1. Welcome to Tacoma World!

    You are currently viewing as a guest! To get full-access, you need to register for a FREE account.

    As a registered member, you’ll be able to:
    • Participate in all Tacoma discussion topics
    • Communicate privately with other Tacoma owners from around the world
    • Post your own photos in our Members Gallery
    • Access all special features of the site

Virus problems with the computer

Discussion in 'Technology' started by danteisme, Dec 27, 2012.

  1. Dec 27, 2012 at 9:23 AM
    #1
    danteisme

    danteisme [OP] Well-Known Member

    Joined:
    Jan 14, 2008
    Member:
    #4248
    Messages:
    1,207
    Gender:
    Male
    pittsburgh
    Vehicle:
    05 base 4x4
    i've got a nasty virus on my home laptop. i'm kind of at a loss for what i should do next. here is what the virus has disabled:

    -safe mode, start menu, task manager, malware (keeps saying some file i have is outdated), internet, cut/paste capabilities, and probably something else i'm forgetting.

    Here is what i have tried so far: Updating Malware, running MRT, running avg, ran RKILL to try and use malware, hitman antivirus and a few other things i've read on some forums from doing some google searches. i'd love to just wipe it clean, but a lot of my stuff is still on the laptop and i can't use cut and paste. i wanted to use combofix, but it says to copy it to the desktop (which i cant do because cut/paste is disabled). i tried running combofix from my usb, but it just froze after about 10 min of trying to run.

    it says the internet is disabled, BUT i was able to download updates for that hitman antivirus that was recommended on the one forum i was reading. i'm hesitant to take it to best buy or whatever to have them clean the system of viruses because it would probably be cheaper to buy a new cheap laptop.

    any computer gurus have any suggestions on what to try next?

    its an older HP, about 6 years old and has windows xp on it.

    thanks.
     
  2. Dec 27, 2012 at 9:25 AM
    #2
    98tacoma27

    98tacoma27 :POOPCORN: Staff Member

    Joined:
    Dec 18, 2008
    Member:
    #11714
    Messages:
    48,248
    Gender:
    Male
    First Name:
    Ben
    Beech Creek
    Vehicle:
    05 Tundra SR5, 88 SR5 PU, 98 TRD OR (CRUSHED)
    5100's all on fours
    Do you know the neame of the virus/malware?
     
  3. Dec 27, 2012 at 9:26 AM
    #3
    danteisme

    danteisme [OP] Well-Known Member

    Joined:
    Jan 14, 2008
    Member:
    #4248
    Messages:
    1,207
    Gender:
    Male
    pittsburgh
    Vehicle:
    05 base 4x4
    crap. i have a lot printed out but i have it at home. i'll have to check when i get off work.
     
  4. Dec 27, 2012 at 9:29 AM
    #4
    danteisme

    danteisme [OP] Well-Known Member

    Joined:
    Jan 14, 2008
    Member:
    #4248
    Messages:
    1,207
    Gender:
    Male
    pittsburgh
    Vehicle:
    05 base 4x4
    i remember part of the topic was saying it was some root kit that infects the windows service.exe or something like that. i ran my AVG (wouldnt let me update it) and it found 26 white listed root kits or something like that. all where in that windows service files
     
  5. Dec 27, 2012 at 9:29 AM
    #5
    98tacoma27

    98tacoma27 :POOPCORN: Staff Member

    Joined:
    Dec 18, 2008
    Member:
    #11714
    Messages:
    48,248
    Gender:
    Male
    First Name:
    Ben
    Beech Creek
    Vehicle:
    05 Tundra SR5, 88 SR5 PU, 98 TRD OR (CRUSHED)
    5100's all on fours
    Root kits suck.
     
  6. Dec 27, 2012 at 9:35 AM
    #6
    joneill03

    joneill03 Look away, I'm hideous!

    Joined:
    Oct 26, 2009
    Member:
    #24912
    Messages:
    3,353
    Gender:
    Male
    First Name:
    Johnny-5
    Chantilly, VA
    Vehicle:
    Silver 2010 OR
    could you just take your hard drive out of the laptop and attach it to another computer to copy off the files you want?
     
  7. Dec 27, 2012 at 9:40 AM
    #7
    danteisme

    danteisme [OP] Well-Known Member

    Joined:
    Jan 14, 2008
    Member:
    #4248
    Messages:
    1,207
    Gender:
    Male
    pittsburgh
    Vehicle:
    05 base 4x4
    i could probably google how to do that. this is my only computer, so i would have to bring it to the office and see if i could do it with one of those computers. would i run the risk of infecting those computers doing that?
     
  8. Dec 27, 2012 at 9:41 AM
    #8
    teamhypoxia

    teamhypoxia MichelinMan

    Joined:
    Aug 21, 2012
    Member:
    #85247
    Messages:
    2,726
    Gender:
    Male
    Colorado
    Vehicle:
    '12 DCSB TRD OR
    Use the factory restore partition if it has one.
     
  9. Dec 27, 2012 at 10:14 AM
    #9
    danteisme

    danteisme [OP] Well-Known Member

    Joined:
    Jan 14, 2008
    Member:
    #4248
    Messages:
    1,207
    Gender:
    Male
    pittsburgh
    Vehicle:
    05 base 4x4
    if i could get the stupid cut/paste feature to work again, i feel i would be alright from that point.
     
  10. Dec 27, 2012 at 10:22 AM
    #10
    RedTacoDriver

    RedTacoDriver Out of my mind....be back later.

    Joined:
    Oct 12, 2012
    Member:
    #88881
    Messages:
    515
    Gender:
    Male
    First Name:
    Dale
    Portland, OR
    Vehicle:
    2012 Tacoma Regular Cab 2.7L
    BakFlipG2, Westin Nerf Bars, Harbor Freight Bed Jacks, Flame Devil Horns, vinyl raven emblems, intermittent wiper switch swapout More to come.
  11. Dec 27, 2012 at 10:45 AM
    #11
    127.0.0.1

    127.0.0.1 AKA ::1

    Joined:
    Dec 24, 2012
    Member:
    #93641
    Messages:
    1,564
    Gender:
    Male
    /etc/hosts
    Vehicle:
    2013 NBM AC 4.0 4x4 Auto OR
    if you cannot find and eliminate the problem right away (and it may be
    nearly impossible) stop messing with it, waste of time if you want to save data

    when malware takes over the admin accounts and set policies which lock you out,
    it is not hopeless, but you need to be MCSE certified to navigate that type of minefield. time consuming as hell

    a) get a hard drive USB adapter sata/ide/usb

    this lets you power up the drive and connect it to another computer

    b) make sure target computer is fully up to date with Microsoft security essentials

    c) get your files you need off the drive, do not copy the whole drive,
    just the data you need to keep.

    d) now rebuild the laptop from factory

    e) install the programs you want, fetch the data you copied over


    this basically is deterministic approach. You know how long this will take, period... vs trying to clean it as it exists, guess, and it may take days/weeks/months and problem might come right back
     
  12. Dec 27, 2012 at 10:49 AM
    #12
    joneill03

    joneill03 Look away, I'm hideous!

    Joined:
    Oct 26, 2009
    Member:
    #24912
    Messages:
    3,353
    Gender:
    Male
    First Name:
    Johnny-5
    Chantilly, VA
    Vehicle:
    Silver 2010 OR
    I wouldn't take it to work and risk infecting one of those computers. I believe some of the malware sites can make bootable discs for you to boot off of to remove the rootkits or maybe you could make a bootable flash drive and put a bunch of tools to run off of that. Unetbootin is a good program to make bootable USB drives btw.
     
  13. Dec 27, 2012 at 10:50 AM
    #13
    2000GTacoma

    2000GTacoma Well-Known Member

    Joined:
    Jan 29, 2011
    Member:
    #50183
    Messages:
    2,185
    Gender:
    Male
    Snow Hill NC
    Vehicle:
    00 Tacoma Ext. 3.4L SR5
    i use a free version of malware bytes.
     
  14. Dec 27, 2012 at 7:36 PM
    #14
    BuckNakedBooda

    BuckNakedBooda There's no place like 127.0.0.1

    Joined:
    May 11, 2010
    Member:
    #36937
    Messages:
    1,487
    Woodbridge, Virginia
    Vehicle:
    2013 Toyota Tundra Crewmax Limited 4x4
    Absolutely agree. Download and copy the installer file that you can download and put on a USB drive.
     
  15. Dec 27, 2012 at 7:51 PM
    #15
    i30nes

    i30nes Well-Known Member

    Joined:
    Sep 26, 2008
    Member:
    #9499
    Messages:
    189
    Gender:
    Male
    Tampa Palms, FL
    Vehicle:
    08 PreRunner SR5 Impulse Red
    Debadged Tailgate, Black door emblems, Grillgraft grille w/ devil horns. Work in progress :)
    If by some chance try installing avast. And then do a boot time scan. If you can get a bulk of it cleaned out you may need to perform some registry changes to fix the other issues.
     
  16. Dec 27, 2012 at 7:53 PM
    #16
    cwinterhalter

    cwinterhalter Member

    Joined:
    May 6, 2012
    Member:
    #78320
    Messages:
    9
    Gender:
    Male
    First Name:
    Clint
    Cincinnati
    Vehicle:
    Bone Stock Taco
    Extang Solid Fold, BedRug
    Search the web for tools to remove the virus once you know the name...
    Many antivirus companys have free tools that let you can use to zap common issues.
    You might need to get into the bios and tell the laptop to boot from a USB / CD.. If the machine will let you setup a dropbox account, you could dump the files you want into dropbox you get a few gigs for free from Dropbox.. Depending on what you need to save it it could work. Once a virus takes hold they are hard to get rid of. Best bet is to wipe it clean and restore it. I'd spend a few bucks and dump XP... :You can get windows 7 for $99 / If you don't mind a learning curve you can pick up windows 8.. (Windows 8 takes some getting use to--You might not like it).. Once you get everything cleaned / up and running.. CHANGE ALL OF YOUR ONLINE PASSWORDS! Good Luck...
     
  17. Dec 27, 2012 at 7:58 PM
    #17
    dexterdog

    dexterdog My pee parts itch

    Joined:
    Jul 12, 2009
    Member:
    #19571
    Messages:
    3,652
    Gender:
    Male
    Oly WA
    Vehicle:
    '07 FJ
    Bleeping Computer is a good site to help solve virus issues. Malwarebytes has a good rootkit removal tool. Rename the programs you plan on using.
     
  18. Dec 28, 2012 at 5:12 AM
    #18
    danteisme

    danteisme [OP] Well-Known Member

    Joined:
    Jan 14, 2008
    Member:
    #4248
    Messages:
    1,207
    Gender:
    Male
    pittsburgh
    Vehicle:
    05 base 4x4
    the virus has disabled malwarebytes, i installed avast last night and the virus laughed at it. it just said something about cannot run program.

    on a good note, i did figure out how to get my stuff off the computer. if i send it all to a .rar file, then when i extract i direct it where to extract to, i can just extract everything to my external hard drive. it worked when i added combofix to my desktop this morning. i have that running now, we'll see if that does anything.

    if not, i give up and i'll wipe the stupid thing clean.
     
  19. Dec 28, 2012 at 5:16 AM
    #19
    bishtacova

    bishtacova Don't buy a Ford

    Joined:
    Oct 13, 2009
    Member:
    #24239
    Messages:
    234
    Gender:
    Male
    Vehicle:
    2009 DC PreRunner V6
    4 leaf TSB, reflash ECM, Eurostyle antenna, thule roof rack, bed extender
    x2 or better yet, go get another laptop and just copy over your files that you know are not infected to google docs. If the laptop is six years old, you may want to try using ubuntu and forgo Windows altogether.
     
  20. Dec 28, 2012 at 7:56 AM
    #20
    i30nes

    i30nes Well-Known Member

    Joined:
    Sep 26, 2008
    Member:
    #9499
    Messages:
    189
    Gender:
    Male
    Tampa Palms, FL
    Vehicle:
    08 PreRunner SR5 Impulse Red
    Debadged Tailgate, Black door emblems, Grillgraft grille w/ devil horns. Work in progress :)
    If you got all of the items backed up I would just reload the laptop. It will be easier in the long run. I got hit by one a while back, worked on it for a couple hours and called it quits by formatting and starting fresh.
     
To Top