| virus question - Click HERE for Original Thread |
| sparkycivic |
Is there any possible way that a virus can survive formatting/reinstalling XP and coming back?
secondly... is there any serious flaws in the XP firewall which might allow a virus infection from the 'net?
I'm really stumped trying to fix a bud's computer, i've been through the registry, msconfig, the services manager, and cleaned IE of all "helpers" and active-x s hit, yet AVG still catches a trojan being stored in "c:\program files\common files\system\$usereg.dll" . i didnt' write the file name precisely, or the name of the trojan it was detecting(stupid me) but i know it was the same. I only formatted and installed this computer for him like 2 weeks ago, and he swears that he hasn't been to any porn sites, only MSN messenger, hotmail, and Limewire.
He has no hardware firewall or router, just a shaw extreme service modem, and onboard NIC.
I'm about to pull out the remaining hairs out of my head right soon if i dont' figure this shit out soon... |
|
|
| Wolfdio |
I can't see a virus surviving through a format. unless its on a cd or memory stick that is re-used.
Your buddy uses Limewire? Theres nothing but good clean fun in that. :lol: |
|
|
| PraxGTI |
There are some pesky virii that like to store themselves in your hard drives boot sector.
The only real way to get rid of them is to go into the Recovery console (have to boot to the XP setup disk) and then do a debug command on the hard drive.
Windows Firewall if active will protect windows from any of the internet auto-spreading virii to date. Just make sure that you are not installing Windows XP SP1, if you install SP1 it does not enable the firewall by default, you have to do it manually...then proceed immediately to windowsupdate.microsoft.com for your updates.
Good Luck~! |
|
|
| SilverNeonRacer |
WOW, I haven't run a debug since I worked at HP, it was common practice there.
There are a few, and very very few at that that will re-flash your BIOS, but normally they turn your computer into a paper wiegh rather than re-infect after windows is re-installed.
Most virus scanners now-a-days will scan the boot sector... Thats where good ol viruses like Monkey B liked to hide.
If ya don't want to do a Debug, at least do an old school Fdisk /mbr followed by an fdisk to delete and re-create the partition, then run the XP setup. The "partition util in the XP setup is a joke as far as cleaning up old partition tables and such goes. |
|
|
| baker_jeff |
| It was either hiding in the MBR, or your buddy picked it up from Limewire again. Debug, and tell him to stop using Limewire. |
|
|
| BlueTurboEGG |
"format /mbr" I believe is the command that will blast the mbr .
That should be enough to wipe anything that is trying to live there. AVG isn't the best thing to have either, it doesn't catch everything, I'd suggest putting some money into one of the powerhouse companies (Mcafee, Norton) and scan your machine with Adaware/Spybot. |
|
|
| SilverNeonRacer |
I've used AVG to catch stuff that both McAfee and Norton don't catch, Tend Micro's another good one.
McAfee for home users sucks. Mcafee enterprise edition is much better. |
|
|
| sparkycivic |
ill have to try the mbr thingy if he continues to have problems... I was unable to get trend's online scanner to run at all, which makes me think that there's still something on his machine. when i go back there ill do a hijack this, and see if i can find the answer.
I never saw anything in the download folder besides mp3 files, which was the first thing i checked. I have been using the same installer version of limewire on my personal machine here, and have had no problems with it.
you won't catch me putting Norton on anyone's machine who i want to remain friends with- because I used to work at an internet helpdesk, so i know better. he might be willing to buy f-prot or mcaffee though.
Thanks for all the advice guys. |
|
|
| n0c7 |
There are even viruses that can integrate themselves into the BIOS although they are very uncommon now adays.
Symantec/Norton has gone steeply downhill in the last couple of years.
format /mbr will rebuild the master boot record.
|
|
|
| edmCRX |
In terms of super quality malware software, try PrevX1.
I recommend it to all my customers.
|
|
|
| clapbak |
quote:
Originally posted by Wolfdio
I can't see a virus surviving through a format. unless its on a cd or memory stick that is re-used.
Your buddy uses Limewire? Theres nothing but good clean fun in that. :lol:
Yes it can stay.... |
|
|
| sparkycivic |
| no complaints thus far from him since i deleted a bunch of the shady files... maybe I got it . |
|
|
| clapbak |
ewido.com
download
and scan
gg virus's |
|
|
| element |
| kaspersky anti-virus is real good too |
|
|
| Kilroy |
| For excellent results in getting rid of malware, adware, spyware, etc., get Spyware Doctor and run it. It will get rid of any nasties on your PC as well as protect it from any of them running if you are infected. I had a run in with the Painter trojan on a friend's PC and it was the only program that would take care of it, it saved me hours of work tracking down and deleting files. |
|
|
|
|
|
