound Card
    HIGH DEFINITION ON-BOARD 7.1 AUDIO
    Monitor(s) Displays
    M1-Samsung Smart TV, M2- ViewSonic
    Screen Resolution
    M1-1920X1080 - M2-1920X1080
    Hard Drives
    1 Tb SSd (main Windows) 1 SSd external drives and two internal SATA HD's
    PSU
    APEVIA 800WATT GOLD 80 PLUS POWER SUPPLY
    Case
    In-Win G7 w/ USB 3.0, EZ Swap HDD Dock
    Cooling
    Liquid
    Keyboard
    Perixx PERIBOARD-331 Wired Backlit USB Keyboard
    Mouse
    Logitech MX Ergo Wireless Trackball Mouse
    Internet Speed
    WAVE, highest tier so FAST enough
    Browser
    Opera
    Antivirus
    MS
A lot of people are using the tool and I haven't heard of any problems, could be your machine
 

My Computers

System One System Two

  • OS
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Alienware M18 R1
    CPU
    13th Gen Core i9 13900HX
    Memory
    32GB DDR5 @4800MHz 2x16GB
    Graphics Card(s)
    Geforce RTX 4090HX 16GB
    Sound Card
    Nvidia HD / Realtek ALC3254
    Monitor(s) Displays
    18" QHD+
    Screen Resolution
    25660 X 1600
    Hard Drives
    C: KIOXIA (Toshiba) 2TB KXG80ZNV2T04 NVMe PCIe M.2 SSD
    D: KIOXIA (Toshiba) 2TB KXG80ZNV2T04 NVMe PCIe M.2 SSD
    Case
    Dark Metallic Moon
    Keyboard
    Alienware M Series per-key AlienFX RGB
    Mouse
    Alienware AW610M
    Browser
    Chrome and Firefox
    Antivirus
    Norton
    Other Info
    Killer E3000 Ethernet Controller
    Killer Killer AX1690 Wi-Fi Network Adaptor Wi-Fi 6E
    Bluetooth 5.2
    Alienware Z01G Graphic Amplifier
  • Operating System
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Alienware Area 51m R2
    CPU
    10th Gen i-9 10900 K
    Memory
    32Gb Dual Channel DDR4 @ 8843MHz
    Graphics card(s)
    Nvidia RTX 2080 Super
    Sound Card
    Nvidia
    Screen Resolution
    1920 x 1080
    Hard Drives
    Hard Drive C: Samsung 2TB SSD PM981a NVMe
    Hard Drive D:Samsung 2TB SSD 970 EVO Plus
    Mouse
    Alienware 610M
    Browser
    Chrome
    Antivirus
    Norton
Might be. Can't be sure yet. I don't tend to use Auto Play for most things except when I'm ripping CD's so not sure how it was enabled in the first place.
 

My Computer

System One

  • OS
    Windows 11
    Computer type
    PC/Desktop
    Manufacturer/Model
    CyberPower PC
    CPU
    RYZEN 7 5700G 3.8GHz
    Motherboard
    GIGABYTE B550 UD AC
    Memory
    ADATA 8GB DDR4-3200 XPG Z1 4
    Graphics Card(s)
    GIGABYTE GEFORCE RTX 3060 GAMING OC 12GB GDDR6 REV 2.1
    Sound Card
    HIGH DEFINITION ON-BOARD 7.1 AUDIO
    Monitor(s) Displays
    M1-Samsung Smart TV, M2- ViewSonic
    Screen Resolution
    M1-1920X1080 - M2-1920X1080
    Hard Drives
    1 Tb SSd (main Windows) 1 SSd external drives and two internal SATA HD's
    PSU
    APEVIA 800WATT GOLD 80 PLUS POWER SUPPLY
    Case
    In-Win G7 w/ USB 3.0, EZ Swap HDD Dock
    Cooling
    Liquid
    Keyboard
    Perixx PERIBOARD-331 Wired Backlit USB Keyboard
    Mouse
    Logitech MX Ergo Wireless Trackball Mouse
    Internet Speed
    WAVE, highest tier so FAST enough
    Browser
    Opera
    Antivirus
    MS
Thats the problem with PC's they all behave differently, just a small change on one or a different bit of kit inside can make the world of difference
 

My Computers

System One System Two

  • OS
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Alienware M18 R1
    CPU
    13th Gen Core i9 13900HX
    Memory
    32GB DDR5 @4800MHz 2x16GB
    Graphics Card(s)
    Geforce RTX 4090HX 16GB
    Sound Card
    Nvidia HD / Realtek ALC3254
    Monitor(s) Displays
    18" QHD+
    Screen Resolution
    25660 X 1600
    Hard Drives
    C: KIOXIA (Toshiba) 2TB KXG80ZNV2T04 NVMe PCIe M.2 SSD
    D: KIOXIA (Toshiba) 2TB KXG80ZNV2T04 NVMe PCIe M.2 SSD
    Case
    Dark Metallic Moon
    Keyboard
    Alienware M Series per-key AlienFX RGB
    Mouse
    Alienware AW610M
    Browser
    Chrome and Firefox
    Antivirus
    Norton
    Other Info
    Killer E3000 Ethernet Controller
    Killer Killer AX1690 Wi-Fi Network Adaptor Wi-Fi 6E
    Bluetooth 5.2
    Alienware Z01G Graphic Amplifier
  • Operating System
    Windows 11 Pro
    Computer type
    Laptop
    Manufacturer/Model
    Alienware Area 51m R2
    CPU
    10th Gen i-9 10900 K
    Memory
    32Gb Dual Channel DDR4 @ 8843MHz
    Graphics card(s)
    Nvidia RTX 2080 Super
    Sound Card
    Nvidia
    Screen Resolution
    1920 x 1080
    Hard Drives
    Hard Drive C: Samsung 2TB SSD PM981a NVMe
    Hard Drive D:Samsung 2TB SSD 970 EVO Plus
    Mouse
    Alienware 610M
    Browser
    Chrome
    Antivirus
    Norton
The following method has been my tried and true way of removing malware for years.
Download the following tools to a folder on your desktop and have them available before you start.

In safe mode with networking

Step 1. Run tdsskiller Download Free TDSSKiller - Rootkit Removal | Kaspersky Lab US (if asked to restart do so back into safe mode)

Step 2. Run rkill.exe Download RKill (bleepingcomputer.com) When it has finished, the black window will automatically close and you can continue with the next step. If you get a message that RKill is an infection, do not be concerned. This message is just a fake warning given by Malware Protection when it terminates programs that may potentially remove it. If you run into these infections warnings that close RKill, a trick is to leave the warning on the screen and then run RKill again. By not closing the warning, this typically will allow you to bypass the malware trying to protect itself so that RKill can terminate Malware Protection . So, please try running RKill until the malware is no longer running. You will then be able to proceed with the rest of the guide. Do not reboot your computer after running RKill as the malware programs will start again.
(Note-eXplore.exe (download link on same page at the bottom- is just a renamed version of rkill. Depending on your infection, sometimes rkill won't run so it is necessary to run the alternate eXplore.exe as a workaround)

Step 4. Run trial version HitmanPro_x64.exe Download HitmanPro: Scan and Remove Malware

Step 5. Run free version Roguekiller.exe RogueKiller Anti Malware | Free Virus Cleaner Download • Adlice Software

Step 6. Run Adwcleaner.exe AdwCleaner - Free Adware Cleaner & Removal Tool

Step 7. Run Malwarebytes https://www.malwarebytes.com/solutions/free-antivirus
(scroll all way to bottom and click on free download link)

You should then be able to boot back into normal mode and be malware free.
Hope this helps.
 
Last edited:

My Computers

System One System Two

  • OS
    Windows 11 Pro 23H2 22631.3880
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 7080
    CPU
    i9-10900 10 core 20 threads
    Motherboard
    DELL 0J37VM
    Memory
    32 gb
    Graphics Card(s)
    none-Intel UHD Graphics 630
    Sound Card
    Integrated Realtek
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1tb Solidigm m.2 nvme+256gb SKHynix m.2 nvme /External +512gb Samsung m.2 sata+1tb Kingston m2.nvme
    PSU
    500w
    Case
    MT
    Cooling
    Dell Premium
    Keyboard
    Logitech wired
    Mouse
    Logitech wireless
    Internet Speed
    so slow I'm too embarrassed to tell
    Browser
    Firefox
    Antivirus
    Defender+MWB Premium
  • Operating System
    Windows 10 Pro 22H2 19045.3930
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 9020
    CPU
    i7-4770
    Memory
    24 gb
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    256 gb Toshiba BG4 M.2 NVE SSB and 1 tb hdd
    PSU
    500w
    Case
    MT
    Cooling
    Dell factory
    Mouse
    Logitech wireless
    Keyboard
    Logitech wired
    Internet Speed
    still not telling
    Browser
    Firefox
    Antivirus
    Defender+MWB Premium
I don't want to step on any toes as I don't know the rules here on this forum about doing malware removal, etc. As long as it's not against any rules then post the logs from the Farbar program. FRST.txt and Addition.txt and I will review them for possible issues.

Again, if this is against the rules though please let me know someone. Thanks
 

My Computer

System One

  • OS
    Windows 10
    Computer type
    PC/Desktop
    Manufacturer/Model
    MSI Custom build
    CPU
    Intel i9-9900K
    Motherboard
    MSI MPG Z390 Gaming Edge AC
    Memory
    64GB
    Graphics Card(s)
    EVGA GeForce GTX 1070 TI
    Internet Speed
    1 Gbps
    Browser
    Firefox
    Antivirus
    Malwarebytes
Jrt was great but its part of AdwCleaner now.
 

My Computer

System One

  • OS
    11
    Computer type
    PC/Desktop
    Manufacturer/Model
    Custom
    CPU
    10700k@5.2
    Motherboard
    Gigabyte Gaming X Z490
    Memory
    Viper Steelseries 32gb@ 3600mhz
    Graphics Card(s)
    Gigabyte 2070 Super 8GB, +200 core + 600 memory
    Monitor(s) Displays
    ASUS 4k HDR, Two 1080p Benq and Samsung
    Screen Resolution
    3840x2160/2560x1440/1920x1080
    Hard Drives
    Adata XPG SX8200 PRO 1tb
    Samsung EVO 870 500GB
    PSU
    Corsair RX 650
    Case
    NZXT h510
    Cooling
    CM HYPER 212 RGB
    Keyboard
    Razer Ornata Chroma
    Mouse
    Steelseries Rival 710
No, new system like less than a month old. Seems better now with the Auto Run tool disabled. Maybe MS knows about it and will fix it in an update.
Frankly if that new, I would just clean install from scratch if you suspect you have a virus.
 

My Computer

System One

  • OS
    Windows 10 Pro + others in VHDs
    Computer type
    Laptop
    Manufacturer/Model
    ASUS Vivobook 14
    CPU
    I7
    Motherboard
    Yep, Laptop has one.
    Memory
    16 GB
    Graphics Card(s)
    Integrated Intel Iris XE
    Sound Card
    Realtek built in
    Monitor(s) Displays
    N/A
    Screen Resolution
    1920x1080
    Hard Drives
    1 TB Optane NVME SSD, 1 TB NVME SSD
    PSU
    Yep, got one
    Case
    Yep, got one
    Cooling
    Stella Artois
    Keyboard
    Built in
    Mouse
    Bluetooth , wired
    Internet Speed
    72 Mb/s :-(
    Browser
    Edge mostly
    Antivirus
    Defender
    Other Info
    TPM 2.0

My Computers

System One System Two

  • OS
    Windows 11 Pro 23H2 22631.3880
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 7080
    CPU
    i9-10900 10 core 20 threads
    Motherboard
    DELL 0J37VM
    Memory
    32 gb
    Graphics Card(s)
    none-Intel UHD Graphics 630
    Sound Card
    Integrated Realtek
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    1tb Solidigm m.2 nvme+256gb SKHynix m.2 nvme /External +512gb Samsung m.2 sata+1tb Kingston m2.nvme
    PSU
    500w
    Case
    MT
    Cooling
    Dell Premium
    Keyboard
    Logitech wired
    Mouse
    Logitech wireless
    Internet Speed
    so slow I'm too embarrassed to tell
    Browser
    Firefox
    Antivirus
    Defender+MWB Premium
  • Operating System
    Windows 10 Pro 22H2 19045.3930
    Computer type
    PC/Desktop
    Manufacturer/Model
    Dell Optiplex 9020
    CPU
    i7-4770
    Memory
    24 gb
    Monitor(s) Displays
    Benq 27
    Screen Resolution
    2560x1440
    Hard Drives
    256 gb Toshiba BG4 M.2 NVE SSB and 1 tb hdd
    PSU
    500w
    Case
    MT
    Cooling
    Dell factory
    Mouse
    Logitech wireless
    Keyboard
    Logitech wired
    Internet Speed
    still not telling
    Browser
    Firefox
    Antivirus
    Defender+MWB Premium

Latest Support Threads

Latest Tutorials

Back
Top Bottom