Got a PC with virus on, want to do everything except format

Discussion in 'Computer Software and Operating Systems' started by Satangel, Apr 3, 2013.

  1. Satangel
    OP

    Satangel BEAST

    Member
    10,255
    555
    Nov 27, 2006
    Belgium
    Bruges, Belgium
    So a person we know pretty well just brought her (ancient) laptop here, says she has a virus on it.
    The virus immediately makes all downloaded files branded as 'virus, potentially harmful for your PC', hence she can't download anything anymore.
    I installed SUPER AntiSpyware & Malwarebytes, they found a lot of things but the virus isn't gone. I used both the free versions. I also ran a quick Microsoft Security Essentials scan, didn't find anything......

    I've uninstalled Chrome (her browser) 3 times, even with REVO Uninstaller, the next time I install Chrome (downloaded on another PC, transferred via USB), it gives the same problems.
    Even Internet Explorer can't download anything (it marks it as virus again...), I haven't tried Firefox though.

    So basically, what can I do? All browsers seem to be marked, and the 3 Anti virus programs I usually use don't find it....
    I can format, she's bringing the Windows DVD tomorrow, but that's of course last option.
     


  2. Rydian

    Rydian Resident Furvert™

    Member
    27,883
    8,103
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
  3. WiiUBricker

    WiiUBricker Fake News Reporter

    Member
    6,813
    3,691
    Sep 19, 2009
    Argentina
    Espresso
    If your computer is really infected, their is a good chance that no tool will help.
     
  4. trumpet-205

    trumpet-205 Embrace the darkness within

    Member
    4,363
    542
    Jan 14, 2009
    United States
    Do we know what kind of virus we are dealing with? You should do repair only under Safe Mode.
     
  5. Satangel
    OP

    Satangel BEAST

    Member
    10,255
    555
    Nov 27, 2006
    Belgium
    Bruges, Belgium
    I tried, it's like the registry file isn't there. I can see it in the .zip archive, but when I extract it or try to run it, nothing happens. It's like the .reg file isn't even there.
    I turned on hidden files, didn't show up either.
    True that, but you never know. I'm not keen on formatting, last resort.
    It seems to affect all browsers. I just installed Firefox on her laptop, the first time that laptop ever had Firefox, and that browser could download. But when I tried to run the exe or the files I've downloaded, it was like they didn't exist. Very weird stuff, it gives no error in the download, but when you try to approach the downloaded file(s) in Windows, it's like nothing ever happened.
     
  6. Clydefrosch

    Clydefrosch GBAtemp Psycho!

    Member
    4,027
    1,128
    Jan 2, 2009
    Gambia, The
    just save all important data with a linux live cd and format it.

    if malwarebytes didnt help you, chances are it cant be removed without a trace anyway.
     
  7. Rydian

    Rydian Resident Furvert™

    Member
    27,883
    8,103
    Feb 4, 2010
    United States
    Cave Entrance, Watching Cyan Write Letters
    Hm, try this tool then.
    http://download.bleepingcomputer.com/grinler/eXplorer.exe
    See if it kills the malware process long enough for you to run some cleanup stuff.
     
    Satangel likes this.
  8. Issac

    Issac oh!

    Global Moderator
    4,994
    1,758
    Apr 10, 2004
    Sweden
    Install some antivirus software (there are free ones that people recommend sometimes, I forgot the name. Or my personal favourite Eset Nod32 (or anything you can find)).
    Reboot the computer in Safe Mode (pressing F8 or F6 or something like that on boot). Run the antivirus software and let it do it's magic. If it doesn't solve anything... Maybe something else will do.
     
  9. Ericthegreat

    Ericthegreat Not New Member

    Member
    1,796
    312
    Nov 8, 2008
    United States
    Vana'diel
    Hey why not update it to a new version of windows (if compatable) and it will prob make the pc faster and will move all files to windows.old. But the prob is browsing habits, but its prob hard to tell a girl to stop watching porn on bad sites ;)
     
  10. trumpet-205

    trumpet-205 Embrace the darkness within

    Member
    4,363
    542
    Jan 14, 2009
    United States
    Can you try it under Safe Mode?

    * Run msconfig
    * Under "Boot" tab you will see "Boot Options" with 4 options below "Safe Boot". Check "Safe Boot" and "Network".
    * Reboot your PC, you should be now in Safe Mode

    Also I recommend you use online scanning tool,
    http://housecall.trendmicro.com/
    http://www.pandasecurity.com/homeusers/solutions/activescan/
    http://www.eset.com/us/online-scanner/

    Run all of them.
     
  11. Magsor

    Magsor I am watching you

    Member
    959
    65
    Dec 1, 2010
    Canada
    Amos
    Install windows onto a vhd; faster and easier...
    1. You need windows 7 premium or windows 8
    2. Choose a new install of course
    3. Where your prompted to choose a disk press shift-f10 (this will open command prompt)
    4. diskpart
    5. create vdisk file=c:\vhd.vhd type=expandable maximum=22222
    6. attach vdisk
    7. alt-tab to refresh and choose your new disk
     
  12. pyromaniac123

    pyromaniac123 ส็็็็็็็็็็็็็็็็็็็(ಠ益ಠส็็็็็็็็็็็็็็็็็็็

    Member
    2,001
    1,669
    Sep 24, 2011
    Take hdd out of pc, get 2lbs of thermite, put thermite on top of hdd, stick some magnesium ribbon into thermite and light. Virus deleted.
     
    Satangel likes this.
  13. pokefloote

    pokefloote GBAtemp Addict

    Member
    2,670
    1,066
    Mar 20, 2009
    United States

    I see you live up to your username :lol:
     
    Satangel likes this.
  14. The Milkman

    The Milkman GBATemp's Official Asshat Milkman

    Member
    3,471
    1,111
    Jan 12, 2011
    United States
    Throwing milk at the bitches!
    Why not just do a system restore? Unless its rooted (which means you dun fucked up on a new lvl) a system restore should patch it right up and you dont have to loose alot of data.
     
  15. trumpet-205

    trumpet-205 Embrace the darkness within

    Member
    4,363
    542
    Jan 14, 2009
    United States
    Bad idea. A lot of times system restore will be tainted with maleware.
     
  16. The Milkman

    The Milkman GBATemp's Official Asshat Milkman

    Member
    3,471
    1,111
    Jan 12, 2011
    United States
    Throwing milk at the bitches!
    Really? I mean im no professional but in the cases ive had a major virus on my PC a system restore at least got me back in to fix the problem.
     
  17. trumpet-205

    trumpet-205 Embrace the darkness within

    Member
    4,363
    542
    Jan 14, 2009
    United States
    Many malewares now target system restore, hence it is not recommended to use it. You can however, use third-party restore/disk-cloning software instead.
     
  18. jefffisher

    jefffisher GBAtemp Maniac

    Member
    1,333
    205
    Dec 17, 2006
    United States
    first thing you want to do is use ccleaner to disable all startup programs you dont recognize and restart.
    then use taskmanager show processes from all users find anything that should not be there right click and open file location, if its a virus file end the process tree not just the single process the whole tree then delete the file.
    check the ccleaner startup programs again and restart once more.
    if the problem is still not fixed you should use the more advanced taskmanager in command prompt with the tasklist and taskkill commands make sure to /t and /f to the process to force it and all its children processes closed.
    if the problem is still not fixed, it probably will be that simple method will get rid of almost anything then there is a program that can remove all known virus's to date but it's a last resort as it will reset nearly all windows settings and i can't find it right now.
     
  19. Satangel
    OP

    Satangel BEAST

    Member
    10,255
    555
    Nov 27, 2006
    Belgium
    Bruges, Belgium
    What difference will it make if I run those scanners in normal boot or not? I've run scanners , several scanner, just not in safe mode.
    Well she says formatting is allowed, but I mainly don't want to hassle with drivers and finding a Windows version that still works. I told her I'll need the boot DVD, she's bringing it here as we speak. But I'm scared of drivers and product keys, which all come down to me finding them....
    Not an option sorry, she's a real noob user, only uses Skype/Spotify/Gmail, nothing else. This PC runs like 3 hours in a week, I can't hassle her with virtual shit....
    Will try, but I doubt there will be restore points.
    You sure the virus will just sit there as a process? I think it's more of a root/registry problem (just my 2 cents), it seems to embed itself in all browsers. In all browsers, that's what makes it so hard, even the brand new Firefox which never was installed on it, fails to work properly.
     
  20. Pong20302000

    Pong20302000 making notes on everything

    Member
    8,076
    1,931
    Sep 8, 2009
    One's inner self
    if shes got nothing important, Wipe, and reinstall windows, cleans the lot then

    if important files then use a live CD to extract the files onto a usb then wipe and reinstall

    better than having it still hiding somewhere

    you can download all plain window discs legally, key should be on the bottom of the laptop