Okay so, around about 3:30 PM GMT on Wednesday, I was browsing around on the TF2 Steam Forums using Google Chrome. After opening up an image linked by the forums I suddenly get a ton of "Anti Virus" program popups that I've never even heard of before. One of them I'm sure of being AntiMalware Doctor and possibly security suite. (Many popped up.) What doesn't help is that I never got to close my 3 browsers: Google Chrome, Safari and Mozilla Firefox to save the Histories/Multiple open Tabs/Sessions. I don't know if any of these tabs in the three browsers were redirected to a virus holding site, as it would have been hard to notice.
After these popups appeared, I was flung into a paniced state, I was about to ctrl + alt + delete to kill off the processes but before I could do this, the whole PC just locked up. With no choice availble, and knowing restarting would make things a hundred times worse, I still had to do it with no other option, waiting for a bit I got to the normal Windows 7 logon screens, hoping it wouldn't be as bad as I initially thought. Obviously I was too optimistic, logging on in normal mode works for as long as between the times of 30 seconds to instantlly BSODing with an error message involving: iastorv.sys. Things like "Page not equal" and such.
To post this currently, I'm on a latptop with Internet Access.
Infected PC Wise: I've been able to login using Safe Mode with Command Prompt using a different account, launching Explorer (not Internet Explorer) and then using this to manually backup individual files. I know these backups might become infected, but the problem I have is that I've yet to make a backup in quite a while, meaning I'd like to avoid losing any data if possible. Especially with the (hopefully) partially stored browser sessions if I can restore them. Additionally I cannot use any software like XMLDriveImage since this program/service cannot/doesn't operate within Safe Mode.
I use a setup of hard drives:
C: A single SSD disc with 6.58 GB free of 119GB capacity, which was in use/where Windows 7 is installed, when the infection happened.
D: A setup of 4 Hard drives in RAID 0+1, 1.24TB is free of 1.81TB
O: Empty External drive with 931 GB capacity which I'm using to manually backup files via copy and paste. (Can't think of a better method.) However this backup is FAR from reasurring, obviously the largest problem being the backups becoming infected, and secondly I cannot copy 600GB+ worth of data via Copy and Paste. Especially when dealing with files that are in use with Windows, like TMP, and system files etc.
I don't have any anti-virus installed, not that it's a plus, but at least it will prevent any conflicts between programs if I recieve help trying to solve this I guess.
What I've tried so far: Before coming to realize this would not be a quick fix at all, I searched around and tried burning TDSSKiller.exe to a disc, then running it. The good/bad news is, it picked up an entry. However trying to run other programs like RKill and Malware AntiBtyes (MBAM) instantly BSODs my PC with the same error message as the initial problem. As I said, I have no anti-virus currently running, so I'm kind of getting stuck with what to do next.
If I could get someone to help me with this, and to "hold my hand" through the guides so to speak, you wouldn't know how grateful I'd be. I've experienced mild viruses on old computers before, but never one which could cause a BSOD and damage like this. I also have approaching deadlines for assignments in the next few weeks, so trying to get my PC back to normal, as soon as possible is really important for me at the moment.
I really don't want to have to resort to losing data or even worse, reformating due to the lack of a backup, I know it's my fault, but I really don't want to perform any risky procedures which could kill off my data. Hence why I'm asking the pros.
Edited by Infi, 13 February 2011 - 10:30 AM.