+- Twitist Forums (http://twitist.com)
+-- Forum: Facebook forums (/forum-14.html)
+--- Forum: Facebook apps (/forum-22.html)
+--- Thread: What's a good way to remove a computer virus you got from facebook? (/thread-69521.html)
What's a good way to remove a computer virus you got from facebook? - Leigh - 04-30-2013 12:14 AM
I computer caught a virus from a shady link one of my friends "posted" on Facebook. I have both microsoft security essentials and malyarebites. They are both detecting the virus but neither one of them are succeeding in removing it. What should I do to remove the virus?
- Casca Longinus - 04-30-2013 12:19 AM
You need to run rkill to properly remove the malware. Read the description to see why:
http://www.bleepingcomputer.com/download/anti-virus/rkill
After rkill has run successfully, update, and run a full scan with MalwareBytes, and then your AV. They should now be able to be removed.
- man named Tabitha - 04-30-2013 12:33 AM
stay off facebook thats how i get virus 2 you have facebook do that you may have to sue then
- Gloria - 04-30-2013 12:38 AM
Ugh, this is usually a koobface which is an anagram for Facebook.. Use Malwarebytes, It wouldnt let me show you all the koobface's but all the files infected and I think 1 folder was infected with koobface so thats 87 KOOBFACES!!
Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 10
Registry Values Infected: 3
Registry Data Items Infected: 0
Folders Infected: 13
Files Infected: 86
Registry Keys Infected:
Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\sysfbtray (Worm.KoobFace) -> Quarantined and deleted successfully.
Files Infected:
C:\Users\Bernadette\Local Settings\Application Data\04855511005551.xxe (Worm.KoobFace) -> Quarantined and deleted successfully.
C:\Users\Bernadette\Local Settings\Application Data\05010255539799.xxe (Worm.KoobFace) -> Quarantined and deleted successfully.
C:\Users\Bernadette\Local Settings\Application Data\0505448994955.xxe (Worm.KoobFace) -> Quarantined and deleted successfully.
They offer a trial of the free version so use it and run a full, quick and flash scan!!!
- Sp33dy - 04-30-2013 12:44 AM
chances are that it's not a FB virus, FB uses 3rd party apps and most of them have viruses. don't use any apps on FB and u won't get any viruses from it... but if you need to remove this virus, you can run certain tools that can do it for you but may cost to use... or you can take note of what the virus is called and search for it in the file system and in the registry. you have to remove it from both places, but it will be in your registry multiple times, so maybe google it to find out what places it hides in the registry and delete all entries... you may have to remove it in safe mode (F8 during post-boot).
good luck and stay off the apps and links within social sites you use.