Rudeboy2025 Posted June 19, 2005 Share Posted June 19, 2005 My friend was checking email on my computer and got an email from his university so he decided to downlaod the attachment and turns out it was a freaking virus. That was about a week ago. I haven't relaly used that comp. Seems that I can't open the Task Manager and can't open Mcafee. So should I downlaod a new antivirus or use a avg or something which allows to scan while you are on the website? Any help will be appreciated. Link to comment Share on other sites More sharing options...
Administrator Lite Posted June 19, 2005 Administrator Share Posted June 19, 2005 Post a hijack this! log below. Link to comment Share on other sites More sharing options...
Samurai Posted June 19, 2005 Share Posted June 19, 2005 Could always try rebooting into Safe Mode and seeing if you can access your AV from there. Link to comment Share on other sites More sharing options...
Rudeboy2025 Posted June 19, 2005 Author Share Posted June 19, 2005 Tried doing it in safe mode but didn't work. Whats a hijack this! log? Link to comment Share on other sites More sharing options...
Chicano666 Posted June 19, 2005 Share Posted June 19, 2005 Tried doing it in safe mode but didn't work. Whats a hijack this! log?Get HJT (Hi Jack This), run it and post the results (or log) it gives. Link to comment Share on other sites More sharing options...
Zeus_Hunt Posted June 20, 2005 Share Posted June 20, 2005 use Antivirus Boot Diskmost antivirus programs allow u to create 1 so create it from a good system and then use that disk to boot on the infected system... Link to comment Share on other sites More sharing options...
Administrator Lite Posted June 20, 2005 Administrator Share Posted June 20, 2005 Get HJT (Hi Jack This), run it and post the results (or log) it gives.But extract it to a directory like d:\hjt . Dont run it from your desktop :huh: Link to comment Share on other sites More sharing options...
Chicano666 Posted June 20, 2005 Share Posted June 20, 2005 But extract it to a directory like d:\hjt . Dont run it from your desktop :PThx for the tip ;) Link to comment Share on other sites More sharing options...
Rudeboy2025 Posted June 20, 2005 Author Share Posted June 20, 2005 Thanx for the suggestions, I'll post the log once I use the program on the infected computer. Link to comment Share on other sites More sharing options...
Rudeboy2025 Posted July 23, 2005 Author Share Posted July 23, 2005 I have my computer packed up so I never got the chance to do the hijack this thing but i had an idea. Would System Restore work? Link to comment Share on other sites More sharing options...
nsane Posted July 23, 2005 Share Posted July 23, 2005 if you feel like losing all the data between now and then (and i mean ALL) :lol:better go get some CDRs ;) Link to comment Share on other sites More sharing options...
Administrator Lite Posted July 23, 2005 Administrator Share Posted July 23, 2005 Incorrect nsane.System restore will ONLY restore EXECUTABLE files, not others.But in this case rudeboy.... you havent a chance as most viruses will stop system restore from working. Link to comment Share on other sites More sharing options...
Rudeboy2025 Posted July 23, 2005 Author Share Posted July 23, 2005 I do know after reading articles that this virus stops your antivirus program from working. I have no clue what to do but after I have comp unpacked (which won't be soon) I wil try crap on it. Link to comment Share on other sites More sharing options...
Zeus_Hunt Posted July 23, 2005 Share Posted July 23, 2005 Incorrect nsane.System restore will ONLY restore EXECUTABLE files, not others.But in this case rudeboy.... you havent a chance as most viruses will stop system restore from working.Incorrect Lite.System restore will ONLY restore Registry entries, and not touch any files at all....After the System restore, u would find all the files on ur system...just that some applications would not work (the ones installed after the restore point) as they do not have any resistry entry....Systsem restore will serve no purpose for any virus iss.....Clean reinstall is the best way... Link to comment Share on other sites More sharing options...
Administrator Lite Posted July 24, 2005 Administrator Share Posted July 24, 2005 @zeusHeres some more details:What's Restored:RegistryProfiles (local only—roaming user profiles not impacted by restore)COM+ DBWFP.dll cacheWMI DBIIS MetabaseFiles with extensions listed in the portion of the Monitored File Extensions list in the System Restore section of the Platform SDK Not Restored:DRM settingsSAM hives (does not restore passwords)WPA settings (Windows authentication information is not restored)Specific directories/files listed in the Monitored File Extensions list in the System Restore section of the Platform SDKAny file with an extension not listed as in the Monitored File Extensions list in the System Restore section of the Platform SDK Items listed in both Filesnottobackup and KeysnottoRestore (hklm->system->controlset001->control->backuprestore->filesnottobackup and keysnottorestore) User-created data stored in the user profileContents of redirected foldersMonitored File Extensions:See here (to long to list here)All info comes direct from MSDNPeace out.... :lol:@rudeboy, do you have the name of the virus? Link to comment Share on other sites More sharing options...
Rudeboy2025 Posted July 26, 2005 Author Share Posted July 26, 2005 @Lite: I don't but I'll try to find it out. In an article I read about this article. It prevents Antivirus programs from working. And on my comp when I last tried it it also prevented me from using CTRL+ALT+DELETE. I was looking through my CD's and I found Norton Antivirus Pro - 2004 on a CD. Wondering if it would work to get rid of the virus or it would prevent that from working too. Link to comment Share on other sites More sharing options...
Administrator Lite Posted July 27, 2005 Administrator Share Posted July 27, 2005 You should be able to run online malware scanners and/or some alternate on-demand scanners. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.