So short summary is I got careless and accidentally got myself a trojan that gives the attacker remote access as well as command line execution.
Soon after getting the virus, I disconnect my internet by pulling out my ethernet cable (to prevent remote access) while using my phone to try and procure solutions.
The malware started to infect my other files, which when I tried to remove via windows defender which received a “Remediation incomplete” message – in the details section, it notes that the Status: Abandoned, or Status: Failed. I promptly deleted all the infected files manually (fortunately weren’t of huge importance) which seemed to work, as windows detected my actions as having the “Threat removed or restored”.
Quick rundown of the tools I used.
Rkill, MSERT, adwcleaner / Malwarebytes, tdssKiller, Windows Defender.
I had to reconnect my internet to download the above software. The malware was detected under several names by windows defender including:
All of the above software no longer detect any malware on my system, but how sure can I be that there’s nothing left? (Also it’s been 4 days since the initial infection but nothing strange has happened yet, although I understand that certain malware can remain undetected for years).