Infections? - Printable Version +- Support Forums (https://www.supportforums.net) +-- Forum: Categories (https://www.supportforums.net/forumdisplay.php?fid=87) +--- Forum: Virus Protection, Removals, and HJT Team (https://www.supportforums.net/forumdisplay.php?fid=56) +---- Forum: Computer Security, Firewalls, and Antivirus (https://www.supportforums.net/forumdisplay.php?fid=10) +---- Thread: Infections? (/showthread.php?tid=17) |
Infections? - Skawke - 10-03-2009 Heh, made this just so I could be the first to post in this section. If you suspect you have a virus infection, the following steps may help you. Download Hijackthis, run a scan, then save the log somewhere. Make sure you don't remove anything if you don't know what you are doing. More information on this tool here. Download and run MalwareBytes. Make sure you update before running any scans. Save the log somewhere. Remove any infected files. A reboot may be necessary. More information on this tool here. Post both logs in [code] format here and some friendly people like me will come help you analyze it. Of course, if you still are paranoid, run online virus scans. A simple Google search showed them. http://www.google.ca/search?hl=en&safe=off&client=firefox-a&rls=org.mozilla%3Aen-US%3Aofficial&hs=lGy&q=online+virus+scanners&btnG=Search&meta= Recommended setups Setup 1 (free): Spoiler (Click to View) Setup 2 (free): Spoiler (Click to View) Setup 3 (paid): Spoiler (Click to View) Setup 4 (paid): Spoiler (Click to View) ------------------------------------------------------ Most obvious way to prevent infections is to never open suspicious files. When in doubt: 32-bit systems Spoiler (Click to View) 64-bit systems Spoiler (Click to View) RE: Infections? - Keyreaper - 10-03-2009 Thanks for the info! Will be sure to do when I think I'm infected. RE: Infections? - RPicard - 10-03-2009 Good info. Change the red text though and you forgot the "t" in "MalwareBytes". Yeah, I'm a grammar nazi. RE: Infections? - Elektrisk - 10-04-2009 (10-03-2009, 10:11 PM)The Defender Wrote: Good info. Change the red text though and you forgot the "t" in "MalwareBytes". Grammar =/= Spelling. Great post HS. RE: Infections? - Carb0n F1ber - 10-05-2009 And........ always keep a live bootable cd of Dr. Web handy..... After trying almost everything to remove a "Virut" worm that infected 99.9% of my system needed .EXE files, Dr. Web was the only one the cleared them all..... Another handy tool is ComboFix... Helps you to clear off all the damage done by an worm/virus.. This is more of an after-removal tool... Dr. Web Live CD [[FREE]] --> http://www.freedrweb.com/livecd/ ComboFix [[FREE]] --> http://www.bleepingcomputer.com/combofix/how-to-use-combofix RE: Infections? - St0rmW1nd - 10-05-2009 I would recommend disconnecting your internet and checking your RegRun entries for anything suspicous. RE: Infections? - Skawke - 10-05-2009 (10-05-2009, 03:31 AM)Carb0n F1ber Wrote: And........ always keep a live bootable cd of Dr. Web handy..... If you need to use a bootable CD, I'd rather reformat completely. Updated first post. RE: Infections? - St0rmW1nd - 10-05-2009 Also, if you are infected make sure that reinstalling is the last and final option. RE: Infections? - Carb0n F1ber - 10-05-2009 (10-05-2009, 05:18 PM)HaruhiSuzumiya Wrote: If you need to use a bootable CD, I'd rather reformat completely.The bootable CD is for Dr. Web not for Windows... Note: There is also a Win32 version of Dr. Web (awesome if you run it in safe mode). The best part I like about Dr. Web is that it does not depend on signatures to detect viruses/worms/trojans.... Again, re-format is not a option for everybody.... RE: Infections? - Skawke - 10-05-2009 (10-05-2009, 09:54 PM)Carb0n F1ber Wrote: The bootable CD is for Dr. Web not for Windows... I meant bootable cd's such as UBCD4WIN, etc. |