atcomsystems.ca/forum Forums Computers & Programming Computers, Software, Accessories Anybody good with viruses?

A buddy of mine asked me to look at his computer today. Looks like it's completely hosed. It takes about 10 minutes (of a blank screen) after turning on to get to the win XP boot screen when it seems to boot normally. Then you get the "your computer is infected" pop ups which you initially can close. After awhile things start to escalate- more stuff going on, can't close the pop-ups, a whole string of Windows security allert icons going up and down the task bar. Then it gets really pissed off and takes you to a Viagra site. When I try to bring up the task manager or even Windows explorer it won't let you so there's no chance of downloading any scans.

I'm thinking of taking the HD out (and burning it), replacing it and doing a fresh WinXP install but I'm open to suggestions. This guy has virtually nothing on this machine and just uses it for the internet (with Firefox).

-Hal

If he has nothing of real value on it I'd do exactly what you're thinking of doing. Depending on the age of the drive replacing it might be overkill. Get that guy some good virus protection. I run into more and more people that click on the OK button of those popups that say "Your computer is infected." Big mistake.

Try starting the PC in safe mode (To enter safemode hold/tap your F8 key after the BIOS have loaded.) and download and install Malware Bytes, Should detect whatever it is you've caught there. Run it in safe mode, Let it finish then reboot again and run it as soon as the pc starts. That should atleast take care of the main program that seems to be freezing you up after so long, From there its just a series of different scanners and scans.

Just keep in mind that all different detection programs find/dont find different trojans/spyware/malware/etc, etc.

Though if its really easy to just format your Harddrive and you have nothing to really "loose", That might be your easiest route.

Malware Bytes - https://www.malwarebytes.org/

Edit: I forgot to tell you, alot of newer pain in the arse spyware/viruses and whatnot like to stop particular .exe's from starting, Such as malware bytes and other detection programs. If this happens just rename the main .exe to something different, If it still dosent let you start it put the whole program on a flash drive and run it from there.

When I saw this title, I was going to recommend the exact same thing. Had a weird virus issue on my parents' computer. I used Malwarebytes and it took care of the problem!

Depending on the severity of infection many malware and virus programs may not even be able to launch even in safe mode. With little to nothing on the PC Hal would probably save time by trashing the original OS and starting out fresh.

Concur 150% with Cable's advice. I'd run Malware bytes multiple times, in full scan mode until it stops finding things. I recently salvaged an OS using it, but it took 3 scans before all the malware was removed. Then I ran the installed anti virus software, which found another 8 viruses.

Having said all that, if there is nothing on it of value, a format/reinstall is usually my preferred option. Problem there is once you do that, then you're gonna have to (maybe) deal with questions about where everything went, why the desktop looks different, etc. etc.

I know people say they have nothing of value on their machines, but 60% of the time they don't realize they did have something until it's too late. At least that's been my experience.

Of course then again there is always the problem of people saying they have files they want to keep, so you ask them where the files are stored, and then you get the blank stare.

Meh... after thinking it over: Format it. Especially if you have an install CD with the latest SP on it.

One other thing that I'm sure you're aware of - if you are formatting using a vanilla XP CD, try using safe mode to determine the mfr of the network card. If there is no card, then make sure you know who makes the motherboard. XP has the required network drivers 98% of the time, but it's a real hassle after a format to find out XP doesn't recognize the network card or motherboard ethernet port.

I'm familiar with Malware bytes. I'll give it a try using cable's advice but I have little hope.

I know people say they have nothing of value on their machines, but 60% of the time they don't realize they did have something until it's too late. At least that's been my experience.

Yeah well you know what? Too bad, maybe now they will learn. Stop visiting the Blond Sluts and Barnyard Animals site! This is an ongoing problem with these guys.

-Hal

One other thing real quick.... whenever I get the "your computer is infected" pop up, I use task manager to kill the IE session. I don't think it makes any difference if you hit yes, no, ok, cancel, or even the X.

Once you click anything on the popup, malware installation begins.

Yeah well you know what? Too bad, maybe now they will learn. Stop visiting the Blond Sluts and Barnyard Animals site! This is an ongoing problem with these guys.

Exactly so. Was gonna say the same thing myself. But they never learn... and the biggest problem is once you fix someone's PC, it seems like you become the default helpdesk for them.

Ditto.........bingo. There is the problem.