Windows 10: Malware recovery

I have a windows 10 pc that was infected by malware, a full scan by windows defender deleted the malware however I still have new tabs spawning in chrome on virtually any action taken in chrome. I have reinstalled chrome to no avail. Other browsers are unaffected. Any ideas on how to fix this. Any tutorials on how to manually detect malware. I am an advanced Linux user however I have virtually no windows experience since 98 but am comfortable with regedit and command prompt.

:)

 

system recovery

My computer was hacked. will a system recovery guarantee that no malware was left on my machine?

 

Trojan:Win32/Dynamer!ac Malware or false positive?

[Revised content]

I shouldn’t have implied that all recovery partitions are designed to resist malware, because some of them might not be. This doesn’t affect the overall argument, though, because the chances of having a malware executable dropped into the recovery
partition are extremely remote, and because excluding files or folders residing on a recovery drive that isn’t protected will still leave the entire system drive fully protected by the AV’s on-access scanner
– so there’s no way that a recovery partition is going to be turned into some kind of safe haven where malware can set up shop and operate with impunity.

I think it’s more probable, although still not likely, that system-based malware might damage the contents of a recovery partition or even encrypt it. But what sense does it make to remove something that might prove useful as a fallback for an upgrade
that's later discovered to be faulty or unwanted just because there’s a remote possibility that it might eventually get infected or damaged?

[End revision]

There isn’t really a whole lot of malware out there that actually targets the recovery partition – because the primary objective is always taking control of the OS itself and that can usually be done more effectively by installing to the system drive.

Conventional malware installs an executable and a startup entry on the
system drive. Rootkits install a kernel-mode driver that allows them to manipulate the
system from within. And bootkits either overwrite the MBR in order to subvert the boot chain and take control of the
system before it gets started – or modify the partition table in order to create a bootable partition that's used to subvert the Windows bootloader. So with the vast majority of malware infections, the recovery partition
is left intact.

My machines are actually hard to upgrade because there aren’t any Windows 10 drivers that will work with the old hardware – so I don’t think a clean install would solve the problem.

And there is no issue here that needs to be solved by removing the recovery partition. The Trojan:Win32/Dynamer!ac detection is harmless, and the recovery partition isn’t the malware magnet that you’re making it out to be. But I’m done here, so you
can have the last word.

 

Hi.
I would download and run Malwarebytes Antimalware Free (update the virus definitions first). Then I would perform a reset on the browser.

 

Do other sweeps with RogueKiller and AdwCleaner too. Just to be on the safe side.

 

Hello Astutens:

I would add that in addition to the fine advice above, download/execute:

Malwarebytes Junkware Removal Tool (JRT)

and remember to do a system restart after its completion.

Thank you.

 

I recommend SUPERAntiSpyware also.