getting rid of viruses

mitmaks · Post by **mitmaks** » March 7th, 2009, 4:20 pm

So I got virus/spyware on my comp last night, it will not run some programs, won't let me open some folders etc. Ive run Spybot several times and Ad-aware. Now Ive downloaded trend micro, but it wants to uninstall spybot before it installs itself. Should I go ahead and go for it? This just ruins my day.

mitmaks · Post by **mitmaks** » March 8th, 2009, 3:41 pm

just ran chkdsk and ad-aware, deleted some bugs. Still won't let me load a few programs/open folders

Ryan · Post by **Ryan** » March 8th, 2009, 5:41 pm

This calls for the ultimate MX nerds!

(enter SuperK and friends)

Flyer · Post by **Flyer** » March 8th, 2009, 5:59 pm

Get Avira AntiVir and A-squared...

Evo_Spec · Post by **Evo_Spec** » March 8th, 2009, 6:05 pm

reformat =P

mitmaks · Post by **mitmaks** » March 8th, 2009, 6:12 pm

Evo_Spec wrote:reformat =P

Ya, except I don't have boot disc.

Evo_Spec · Post by **Evo_Spec** » March 8th, 2009, 6:15 pm

that my friend is what the internet was made for

mitmaks · Post by **mitmaks** » March 8th, 2009, 6:18 pm

Evo_Spec wrote:that my friend is what the internet was made for

I don't have xp disc, how do I format without it?

Evo_Spec · Post by **Evo_Spec** » March 8th, 2009, 6:30 pm

do you have internet? do you have a blank cd? do you have a cd burner?
all these things added can make a xp disc

mitmaks · Post by **mitmaks** » March 8th, 2009, 8:07 pm

Evo_Spec wrote:do you have internet? do you have a blank cd? do you have a cd burner?
all these things added can make a xp disc

cd burner doesn't work, driver must've got erased so CD burner doesn't respond.

Nd4SpdSe · Post by **Nd4SpdSe** » March 9th, 2009, 1:36 pm

Download the Trend Micro SysClean Utility and the latest Virus pattern file and Spyware Cleanup:

http://www.trendmicro.com/ftp/products/tsc/sysclean.com
http://www.trendmicro.com/ftp/products/ ... lpt885.zip
http://www.trendmicro.com/ftp/products/ ... a6_743.zip

Extract the pattern file into a new folder, ideally on the root of C:\, and put the Sysclean.com and ssapiptn.da6 files in that folder as well.

Rename ssapiptn.da6 to ssapiptn.da5

You can do the scan in Normal mode, but I would only recommend to do in Safe Mode because if the files/virus/spyware is active, it can't clean or delete it. This however takes a long time, usually an hour or longer, so be prepared to not use the computer, ideally when away for a while or overnight if you don't get the chance. Part of the reason on why it's this slow is partially because when in Safe Mode, it's using the generic drivers, so your HDD performance is reduced significantly. The other part is that it's a VERY thorough scan.

If that doesn't clean the virus, really the only other option is to get a specific cleaner for a specific virus, or manually clean it.

For spyware, I've never done it this way, but I've found Malwarebytes' (http://www.malwarebytes.org) utility works very well at cleaning them

Nd4SpdSe · Post by **Nd4SpdSe** » March 10th, 2009, 11:47 pm

Any luck?

SuperK · Post by **SuperK** » March 11th, 2009, 5:58 am

mitmaks,

I can send you an XP cd for you.

Let me know if you want it.

Reason why I suggest this route is because usually when you're disallowed access, often it's a combination of corrupted data conjoined with the virus/trojan creating their own "policies" and restricting access.

While it's not completely irreversible, it's tons easier reformatting.

I can send you a CD that you don't have to put in the XP code or anything. It'll also look nice, and be faster than a stock XP installation.

mitmaks · Post by **mitmaks** » March 11th, 2009, 4:34 pm

Nd4SpdSe wrote:Download the Trend Micro SysClean Utility and the latest Virus pattern file and Spyware Cleanup:

http://www.trendmicro.com/ftp/products/tsc/sysclean.com
http://www.trendmicro.com/ftp/products/ ... lpt885.zip
http://www.trendmicro.com/ftp/products/ ... a6_743.zip

Extract the pattern file into a new folder, ideally on the root of C:\, and put the Sysclean.com and ssapiptn.da6 files in that folder as well.

Rename ssapiptn.da6 to ssapiptn.da5

You can do the scan in Normal mode, but I would only recommend to do in Safe Mode because if the files/virus/spyware is active, it can't clean or delete it. This however takes a long time, usually an hour or longer, so be prepared to not use the computer, ideally when away for a while or overnight if you don't get the chance. Part of the reason on why it's this slow is partially because when in Safe Mode, it's using the generic drivers, so your HDD performance is reduced significantly. The other part is that it's a VERY thorough scan.

If that doesn't clean the virus, really the only other option is to get a specific cleaner for a specific virus, or manually clean it.

For spyware, I've never done it this way, but I've found Malwarebytes' (http://www.malwarebytes.org) utility works very well at cleaning them

Did that and now I have a blank screen

I'm SOL. I guess I'll take it to my cousin to get it reformatted or something.

Nd4SpdSe · Post by **Nd4SpdSe** » March 11th, 2009, 8:36 pm

mitmaks wrote:Did that and now I have a blank screen I'm SOL. I guess I'll take it to my cousin to get it reformatted or something.

Well that's new. I've used that scan probably a good hundred times. I've never seen that happen, but I would suspect that a windows critical file was infected, couldn't be cleaned and was deleted, causing it to not boot.

You're still getting the post/bios screen right? If you're getting nothing, not even a post screen, than you've got a hardware issue...

MX-3.com

getting rid of viruses

getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses

Re: getting rid of viruses