Magical Sailor Fuku

It seems to have lost the ability to function to operate outside of safe mode. This afternoon, I was on the comp, when my antivirus told me that I had a virus. I ran the scan, it found it, and it told me to restart to remove it.

Unfortunately, since that point at 4:00, my computer has been...sick. It has to be in safe mode not to freeze. I've run virus scans, de-frags, disk cleanup, system restore. Anyone have any ideas that might fix it?

Hmm, it's a bit harder to remove the virus by your own.

Run in normal mode, in the process list (ctrl+alt+del) search for anything unusual, any process consuming 100% while you are not using anything, any program running as the user account (not system account) is a good candidate for being the virus. Stop every process you can.

If you find a process that starts again and again and again after you stop it, that's the virus.

Write down the name and go to the register.

And start the regedit.
start > run... : regedit

Edit > Search... (or F3)
Type the name of the program you think it may be the virus and proceed to...

f3, identify line that contains the program, delete line. Repeat.

Until you finish. Restart the pc and if the virus is still there...

Start windows in safe mode.

Repeat search and destroy in the regedit.

But, I've run virus scans and they say there are no viruses. Unless maybe the one from earlier eluded it. Could that happen?

Viruses can be elusive; if it was there, it isn't just going to disappear.

Well, I found something called dlllhost, or something like that, that was at a really high number. I ended it, and am now in my normal mode. Could that have been the virus?

Shadowmaster wrote:Well, I found something called dlllhost, or something like that, that was at a really high number. I ended it, and am now in my normal mode. Could that have been the virus?

Probably. Your pc is better, right?.

Make sure you use the search and destroy method I gave you to stop further execusion.

If you want you can even track where the file is (before eliminating entries in the registry) and delete it from the hard disk.

Yes, it is working better. I owe you one, Beyond. You saved my compy's life.

You could try my patent virus removal method. Do a search from start menu, and search for "" (nothing). Sort files by date modified, and find all (executable files)/(other suspects) created around the time you noticed problems. Delete them with a fiery passion.