M
Metspitzer
I think the simplest way to fix it is to reinstall Windows on the same
drive.
Does this cause any problems?
drive.
Does this cause any problems?
You are using an out of date browser. It may not display this or other websites correctly.
You should upgrade or use an alternative browser.
You should upgrade or use an alternative browser.
D
Don Phillipson
I think the simplest way to fix it is to reinstall Windows on the same
drive.
Does this cause any problems?
Reinstallation by itself originates no problems: but reinstalling
onto an imperfect hard drive is asking for trouble.
P
Paul
Metspitzer said:I think the simplest way to fix it is to reinstall Windows on the same
drive.
Does this cause any problems?
You have Repair Install (might not remove all signs of malware).
You have Clean Install.
But you might want to take care of your data first (backup email
database, personal files).
One way to do this, is to install a brand new clean disk in the computer,
install WinXP, install AV software. Then, reconnect the other disk,
so you can recover personal data. Use the AV scanner on the clean disk,
to check the old disk. That would be one approach. Don't touch any files
on the old disk, until the AV scan is complete.
If you have an older spare disk around, you can erase that and pretend
that is your new disk. The erasure can be done from within the Windows
installer (it has options to control partitioning).
The reason for unplugging the old disk, is "safety first", so nothing can
happen to that disk, while you're completing the reinstall. And the particular
install order (making sure your AV is installed), is so the new OS is armed
and ready to scan the old disk for malware.
*******
You can also do an offline scan, using one of these discs. You'll
need a second computer, to download the 196MB ISO9660 file and burn
a CD. The CD runs Gentoo Linux and an AV scanner runs in there to
search for Windows malware on the hard drive. Click all the partition
buttons, and let it have a look. Note - currently this only boots from
a CD drive inside the computer casing - it would not boot from my
USB DVD drive. An older version, would boot from both of them.
http://support.kaspersky.com/faq/?qid=208282163
"Iso image of Kaspersky Rescue Disk 10 (196 MB)"
With any AV scanner, you have to be careful, where the quarantined files
are stored. Some tools, quarantine and delete files, leaving you with
no alternatives. Some, will construct a RAMDisk while the tool is running,
and move the infected files onto the RAMDisk. If you don't move the
files somewhere, and happen to turn off the PC power, then all the
quarantined files would be lost. Keeping the quarantined files, is only
important if the tool makes a mistake, and removes a valid file, or removes
a file that "bricks" the computer.
I suspect you've been "bricked", by McAfee removing some file it shouldn't
have, and now the computer can't finish booting. If you knew where the
quarantine folder was, you could have a look to see what is in there.
And "bricking" a computer may be unavoidable. Malware doesn't come with a
guarantee, that says "all damage can be reversed". Most malware, will
infect System Restore points, disable Windows File Protection and the like,
so a lot of the potential recovery mechanisms, have already been nullified.
Paul
M
Metspitzer
ThanksYou have Repair Install (might not remove all signs of malware).
You have Clean Install.
K
Ken Blake, MVP
The problem Today is that people call all malware
viruses
*Some* people do. I think the great majority of people erroneously
differentiate between malware and viruses. To them, if it's spyware
(and so on) it's malware. Otherwise it's a virus.
where viruses are a subset of malware. All viruses are malware but not all
malware are viruses.
Absolutely! I completely agree. Malware is MALicious softWARE. But
lots of people don't realize that.
M
Metspitzer
* ABSOLUTLEY NOT ! *
You will only makes things worse.
Additionally, I surely doubt it is a "virus". Viruses are a specific kind of malware that
self replicate. Usually file infectors that insert, append or prepend code into other
files. If it is a "virus" such as Parite, you will kill the OS.
Assuming it is malware, it is a trojan. The problem Today is that people call all malware
viruses where viruses are a subset of malware. All viruses are malware but not all
malware are viruses.
If you are infected the are two routes.
- backup data, wipe the disk and reinstall the OS from scratch
- use anti malware software, claen the OS of malware, and correct any modifications the
malware may have made.
The fact that you think you have a virus is a faux conclusion.
If you think you have malware, you should look at the symptoms of WHY you come to that
conclusion and not take draconian actions that can actually leave you in a worse
condition. I can't tell you how many time someone things they have mlware when they have
a hardware problem, an OS corruption problem or a driver issue.
Why I came to that conclusion, is because Mcaffe reported one before I
shut the computer down. (Trojan something)
It also reported that it had cleaned it and there was nothing to worry
about. It did this 3 or 4 times before I tried to restart.
I would like to be able to tell you which virus, but my brain works
like this...........Virus=bad=broke. Those are all the details I
have.
B
Bruce Hagen
Metspitzer said:I think the simplest way to fix it is to reinstall Windows on the same
drive.
Does this cause any problems?
Why not try to remove the Malware before going to all the trouble of a
rteinstall.
Download the free version of this tool and run a full scan.
Malwarebytes Anti-Malware
http://www.malwarebytes.org/mbam.php
B
Bruce Hagen
Metspitzer said:Why I came to that conclusion, is because Mcaffe reported one before I
shut the computer down. (Trojan something)
It also reported that it had cleaned it and there was nothing to worry
about. It did this 3 or 4 times before I tried to restart.
I would like to be able to tell you which virus, but my brain works
like this...........Virus=bad=broke. Those are all the details I
have.
Why not try to remove the Malware before you go to all the trouble of a
reinstall.
Download the free version of this tool and run a full scan.
Malwarebytes Anti-Malware
http://www.malwarebytes.org/mbam.php
M
Metspitzer
Why not try to remove the Malware before you go to all the trouble of a
reinstall.
Download the free version of this tool and run a full scan.
Malwarebytes Anti-Malware
http://www.malwarebytes.org/mbam.php
The machine doesn't boot from normal or safe mode. It won't do last
config either.
I am installing a new copy on a new drive.
M
Metspitzer
You wrote that McAfee indicated "Trojan something" and yet yoiu STILL equate to virus.
McAfee isn't that good. It is great for true viruses and "hot subject" malware but lousy
as hell on the everyday, emerging, malware.
Why don't you download my Multi-AV Scanning Tool and use the Avira and Sophos modules and
see what they find and remove.
How would I do that if the boot fails?
M
Metspitzer
I have a fresh copy of XP working now.
Thanks all
Thanks all