How Do I Remove A Virus That Hides My C: and D: Drives…?
Monday, May 24th, 2010 at
10:55 pm
My Computer is infected with a virus that I dont know about but what I know is that it hid my C: and D: drives. And a pop-up always appears and it directs me to a site which Pc-Cillin blocks. How do I remove it? Can AVG find and delete this virus? Please help..
Tagged with: cillin • pc cillin • Virus
Filed under: Remove Computer Viruses
Like this post? Subscribe to my RSS feed and get loads more!
Download, install and run CCleaner to clean up old temp files.
http://www.ccleaner.com [Free]
Restart your PC in safe mode with networking
http://www.pchell.com/support/safemode.shtml
Download, install and run a full scan with Malwarebytes
http://www.malwarebytes.org
Run a full scan with Micro Trend House Call
http://housecall.trendmicro.com/
After the scans, restart the PC and download SuperAntiSpyware and run a full scan
http://www.superantispyware.com/superantispywarefreevspro.html [Free home edition]
Then update your anti-virus, remember to only have one anti-virus installed on your PC
http://www.avast.com/eng/download-avast-home.html [Free, if you do not have one]
You can try System Restore:
1.Click Start.
2.Point to All Programs.
3.Point to Accessories.
4.Point to System Tools.
5.Click System Restore.
6.Follow the instructions on the wizard.
The virus added a key to your registry. Copy this below and put it into a text file. Rename the text file extension to .reg and run it. It’ll fix your drives not showing up. You’ll still have to find a way to fight the virus (try running AVG in safe mode)
Copy and paste all that follows. Keep everything from "[HKEY" to "Explorer]" on one line.
REGEDIT4
[HKEY_CURRENT_USER\Software\
Microsoft\Windows\
CurrentVersion\
Policies\Explorer]
"NoDrives"=dword:00000000
Start your computer in safe mode and run your av. Then do a System Restore to a date prior to the infection.
go into safemode by rebooting and tapping the F8 key at same time then choose safemode with networking open your browser and go to safety.live.com this is microsofts safety scanner choose protection scan be patient as this is a large download when finished try the other scans offered…you can also use Housecall.TrendMicro.com or Sophos.com or F-Secure.com
Try one This Then scan with the following free programs:
Malwarebytes Anti-Malware:
http://www.download.com/Malwarebytes-Ant...
Download, install, update and select Full Scan.
Remove all infections that it finds after scan.
SUPERAntiSpyware Free Edition:
http://www.download.com/SUPERAntiSpyware...
Download, install, check for updates, then select Scan your Computer, select your drive and select Perform Complete Scan
The virus change the windows group policy
Start -> run -> type gpedit.msc.
Look through the setting and change all the setting to Not configured
This will undo the damages by the virus.
Go to another PC and download Clamwin portable anti-virus program.
http://portableapps.com/apps/utilities/clamwin_portable
Document on how to configure ClamWin
http://support.real-time.com/open-source/clamwin/index.html
1) Install the Clamwin portable anti-virus program on an USB pen drive.
2) Update the anti-virus definition files.
3) Set the preference to remove virus.
4) Take this USB pen drive to your infected PC.
5) Boot up your infected PC in safe mode by pressing F8 during start up.
6) Plug in the USB pen drive and run Clamwin anti-virus program.
7) Scan all your drives for viruses.