here's my problem:-
a couple of days ago someone dropped a pc off for repair with a virus on it and i dont have any idea the name of the virus only that when the pc is booted all is in working order until windows loaded then all icons on desktop disappear and neither mouse clicks work, no start menu or tool bar.
the person who's pc it is said the problems started after downloading limewire which was of no shock to me as we all know about the problems it can cause with malware etc.
this person needed there pc bk pretty fast for college work or what ever and luckily for them all there work was saved anyway so easy enough just linked it up to my network to see if i could remove the virus then thought forget this just format and reload xp to save time.
now my problem is the virus has reached 1 of my other pc's on my network which isnt any problem but i would like to bew able to get into the system if possible and remove it without reformat etc.
i have tried rebooting in safe mode etc and get the same effects
thanks guys
virus help needed
-
computathug
- Administrator
- Posts: 2693
- Joined: 29 Mar 2007, 16:00
- 17
- Location: UK
- Contact:
-
bad_brain
- Site Owner
- Posts: 11636
- Joined: 06 Apr 2005, 16:00
- 19
- Location: In your eye floaters.
- Contact:
hm, to boot a Linux live distro and remove the malware from there would be an option, but not in this case because without knowing what virus it is it's impossible to remove the right files.
if you have another PC you could connect the HDD of the infected box there and scan it with a good AV, but of course you would have to be very cautious to not infect that box too....so don't access the HDD directly and only use safe mode.
off-topic: check the chess thread
if you have another PC you could connect the HDD of the infected box there and scan it with a good AV, but of course you would have to be very cautious to not infect that box too....so don't access the HDD directly and only use safe mode.
off-topic: check the chess thread
-
Big-E
- Administrator
- Posts: 1332
- Joined: 16 May 2007, 16:00
- 16
- Location: IN UR ____ , ____ING UR _____ .
- Contact:
B_B's suggestion is probably the best bet, for my college dorm I was the network guy and I was responsible for removing virus' when a computer was infected. Luckily most people downloaded from the University network and rarely got virus', but there was a few times when MSN worms went around I was left with removal of the virus. I had two boxes set up in my room and one was d/c from the network anyway, so I always connected the HD from the computers into an external hard drive and attempted to remove them this way. I found this was a better process as when you boot off the hard drive the virus' is often hidden. Anyway, best of luck with that. Oh yeah, I used the following for virus removal
Kaspersky - http://www.kaspersky.com/
AVG Pro - http://www.grisoft.com/
AdAware Pro -http://www.lavasoftusa.com/software/ada ... fessional/
Spybot Search and Destroy - http://www.safer-networking.org/
Hijackthis - http://www.merijn.org/index.php
The ones that where expensive where purchased for my through the University IT department.
Basically, I didn't always use all of them on the same machine but if it was bad enough I ran them all and had great success. Some find some things better where others don't work so well. If each of those where a venn diagram, they would cover a large portion of all malware/virus/spyware infections.
Kaspersky - http://www.kaspersky.com/
AVG Pro - http://www.grisoft.com/
AdAware Pro -http://www.lavasoftusa.com/software/ada ... fessional/
Spybot Search and Destroy - http://www.safer-networking.org/
Hijackthis - http://www.merijn.org/index.php
The ones that where expensive where purchased for my through the University IT department.
Basically, I didn't always use all of them on the same machine but if it was bad enough I ran them all and had great success. Some find some things better where others don't work so well. If each of those where a venn diagram, they would cover a large portion of all malware/virus/spyware infections.-
computathug
- Administrator
- Posts: 2693
- Joined: 29 Mar 2007, 16:00
- 17
- Location: UK
- Contact:
yes neo and this is a function the pc will let me do but i cannot access any thing else. i have checked processes and have found nothing unfamilliarneo130 wrote:Have you tried reaching the taskmanager with CTRL+ALT+DEL ?
also to big -e i always use spybot, adaware, advance windows care, hijack this, zonealrm firewall and avg but looks like this 1 is goin to get the better of me and just redo the pc.
if it was on a different pc in the house i would leave it there till i found a solution but as its my main pc im going to forget it for now but thanks any way guys
Well... when you tried safe mode, did you see anything at the bottom that said "Loading *****.sys press esc to cancel"? If that's the case, it's probably the virus integrating itself into safe mode. Also, try and see if you can find an antivirus that boots off of a cd, i found one before but i can't remember.. sorry.
¯\_(ツ)_/¯ It works on my machine...
-
bad_brain
- Site Owner
- Posts: 11636
- Joined: 06 Apr 2005, 16:00
- 19
- Location: In your eye floaters.
- Contact:
the Inside Security Rescue Toolkit (INSERT) is a Linux live distro specialized for virus removal (full write support for NTFS), it's based on Knoppix and uses Clam Antivirus:
http://www.inside-security.de/INSERT_en.html
http://www.inside-security.de/INSERT_en.html
-
mystikblaze
- Infinite Haze
- Posts: 334
- Joined: 11 Jun 2005, 16:00
- 18
- Location: abroad
- Contact:
..
Last edited by mystikblaze on 21 Jun 2009, 08:15, edited 1 time in total.
Any fool can count the seeds in an apple. Only God can count all the apples in one seed. ~Robert H. Schuller
God is the greatest.
God is the greatest.