Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Infections?
#1
Heh, made this just so I could be the first to post in this section.

If you suspect you have a virus infection, the following steps may help you.

Download Hijackthis, run a scan, then save the log somewhere.
Make sure you don't remove anything if you don't know what you are doing.
More information on this tool here.

Download and run MalwareBytes. Make sure you update before running any scans. Save the log somewhere.
Remove any infected files. A reboot may be necessary.
More information on this tool here.

Post both logs in [code] format here and some friendly people like me will come help you analyze it.

Of course, if you still are paranoid, run online virus scans. A simple Google search showed them.
http://www.google.ca/search?hl=en&safe=o...earch&meta=

Recommended setups

Setup 1 (free):


Setup 2 (free):


Setup 3 (paid):


Setup 4 (paid):

------------------------------------------------------
Most obvious way to prevent infections is to never open suspicious files.

When in doubt:

32-bit systems


64-bit systems
Reply
#2
Thanks for the info! Will be sure to do when I think I'm infected.
Reply
#3
Good info. Change the red text though and you forgot the "t" in "MalwareBytes".

Yeah, I'm a grammar nazi.
Robert Picard
http://www.rpicard.net
Reply
#4
(10-03-2009, 10:11 PM)The Defender Wrote: Good info. Change the red text though and you forgot the "t" in "MalwareBytes".

Yeah, I'm a grammar nazi.

Grammar =/= Spelling.

Great post HS.
Reply
#5
And........ always keep a live bootable cd of Dr. Web handy.....

After trying almost everything to remove a "Virut" worm that infected 99.9% of my system needed .EXE files, Dr. Web was the only one the cleared them all.....

Another handy tool is ComboFix... Helps you to clear off all the damage done by an worm/virus.. This is more of an after-removal tool...

Dr. Web Live CD [[FREE]] --> http://www.freedrweb.com/livecd/

ComboFix [[FREE]] --> http://www.bleepingcomputer.com/combofix...e-combofix
[Image: IKILLUNEW.jpg]
Reply
#6
I would recommend disconnecting your internet and checking your RegRun entries for anything suspicous.
Reply
#7
(10-05-2009, 03:31 AM)Carb0n F1ber Wrote: And........ always keep a live bootable cd of Dr. Web handy.....

After trying almost everything to remove a "Virut" worm that infected 99.9% of my system needed .EXE files, Dr. Web was the only one the cleared them all.....

Another handy tool is ComboFix... Helps you to clear off all the damage done by an worm/virus.. This is more of an after-removal tool...

Dr. Web Live CD [[FREE]] --> http://www.freedrweb.com/livecd/

ComboFix [[FREE]] --> http://www.bleepingcomputer.com/combofix...e-combofix

If you need to use a bootable CD, I'd rather reformat completely.
Updated first post.
Reply
#8
Also, if you are infected make sure that reinstalling is the last and final option.
Reply
#9
(10-05-2009, 05:18 PM)HaruhiSuzumiya Wrote: If you need to use a bootable CD, I'd rather reformat completely.
Updated first post.
The bootable CD is for Dr. Web not for Windows...
Note: There is also a Win32 version of Dr. Web (awesome if you run it in safe mode). The best part I like about Dr. Web is that it does not depend on signatures to detect viruses/worms/trojans....

Again, re-format is not a option for everybody....
[Image: IKILLUNEW.jpg]
Reply
#10
(10-05-2009, 09:54 PM)Carb0n F1ber Wrote: The bootable CD is for Dr. Web not for Windows...
Note: There is also a Win32 version of Dr. Web (awesome if you run it in safe mode). The best part I like about Dr. Web is that it does not depend on signatures to detect viruses/worms/trojans....

I meant bootable cd's such as UBCD4WIN, etc.
Reply


Forum Jump:


Users browsing this thread: 4 Guest(s)