Virus in Windows7

  • Thread starter Thread starter jw
  • Start date Start date
J

jw

A friend of mine has Windows7. He opened some email and it has caused
his computer to not work properly. He's not very computer literate
and lives too far away to personally go and help him. Besides that, I
know nothing about Win7. I run XP, 2000, and 98 on different
computers. I have never played with Vista or Win7. (who needs that
bloated crap anyhow).

Anyhow, maybe someone can tell me what to email him to try to fix the
problem. Don't microsoft have some sort of virus software he can use?
He has some sort of AV software installed. I think it's Avast. It
will not fix the problem and keeps telling him he has to pay $49 to
get it to work. I told him to try to disable it. Maybe its that
thing causing all the problems.

I know you dont have much to go on. I dont know anymore. But maybe
some of you might suggest what virus may be going around in emails
this week, and some possible fix he can try. I'll forward this to
him, and guide him thru it. He deleted the email so there is little
more to go on. He said he tried to run the REPAIR CD for Win7 and it
failed. Thats all I know. I have never used Win7 which makes it hard
to suggest anything. I only know it's similar to XP but much more
complicated (from watching someone use it).

Thanks
 
From: said:
A friend of mine has Windows7. He opened some email and it has caused
his computer to not work properly. He's not very computer literate
and lives too far away to personally go and help him. Besides that, I
know nothing about Win7. I run XP, 2000, and 98 on different
computers. I have never played with Vista or Win7. (who needs that
bloated crap anyhow).

Anyhow, maybe someone can tell me what to email him to try to fix the
problem. Don't microsoft have some sort of virus software he can use?
He has some sort of AV software installed. I think it's Avast. It
will not fix the problem and keeps telling him he has to pay $49 to
get it to work. I told him to try to disable it. Maybe its that
thing causing all the problems.

I know you dont have much to go on. I dont know anymore. But maybe
some of you might suggest what virus may be going around in emails
this week, and some possible fix he can try. I'll forward this to
him, and guide him thru it. He deleted the email so there is little
more to go on. He said he tried to run the REPAIR CD for Win7 and it
failed. Thats all I know. I have never used Win7 which makes it hard
to suggest anything. I only know it's similar to XP but much more
complicated (from watching someone use it).

Thanks

Acting as a proxy for someone is no fun. Espacially one far away.

Have your friend create an account at Malwarebytes forums and let your friend discern the
best course of action.

http://forums.malwarebytes.org

PS: It isn't a virus but it is non-viral malware.
 
A friend of mine has Windows7. He opened some email and it has caused
his computer to not work properly. He's not very computer literate
and lives too far away to personally go and help him. Besides that, I
know nothing about Win7. I run XP, 2000, and 98 on different
computers. I have never played with Vista or Win7. (who needs that
bloated crap anyhow).

Anyhow, maybe someone can tell me what to email him to try to fix the
problem. Don't microsoft have some sort of virus software he can use?
He has some sort of AV software installed. I think it's Avast. It
will not fix the problem and keeps telling him he has to pay $49 to
get it to work. I told him to try to disable it. Maybe its that
thing causing all the problems.

This reads suspiciously like rogue malware.
I know you don't have much to go on. I don't know anymore. But maybe
some of you might suggest what virus may be going around in emails
this week, and some possible fix he can try. I'll forward this to
him, and guide him thru it. He deleted the email so there is little
more to go on. He said he tried to run the REPAIR CD for Win7 and it
failed. That's all I know. I have never used Win7 which makes it hard
to suggest anything. I only know it's similar to XP but much more
complicated (from watching someone use it).

Thanks

Tell your friend to download, install, *update* and run a quick scan
with MBAM freeware from:

<http://malwarebytes.org/mbam-download.php>

In a reply to this thread, report specifics/results.
 
David beat me to the punch and may have offered the best solution.

David. Quit sucking up to this net bully. He beat you to the punch
doing what? Recommending the OP set up an account elsewhere to solve
the problem? That's known colloquially as 'blowing somebody off'.

I like your download an online scanner solution better.

The trouble with "David" is that he is arrogant. Constantly pushing
his front end virus scanner when dozens of free, better solutions
exist. Arrogantly insisting his answer is always right. And not
taking shiite from anybody. Well it's payback time--time to eat some
humble pie from the likes of me. Yes, I dish out shiite as much as
take it in.

So Fsck "David". Screw him and his lame answers. I know more than
him. I'm more helpful than he is any day.

RL
 
Juan wrote:

[...]
You wrote "I like your download an online scanner solution better."
1PW suggested downloading MBAM which is NOT "an online scanner solution".

....and from the folks at the same place David suggested no less, with
knowledgeable help to go with it.

Not that 1PW couldn't mediate, but it *is* best to have the person with
the problem machine do the actual work (for many reasons).
 
David. Quit sucking up to this net bully. He beat you to the punch
doing what? Recommending the OP set up an account elsewhere to solve
the problem? That's known colloquially as 'blowing somebody off'.

Not just somewhere else, a respected antimalware company which has a
good forum with an intelligent staff.
I like your download an online scanner solution better.

Likely won't help or succesfully download, if he's got what I think he
has. You don't have much experience obviously, dealing with this sort
of thing. He's better off following Mr. Lipman's advice. He'll get the
help he needs there by people who know what they're doing.
The trouble with "David" is that he is arrogant. Constantly pushing
his front end virus scanner when dozens of free, better solutions
exist. Arrogantly insisting his answer is always right. And not
taking shiite from anybody. Well it's payback time--time to eat some
humble pie from the likes of me. Yes, I dish out shiite as much as
take it in.

A few comments, if I may... David wrote a front end which allows easy
access to some of the most well known and respected antivirus scanners
in the industry. Several of those companies have provided keys
specifically for David's program. David's program *isn't* a scanner.
It's a front-end which allows you, direct access to several on demand
scanners at the press of a button. In fact, I find it so useful, I
include it on my toolkit iso.
So Fsck "David". Screw him and his lame answers. I know more than
him. I'm more helpful than he is any day.

With all due respect, I tend to disagree.
 
RayLopez99 said:
So Fsck "David". Screw him and his lame answers. I know more than
him. I'm more helpful than he is any day.

RL

You do not even try to give help.
So sad.
Buffalo
 
Likely won't help or succesfully download, if he's got what I think he
has. You don't have much experience obviously, dealing with this sort
of thing. He's better off following Mr. Lipman's advice. He'll get the
help he needs there by people who know what they're doing.

What do you think he has?

He has another computer with XP, he can download what is needed and
put it on a flash stick (assuming he can access his USB ports).

What should he download?

Yes, it's tough helping him. I know nothing about Windows7 at all,
but he knows I can make older versions of windows (XP and below) do
most anything, so he thinks I can fix it. I said I'd try, but thats
all I can do is TRY.

I told him to NEVER open another suspicious email, and DO NOT open
that same email on his XP machine.

If he had an older OS, I'd just suggest booting from DOS and
formatting the drive, but like I said, I know nothing about Win7 and
dont know if thats possible, and he probably dont even have a floppy
drive. It's a newish laptop that came with Vista, he upgraded it to
Win7. The guy is a good friend, but he dont even know how to rename a
file, so that makes it tough to help him.
 
What do you think he has?

One of the new fake AV trojans. When you mentioned it keeps asking him to
fork out cash, it was a good clue. :)
He has another computer with XP, he can download what is needed and
put it on a flash stick (assuming he can access his USB ports).

What should he download?

Malwarebytes software, superantispyware and David Lipman's multiav.
Sysclean by trend micro is also a helpful program. However, it's not a
one click download. You would have to do a little bit of prep work before
you could send it along to your friend.
Yes, it's tough helping him. I know nothing about Windows7 at all,
but he knows I can make older versions of windows (XP and below) do
most anything, so he thinks I can fix it. I said I'd try, but thats
all I can do is TRY.

Do you have physical access to the machine?
 
A friend of mine has Windows7. He opened some email and it has caused
his computer to not work properly. He's not very computer literate
and lives too far away to personally go and help him. Besides that, I
know nothing about Win7. I run XP, 2000, and 98 on different
computers. I have never played with Vista or Win7. (who needs that
bloated crap anyhow).

Anyhow, maybe someone can tell me what to email him to try to fix the
problem. Don't microsoft have some sort of virus software he can use?
He has some sort of AV software installed. I think it's Avast. It
will not fix the problem and keeps telling him he has to pay $49 to
get it to work. I told him to try to disable it. Maybe its that
thing causing all the problems.

I know you dont have much to go on. I dont know anymore. But maybe
some of you might suggest what virus may be going around in emails
this week, and some possible fix he can try. I'll forward this to
him, and guide him thru it. He deleted the email so there is little
more to go on. He said he tried to run the REPAIR CD for Win7 and it
failed. Thats all I know. I have never used Win7 which makes it hard
to suggest anything. I only know it's similar to XP but much more
complicated (from watching someone use it).

Thanks

Your friend probably has one of the "rogue spyware" problems like the
bogus "MS Removal Tool".

It's possible that it wasn't an email that caused it, the crap is
delivered also by hi-jacked 'legitimate' websites as well.

As other have said, MBAM (Malware Antibyte's Anti-malware) is excellent
at fixing these issues. Been Dere, Dun Dat just last weekend with a
(remote) friend.

(FWIW, I run Avast6 "free", MBAM "paid", and the Win7 firewall on this
win7 machine. Sometimes they fight with each other, but I'll deal with it)

Avast itself is pretty good at catching this, but the freeware version 5
is now pretty lame. I*f your friend hasn't upgraded to Avast 6 (free),
this could be how the crap got there.

What usually happens with "rogue spyware" infestations is that they
block access to legitimate "good fixes' (as even updating the present
AVAST). Same crap also will block programs unless in "SAFE" mode, so
that's why the following is needed. I've seen some of these let a "good
fix" program start in "normal" Windows, then crash said program. See below.

There's other fixes available, (and I hope some of the other regulars
will add their ideas as well.. hint/hint..)

But this is the way "We" (friend and I) handled "MS Removal Tool"
(and a lot of others as well from previous experience)

Can your friend receive emails with attachments now? Or have access to
another *infested* computer that will?

For you, go to http://www.malwarebytes.org/products/malwarebytes_free
and download the setup file for the free MBAM.

Save it where you know where it's at, then rename it to something like
'slammer.exe'. (MBAM setup doesn't care 'what' name it uses, in fact
that's one of their own recommended tricks)

Then email it to your friend. Tell him to just "save the file" (to
somewhere easy to remember), not run it yet. If it has to be done via a
different pooter, have friend save it to a USB stick or burn to a CD.

However you can get the renamed MBAM to your friend, do it.

When your friend has the "renamed MBAM" on hand, it's time to slay the
dragon.

The KEY item is starting Windows in "SAFE Mode". (Win XP thru 7's safe
mode is a little funky, but it works for this)

Getting to SAFE mode is sometimes tricky, it's a boot timing issue.

(to explain to friend)

Have your friend re-start his pooter. As soon as the BIOS splash screen
appears, start tapping the "F8" key as fast as possible. It may not work
at first, it may bounce you into BIOS. "Learning Experience" I guess. It
may take a few tries. On some pooters, going the "F8" machine-gun tap as
soon as the pooter beeps is the key.

Eventually, you'll get to the Windows "Boot Menu".
It's not mouse-able, use the arrow keys to select.

"Safe mode with networking support' is best, but just "Safe Mode" will
probably work. Have your friend select one of those and hit the Enter key.

There will be a lot of text-crap flying past, but finally it will open
into a "lousy-looking" Windows screen. Accept the "SAFE mode" warnings
and move on. (Don't worry about the lo-res screen or the strange way the
desktop icons show, it's jut the way it is)

Just accept it via the dialog box and move on.

Now have your friend install MBAM from the saved email, the USB stick or
the CD. Remember, it's with the name you renamed it as.

There may be some 'funky windows' about permissions, if worst case,
'right-click" > run as administrator.

After installing MBAM, run it. (still in safe mode).

I'll bet it nukes the crap~

But after, you'll have to set up some kind of better security on said
friend's pooter.

I've kept many folks "free" with just Avast 6 "free" and MBAM and the
Windows firewall, but all of the above need "user updating". If your
friend can't do that reliably, you'll probably have to force them into a
paid 'security suite". It saves hand-holding

But now, you have to do some 'preventative' stuff for your friend

Right now, I do recommend the Avast "avast! Internet Security 6"
(http://www.avast.com/internet-security) It may take some game-playing,
but there's a 3-year plan for $70 running right5 now.

As much as I like MBAM, (and my own homebrew security suite), it takes
some skills to make this work. For cl00bies (your friend ?), a suite is
the best answer.

As a final, have you ever tried a 'remote assistance' app?
It saves the hassle of (remote) eye-mouth to (you) ear-mouth--whatever
condufuation.

I've done the Windows "Remote Assitance' app, but (as usual) M$ makes it
a hard thing to use. It doesn't work thru even the lamest firewalls
without severe tweaking.

My present favorite for that is "TeamViewer'
(http://www.teamviewer.com). I've had good luck with that.

Hope this helps....




































--
"Shit this is it, all the pieces do fit.
We're like that crazy old man jumping
out of the alleyway with a baseball bat,
saying, "Remember me motherfucker?"
Jim “Dandy” Mangrum
 
Too funny.  
Lopez you are a ****ing joke and a troll.

That's no way to treat a fellow Hispanic.
You are pissed because he put you in your place for exccessive cross
posting and trolling.

Nope, not true.
Lipman has been posting in this group since its inception.  He is
sometimes wrong but more often right.  He is honest and has even
apologized when wrong.  You on the otherhand are just another FBN troll
that we see come and go.

Nope. And what is "FBN"?
You don't evenm know what you are writing about.
You wrote "I like your download an online scanner solution better."
1PW suggested downloading MBAM which is NOT "an online scanner solution". 

Nope. What Lipmann suggested is becoming a member of this group that
sells some sort of malware program. From their website:

"Why Do You Need Malwarebytes?
Malwarebytes products have a proven record of protecting computers by
completely removing all forms of malware, including viruses, Trojans,
spyware, adware and rootkits. When it comes to the safety of your
computer, Malwarebytes provides the ultimate in protection from the
cutting edge of technology!"

So there you have it. Lipmman is promoting "Malwarebytes". But it's
a paid for product. Back in the days, there was a forum called
"CastleCops" that really did do what Lipmann claims this forum does--
that is, volunteers would suggest how to get rid of viruses (I used it
several times). It was pure volunteers, nothing commercial. I even
donated money to them via Paypal. Unfortunately, in Dec 2008 they
shut down--apparently they were harassed by somebody (who is unclear--
it may have been hackers, or perhaps even commercial shops that
resented CastleCops taking business from them). Anyway, all forums
now that devote themselves to "helping" people are in fact commercial
operations, and that means they want to get their hand on your
wallet. Lipmann is a promoter or facilitator for these outfits--as
evidenced by them giving him rights to use his front end program that
he pushes in his sig file, which serves as a gateway to these
commercial operations.

In short, Lipmann is impure--his motives are not altruistic 100% IMO.

RL
 
RayLopez99 wrote:

[his usual idiotic stuff, which I snipped]

David's program has nothing to do with the Malwarebytes' site, nor their
program (MBAM)- which is a *free* malware removal program.

They do require payment for their active protection version though.
 
Nope. What Lipmann suggested is becoming a member of this group
that sells some sort of malware program. From their website:

While malwarebytes does have a paid version, you aren't forced to
purchase it, and, you don't need to be running the paid for version in
order to get help with a malware problem. They don't force it on you,
they don't advertise it and the software itself doesn't pop up
reminder screens or otherwise nag you about registering it. In todays
software world, those are rare aspects, and I appreciate them for
doing it.
So there you have it. Lipmman is promoting "Malwarebytes". But
it's a paid for product. Back in the days, there was a forum called
"CastleCops" that really did do what Lipmann claims this forum
does-- that is, volunteers would suggest how to get rid of viruses
(I used it several times). It was pure volunteers, nothing

Malwarebytes has a paid for version, as I said above. Lipman was
recommending a sound method for the OP to have his/her issue resolved.
Many of the forum techs at malwarebytes were castlecops members, and,
members on other antimalware forums. It's a pretty tight knit
collection of people, the antimalware scene. :)

Incidently, castlecops members rarely offered assistance in actual
virus removal. Viruses replicate, intentionally. Most of these rogue
apps going around do not do that. They have no internal ability to
infect files nor do they possess worm functionality. They are
glorified trojans.
business from them). Anyway, all forums now that devote themselves
to "helping" people are in fact commercial operations, and that
means they want to get their hand on your wallet.

As I originally said, Malwarebytes forum will glady assist almost
(except BD) anyone for free, Never asking so much as a penny from you.
If you decide you like the software, you can, at your option pay a
onetime fee for a lifetime! license. They have no alterior motive,
they aren't trying to push a sale on you. They are there to help,
period.
Lipmann is a promoter or facilitator for these outfits--as
evidenced by them giving him rights to use his front end program
that he pushes in his sig file, which serves as a gateway to these
commercial operations.

The program doesn't serve as a gateway. It doesn't ask you to register
anything and it doesn't ask for donations. It doesn't popup
advertisements or send you to a vendor link to purchase a full
package. You are intentionally trying to mislead people here.
 
While Malwarebytes does have a paid version, you aren't forced to
purchase it, and, you don't need to be running the paid for version in
order to get help with a malware problem. They don't force it on you,
they don't advertise it and the software itself doesn't pop up
reminder screens or otherwise nag you about registering it. In today's
software world, those are rare aspects, and I appreciate them for
doing it.


Malwarebytes has a paid for version, as I said above. Lipman was
recommending a sound method for the OP to have his/her issue resolved.
Many of the forum techs at Malwarebytes were CastleCops members, and,
members on other antimalware forums. It's a pretty tight knit
collection of people, the antimalware scene. :)

Incidentally, CastleCops members rarely offered assistance in actual
virus removal. Viruses replicate, intentionally. Most of these rogue
apps going around do not do that. They have no internal ability to
infect files nor do they possess worm functionality. They are
glorified Trojans.


As I originally said, Malwarebytes forum will gladly assist almost
(except BD) anyone for free, Never asking so much as a penny from you.
If you decide you like the software, you can, at your option pay a
onetime fee for a lifetime! license. They have no ulterior motive,
they aren't trying to push a sale on you. They are there to help,
period.


The program doesn't serve as a gateway. It doesn't ask you to register
anything and it doesn't ask for donations. It doesn't popup
advertisements or send you to a vendor link to purchase a full
package. You are intentionally trying to mislead people here.

Dustin is 100% accurate here.

If I help someone on the Malwarebytes forum, I'll sometimes suggest
they subscribe to the PRO version to block the chance of getting
themselves in the trouble that got them there. If I'm a MBAM shill -
so be it.

I would recommend RL visit the forum and examine some of the threads.

BTW - my name isn't David but no harm.
 
Dustin is 100% accurate here.

Nope. He is not. He claims I was trying to intentionally mislead
people. Not my intent at all. So he's wrong. But if he's right
about Castlecops successor being Malwarebytes, I'll bookmark the site.
I would recommend RL visit the forum and examine some of the threads.

BTW - my name isn't David but no harm.

Nope. There is a harm. But that's the subject of another thread.

"Thanks for your help".

RL
 
RayLopez99 said:
Nope. He is not. He claims I was trying to intentionally mislead
people. Not my intent at all. So he's wrong. But if he's right
about Castlecops successor being Malwarebytes, I'll bookmark the site.

Damn Lopez, you are not logical and your memory must be failing. Get over
this stupid 'I'll get even' crap'.
Overall you are non-helpfull and just doing a 'vendetta' or 'coup' of some
kind.

Nope. There is a harm. But that's the subject of another thread.

"Thanks for your help".

RL

Buffalo
 
Nope. He is not. He claims I was trying to intentionally mislead
people. Not my intent at all. So he's wrong. But if he's right
about Castlecops successor being Malwarebytes, I'll bookmark the
site.

You first claimed David wrote a frontend virus scanner (obviously you
don't really know what front end means). When i explained what it
actually was, you accused him of being a shill.

You went off on a tangent with bad information. That seemed pretty
intentional to me, being as I explained what multi_av was several days
ago.
Nope. There is a harm. But that's the subject of another thread.

And it is?
 
You first claimed David wrote a frontend virus scanner (obviously you
don't really know what front end means). When i explained what it
actually was, you accused him of being a shill.

You went off on a tangent with bad information. That seemed pretty
intentional to me, being as I explained what multi_av was several days
ago.

Nope I dispute that.
And it is?

--

Nymshifting is misinformation.

Any other stupid questions, stupid? You'll get stupid answers.

RL
 
RayLopez99 wrote:
[...]
Nymshifting is misinformation.

Any other stupid questions, stupid? You'll get stupid answers.

.... as if you were capable of anything else.
 
Back
Top