Overclock.net › Forums › Software, Programming and Coding › Networking & Security › How can I get rid of this nasty virus?
New Posts  All Forums:Forum Nav:

How can I get rid of this nasty virus? - Page 4

post #31 of 85
Best to remove the HDD, connect it to another computer and run Microsoft Security Essentials (free download) scan on it. I always clean infected HDDs from another PC running anti-virus software. Most HDDs do not get cleaned properly while they're being used as the boot OS drive.
     
CPUMotherboardGraphicsRAM
7700k Gigabye AORUS GA-Z270X Gaming 9 MSI Seahawk 1080Ti G.Skill Trident 3200 
Hard DriveHard DriveOSPower
Samsung EVO 960  Samsung EVO 950 Windows 10 Pro Corsair AX-1200 
Case
CaseLabs M8 
CPUMotherboardGraphicsRAM
Intel I7 860  Asus P7P55D-E Pro MSI ATI 6990 8gb G.Skill 1600 DDR3 (4x2Gb) 
RAMHard DriveHard DriveOptical Drive
G. Skill 1600 DDR3 OCZ Agility 2 120Gb  Seagate SATA Barracuda 160GB TSH663B DVD burner 
CoolingCoolingCoolingCooling
EK Supreme HF XSPC RC360 XSPC DDC Reservoir EK-FC6990 - EN (Nickel) 
OSMonitorKeyboardPower
Windows 10 64bit Pro Gateway FHX2300 Microsoft Wireless Multimedia V2 PC Power & Cooling Silencer 750 Quad 
CaseMouseAudio
Cooler Master HAF 932 Microsoft Wireless Optical Creative 5.1 
  hide details  
Reply
     
CPUMotherboardGraphicsRAM
7700k Gigabye AORUS GA-Z270X Gaming 9 MSI Seahawk 1080Ti G.Skill Trident 3200 
Hard DriveHard DriveOSPower
Samsung EVO 960  Samsung EVO 950 Windows 10 Pro Corsair AX-1200 
Case
CaseLabs M8 
CPUMotherboardGraphicsRAM
Intel I7 860  Asus P7P55D-E Pro MSI ATI 6990 8gb G.Skill 1600 DDR3 (4x2Gb) 
RAMHard DriveHard DriveOptical Drive
G. Skill 1600 DDR3 OCZ Agility 2 120Gb  Seagate SATA Barracuda 160GB TSH663B DVD burner 
CoolingCoolingCoolingCooling
EK Supreme HF XSPC RC360 XSPC DDC Reservoir EK-FC6990 - EN (Nickel) 
OSMonitorKeyboardPower
Windows 10 64bit Pro Gateway FHX2300 Microsoft Wireless Multimedia V2 PC Power & Cooling Silencer 750 Quad 
CaseMouseAudio
Cooler Master HAF 932 Microsoft Wireless Optical Creative 5.1 
  hide details  
Reply
post #32 of 85
Install Avast and do a boot-time scan, that way all the memory residents will be removed.
Mystery Machine
(15 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom X4 970 BE Gigabyte 990XA-UD3 MSI GTX460 Cyclone OC G.Skill RipjawsX 4GB 
Hard DriveOptical DriveCoolingOS
Kingston UV400 240GB+Seagate Barracuda 1TB+WD B... LG HL-DT-ST GH24NS72 lapped TRUE 120 Windows 7 Pro x64 
MonitorKeyboardPowerCase
BenQ G2220HD Razer Lycosa Mirror Corsair TX650 V2 Corsair Carbide 400R 
MouseMouse PadAudio
Razer Deathadder 3.5G Razer Goliathus Fragged Onboard 
  hide details  
Reply
Mystery Machine
(15 items)
 
  
CPUMotherboardGraphicsRAM
AMD Phenom X4 970 BE Gigabyte 990XA-UD3 MSI GTX460 Cyclone OC G.Skill RipjawsX 4GB 
Hard DriveOptical DriveCoolingOS
Kingston UV400 240GB+Seagate Barracuda 1TB+WD B... LG HL-DT-ST GH24NS72 lapped TRUE 120 Windows 7 Pro x64 
MonitorKeyboardPowerCase
BenQ G2220HD Razer Lycosa Mirror Corsair TX650 V2 Corsair Carbide 400R 
MouseMouse PadAudio
Razer Deathadder 3.5G Razer Goliathus Fragged Onboard 
  hide details  
Reply
post #33 of 85
Quote:
Originally Posted by ezveedub View Post
Best to remove the HDD, connect it to another computer and run Microsoft Security Essentials (free download) scan on it. I always clean infected HDDs from another PC running anti-virus software. Most HDDs do not get cleaned properly while they're being used as the boot OS drive.
Infect the other system via the lnk or autorun invulnerability

Quote:
Originally Posted by adizz View Post
Install Avast and do a boot-time scan, that way all the memory residents will be removed.
A av is a prevention not a cure. Use on a infected system. It will be killed by the malware
post #34 of 85
Just do a new install. DVD drives are cheap. Can buy them for under $15.
Why not take yours out, put into their system temporally.
    
CPUMotherboardGraphicsRAM
Intel 3770k @ 4.2Ghz Asus Z77 Sabertooth EVGA GTX1060 3GB Crucial Ballistix Tactical 16GB BLT2K8G3D1608ET... 
Hard DriveHard DriveHard DriveHard Drive
Crucial MX100 512GB Corsair Force 115GB WD Green 1TB WD Green 2TB 
CoolingOSMonitorKeyboard
Cryorig C1 + XT140 Win7 64 Home SP1 ASUS VE278Q CM Storm Trigger Brown Switch 
PowerCaseMouseMouse Pad
Corsair AX650 NZXT S340 Logitech G500 Razer Goliathus Extended Mouse Pad - Speed 
AudioAudioAudioAudio
Audiotrak Prodigy Cube DAC Edifier S330D 2.1 Speaker Bose AE2 Headphone Superlux 668B Headphone 
AudioAudioOtherOther
Logitech UE 4000 Headphone Sennheiser PC320 Headset MX-4 Thermal Paste (CPU/GPU) 3x 140mm Noctua NF-P14s Redux 1200rpm PWM 
OtherOther
1x 120mm Noctua NF-S12B Redux 1200rpm PWM NZXT 2m Sleeved White LED 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
Intel 3770k @ 4.2Ghz Asus Z77 Sabertooth EVGA GTX1060 3GB Crucial Ballistix Tactical 16GB BLT2K8G3D1608ET... 
Hard DriveHard DriveHard DriveHard Drive
Crucial MX100 512GB Corsair Force 115GB WD Green 1TB WD Green 2TB 
CoolingOSMonitorKeyboard
Cryorig C1 + XT140 Win7 64 Home SP1 ASUS VE278Q CM Storm Trigger Brown Switch 
PowerCaseMouseMouse Pad
Corsair AX650 NZXT S340 Logitech G500 Razer Goliathus Extended Mouse Pad - Speed 
AudioAudioAudioAudio
Audiotrak Prodigy Cube DAC Edifier S330D 2.1 Speaker Bose AE2 Headphone Superlux 668B Headphone 
AudioAudioOtherOther
Logitech UE 4000 Headphone Sennheiser PC320 Headset MX-4 Thermal Paste (CPU/GPU) 3x 140mm Noctua NF-P14s Redux 1200rpm PWM 
OtherOther
1x 120mm Noctua NF-S12B Redux 1200rpm PWM NZXT 2m Sleeved White LED 
  hide details  
Reply
post #35 of 85
Quote:
Originally Posted by Spooony View Post
Whats the name of the malware btw?
I dont know the specific one he has. There is one that is sold fairly regularly by some shady characters it is called zeus. There are multiple versions of it. It is rumored to being superseed by a better rootkit.

See attached link
http://www.prevx.com/blog/112/ZEUS-s...iness-PCs.html

This is one I think he may have. It is fairly common.
Edited by Kmon - 8/5/11 at 8:39pm
Gunslinger
(13 items)
 
  
CPUMotherboardGraphicsRAM
1090 MSI 890FXA GD70 5870 Corsair 
Hard DriveOSMonitorPower
C300 Windows I-INC Thermaltake 850 
Case
HAF 932 
  hide details  
Reply
Gunslinger
(13 items)
 
  
CPUMotherboardGraphicsRAM
1090 MSI 890FXA GD70 5870 Corsair 
Hard DriveOSMonitorPower
C300 Windows I-INC Thermaltake 850 
Case
HAF 932 
  hide details  
Reply
post #36 of 85
Quote:
Originally Posted by Spooony View Post
Infect the other system via the lnk or autorun invulnerability


A av is a prevention not a cure. Use on a infected system. It will be killed by the malware
I have never been infected by adding a HHD to be scanned this way in years. Maybe if you start launching stuff from it or boot up with it connected, maybe, but I always connect them once the working/scanning PC is ready to scan the drive.
     
CPUMotherboardGraphicsRAM
7700k Gigabye AORUS GA-Z270X Gaming 9 MSI Seahawk 1080Ti G.Skill Trident 3200 
Hard DriveHard DriveOSPower
Samsung EVO 960  Samsung EVO 950 Windows 10 Pro Corsair AX-1200 
Case
CaseLabs M8 
CPUMotherboardGraphicsRAM
Intel I7 860  Asus P7P55D-E Pro MSI ATI 6990 8gb G.Skill 1600 DDR3 (4x2Gb) 
RAMHard DriveHard DriveOptical Drive
G. Skill 1600 DDR3 OCZ Agility 2 120Gb  Seagate SATA Barracuda 160GB TSH663B DVD burner 
CoolingCoolingCoolingCooling
EK Supreme HF XSPC RC360 XSPC DDC Reservoir EK-FC6990 - EN (Nickel) 
OSMonitorKeyboardPower
Windows 10 64bit Pro Gateway FHX2300 Microsoft Wireless Multimedia V2 PC Power & Cooling Silencer 750 Quad 
CaseMouseAudio
Cooler Master HAF 932 Microsoft Wireless Optical Creative 5.1 
  hide details  
Reply
     
CPUMotherboardGraphicsRAM
7700k Gigabye AORUS GA-Z270X Gaming 9 MSI Seahawk 1080Ti G.Skill Trident 3200 
Hard DriveHard DriveOSPower
Samsung EVO 960  Samsung EVO 950 Windows 10 Pro Corsair AX-1200 
Case
CaseLabs M8 
CPUMotherboardGraphicsRAM
Intel I7 860  Asus P7P55D-E Pro MSI ATI 6990 8gb G.Skill 1600 DDR3 (4x2Gb) 
RAMHard DriveHard DriveOptical Drive
G. Skill 1600 DDR3 OCZ Agility 2 120Gb  Seagate SATA Barracuda 160GB TSH663B DVD burner 
CoolingCoolingCoolingCooling
EK Supreme HF XSPC RC360 XSPC DDC Reservoir EK-FC6990 - EN (Nickel) 
OSMonitorKeyboardPower
Windows 10 64bit Pro Gateway FHX2300 Microsoft Wireless Multimedia V2 PC Power & Cooling Silencer 750 Quad 
CaseMouseAudio
Cooler Master HAF 932 Microsoft Wireless Optical Creative 5.1 
  hide details  
Reply
post #37 of 85
Quote:
Originally Posted by Spooony View Post
Infect the other system via the lnk or autorun invulnerability


A av is a prevention not a cure. Use on a infected system. It will be killed by the malware
Yup, that why you usually just wipe and re-image. It is easier and faster and more effective.
Gunslinger
(13 items)
 
  
CPUMotherboardGraphicsRAM
1090 MSI 890FXA GD70 5870 Corsair 
Hard DriveOSMonitorPower
C300 Windows I-INC Thermaltake 850 
Case
HAF 932 
  hide details  
Reply
Gunslinger
(13 items)
 
  
CPUMotherboardGraphicsRAM
1090 MSI 890FXA GD70 5870 Corsair 
Hard DriveOSMonitorPower
C300 Windows I-INC Thermaltake 850 
Case
HAF 932 
  hide details  
Reply
post #38 of 85
get bitdefender total security and update and then run a deep system scan,it it works perfectly right
    
CPUMotherboardGraphicsRAM
AMD A10 5800k MSI FM2-A75MA-P33 Radeon 7660D Corsair Vengeance 1X4GB 
Hard DriveCoolingOSMonitor
Seagate Barracuda 250 GB Cooler Master Hyper TX3 Win 7, Linux Mint 15 Dell 17" LCD (1280X1024) 
PowerCase
Corsair CX430V2 Circle CC 
  hide details  
Reply
    
CPUMotherboardGraphicsRAM
AMD A10 5800k MSI FM2-A75MA-P33 Radeon 7660D Corsair Vengeance 1X4GB 
Hard DriveCoolingOSMonitor
Seagate Barracuda 250 GB Cooler Master Hyper TX3 Win 7, Linux Mint 15 Dell 17" LCD (1280X1024) 
PowerCase
Corsair CX430V2 Circle CC 
  hide details  
Reply
post #39 of 85
Since you said it is an older system, if you do decide to go the reformat route from USB, first make sure that it can boot from USB or you will be in a bad place after formatting.

Then again, if it can't boot from USB you'll have a hard time wiping to begin with...
Dr. Feynman
(13 items)
 
  
CPUMotherboardGraphicsRAM
e5200 @3.33GHz Asus P5N-e SLI 650i EVGA 9600GSO vmod 4x1GB DDR2-800 XMS2/Micron 
Hard DriveOSMonitorPower
2xWD1600YS(RAID0) & Hitachi 1TB Windows 7 Pro x64 23" Dell S2309w CM RealPwrPro 750W 
Case
Craptastic 
  hide details  
Reply
Dr. Feynman
(13 items)
 
  
CPUMotherboardGraphicsRAM
e5200 @3.33GHz Asus P5N-e SLI 650i EVGA 9600GSO vmod 4x1GB DDR2-800 XMS2/Micron 
Hard DriveOSMonitorPower
2xWD1600YS(RAID0) & Hitachi 1TB Windows 7 Pro x64 23" Dell S2309w CM RealPwrPro 750W 
Case
Craptastic 
  hide details  
Reply
post #40 of 85
Quote:
Originally Posted by ezveedub View Post
Best to remove the HDD, connect it to another computer and run Microsoft Security Essentials (free download) scan on it. I always clean infected HDDs from another PC running anti-virus software. Most HDDs do not get cleaned properly while they're being used as the boot OS drive.
That is why you WIPE. Pick a tool that complies with DOD requirements. You should be good unless, the malware is located in an attached device memory or printer memory. Works well as most time the printer is never turned off. The DVD BIOS is another nice place to write the malware boot loader too.
Gunslinger
(13 items)
 
  
CPUMotherboardGraphicsRAM
1090 MSI 890FXA GD70 5870 Corsair 
Hard DriveOSMonitorPower
C300 Windows I-INC Thermaltake 850 
Case
HAF 932 
  hide details  
Reply
Gunslinger
(13 items)
 
  
CPUMotherboardGraphicsRAM
1090 MSI 890FXA GD70 5870 Corsair 
Hard DriveOSMonitorPower
C300 Windows I-INC Thermaltake 850 
Case
HAF 932 
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Networking & Security
Overclock.net › Forums › Software, Programming and Coding › Networking & Security › How can I get rid of this nasty virus?