Got Virus - what to do?

Viruses, hackers and crackers
Post Reply
Siemens
Registered User
Posts: 2812
Joined: 01 Jul 2005, 02:00
Location: somewhere over the rainbow where katie melua is running from me.

Got Virus - what to do?

Post by Siemens »

A friend came over with 2 external harddrives. I plugged the first one in and Avast immediately gave a warning that there is a virus and the virus has been moved to the chest. I asked my friend whats with the virus, he said I don't have to worry it only affects Vista and Windows 7. To his suprise I was running Vista :roll:

Anyway, with Avast catching the virus I thought all is good. That was not the case. Ever since then Windows has slowed down a lot. It also often just freezes. I've noticed it mostly happens when I'm online. I've updated avast and run a scan and everything seems to be clear. I'm certain it is related to that virus. What do?
Last edited by Siemens on 27 Apr 2011, 10:17, edited 1 time in total.
Image
"Friends are a lot like potatoes. If you eat them they die." - Stuart
JollyJamma
Registered User
Posts: 446
Joined: 21 Dec 2010, 09:02

Re: What do?

Post by JollyJamma »

Step one, punch friend in face.
step two, boot up in safe mode in scan
Install and scan with SpyBot S and D

check booting items in 'msconfig' and programs running in memory.
I no longer think of myself as Atheist however I reject religion as a concept where you must do x because someone says so. May contain nuts.
User avatar
Stuart
Lead Forum Administrator
Posts: 38503
Joined: 19 May 2005, 02:00
Location: Home

What do?

Post by Stuart »

First Ctrl+Alt+Del and see if anything unusual is running in Task Manager. Then send your friend a package containing a fine, white powdery substance. It may be acceptable to reverse the order of these to-dos.
Image
Nuke
Registered User
Posts: 3515
Joined: 28 Feb 2004, 02:00
Processor: Xeon E5620
Motherboard: Asus P6T6 Workstation
Graphics card: MSI GTX770
Memory: 24GB Hynix
Location: ::1

Re: What do?

Post by Nuke »

One reason external hdds and flash drives only goes into my Linux box that act as file server. No nasty surprises.
Image
jee
Registered User
Posts: 19336
Joined: 03 Jun 2003, 02:00
Location: a hole so deep...

Re: What do?

Post by jee »

Huns, please find a better subject heading?
"Integrity" and "integer" both contain a Latin root meaning "whole; complete." The root sense, then, is that people may be said to be acting with integrity when their beliefs, words, and actions have a sense of unity or wholeness.
Siemens
Registered User
Posts: 2812
Joined: 01 Jul 2005, 02:00
Location: somewhere over the rainbow where katie melua is running from me.

Re: What do?

Post by Siemens »

Task Mangaer shows nothing really suspicious thats chowing the resources. And whenever it starts to slow down it's almost impossible to access the task manager.
I downloaded the latest Spybot and updated it. It found 3 bad cookies from internet explorer which I don't use.

The avast chest states the virus name is AutoRun-S[wrm] I googled it and cant seem to find anyone who experience the same symptoms as what I am. It can't be coincidence? right?
Image
"Friends are a lot like potatoes. If you eat them they die." - Stuart
User avatar
hamin_aus
Forum Moderator
Posts: 18363
Joined: 28 Aug 2003, 02:00
Processor: Intel i7 3770K
Motherboard: GA-Z77X-UP4 TH
Graphics card: Galax GTX1080
Memory: 32GB G.Skill Ripjaws
Location: Where beer does flow and men chunder
Contact:

Re: What do?

Post by hamin_aus »

Actually I think the heading perfectly fits the subject.

Given the calibre of "friends" Siemens has he is clearly in the herp contingent of the derp brigade.
Image
Siemens
Registered User
Posts: 2812
Joined: 01 Jul 2005, 02:00
Location: somewhere over the rainbow where katie melua is running from me.

Re: What do?

Post by Siemens »

jee wrote:Huns, please find a better subject heading?
Fixed

jamin_za wrote:Actually I think the heading perfectly fits the subject.

Given the calibre of "friends" Siemens has he is clearly in the herp contingent of the derp brigade.
Forever alone
Image
"Friends are a lot like potatoes. If you eat them they die." - Stuart
RuadRauFlessa
Registered User
Posts: 20576
Joined: 19 Sep 2003, 02:00
Location: Bloodbank

Re: Got Virus - what to do?

Post by RuadRauFlessa »

Siemens wrote:
jee wrote:Huns, please find a better subject heading?
Fixed
Nope fixed it for you properly
:rock: :rock: :rock: :rock: :rock: :rock: :rock: :rock: :rock: :rock:
Spoiler (show)
Intel Core i7-2600k @ 3.4GHz
Corsair Vengence 2x4GB DDR3 2000MHz
Thermaltake Toughpower 850W
ASUS nVidia GTX560 1GB
CoolerMaster HAF 932
Siemens
Registered User
Posts: 2812
Joined: 01 Jul 2005, 02:00
Location: somewhere over the rainbow where katie melua is running from me.

Re: Got Virus - what to do?

Post by Siemens »

RuadRauFlessa wrote: Nope fixed it for you properly
Who is this Nope?
Image
"Friends are a lot like potatoes. If you eat them they die." - Stuart
KALSTER
Forum Moderator
Posts: 5439
Joined: 12 Oct 2008, 02:08

Re: Got Virus - what to do?

Post by KALSTER »

Get MSE
"It is the mark of an educated mind to be able to entertain a thought without accepting it." - Aristotle
Intel i5 2500; AsRock Z77 Extreme 4; Asus GTX580; 4x 2GB DDR3 1333; Intel 520 240GB SSD + 2x WD 3TB + 2TB Samsung; Samsung 22X DVD/RW; 23" LG W2343T-PF; Huntkey 700W
User avatar
Ron2K
Forum Technical Administrator
Posts: 9050
Joined: 04 Jul 2006, 16:45
Location: Upper Hutt, New Zealand
Contact:

Re: Got Virus - what to do?

Post by Ron2K »

Open up the command line and type in "format c:". Any problems that you are experiencing with this virus will magically cease after a few minutes.

(Seriously folks - I'm not joking.)
Kia kaha, Kia māia, Kia manawanui.
Nuke
Registered User
Posts: 3515
Joined: 28 Feb 2004, 02:00
Processor: Xeon E5620
Motherboard: Asus P6T6 Workstation
Graphics card: MSI GTX770
Memory: 24GB Hynix
Location: ::1

Re: Got Virus - what to do?

Post by Nuke »

Deleting System32 is also an option. It will make your pc faster and make it virus proof.
Image
User avatar
Stuart
Lead Forum Administrator
Posts: 38503
Joined: 19 May 2005, 02:00
Location: Home

Got Virus - what to do?

Post by Stuart »

Siemens wrote:Task Mangaer shows nothing really suspicious thats chowing the resources. And whenever it starts to slow down it's almost impossible to access the task manager.
You did select to see tasks for all users? And checked systematically to see that you fare happy with all running processes? It's kinda difficult to solve a problem if you can't find out what's causing it. Otherwise just follow iRon's advice.
Image
User avatar
Synthesis
Registered User
Posts: 14517
Joined: 25 May 2006, 02:00
Location: Location, Location
Contact:

Re: Got Virus - what to do?

Post by Synthesis »

Download this 4MB file. Put it on your desktop. Disable your antivirus and run it. You'll be as good as new in 30 minutes.

http://www.bleepingcomputer.com/downloa ... s/combofix

Then for future protection, get a program like the following to catch these "autorun" viruses from external USB devices.

http://www.autorunremover.com/effective-antivirus.html

And one other thing. Another freeware program you can't be without is "ccleaner" it cleans up your system nicely and you'll see a decent improvement in speed.

http://www.piriform.com/ccleaner

P.S. disable system restore before you do any of this. Your virus is hiding there. This will delete all files. Then don't forget to re-enable it.
Last edited by Synthesis on 27 Apr 2011, 18:46, edited 3 times in total.
Image
User avatar
Synthesis
Registered User
Posts: 14517
Joined: 25 May 2006, 02:00
Location: Location, Location
Contact:

Re: Got Virus - what to do?

Post by Synthesis »

Sorry :oops: quote and edit buttons swapped places...
Image
User avatar
Prime
Registered User
Posts: 27729
Joined: 01 Mar 2004, 02:00
Location: Getting into trouble
Contact:

Re: Got Virus - what to do?

Post by Prime »

And never ever open anything with the autorun dialogue!
Siemens
Registered User
Posts: 2812
Joined: 01 Jul 2005, 02:00
Location: somewhere over the rainbow where katie melua is running from me.

Re: Got Virus - what to do?

Post by Siemens »

Thanks Synthesis and everyone else :)
Image
"Friends are a lot like potatoes. If you eat them they die." - Stuart
User avatar
Synthesis
Registered User
Posts: 14517
Joined: 25 May 2006, 02:00
Location: Location, Location
Contact:

Re: Got Virus - what to do?

Post by Synthesis »

Sure no problem.
Give this thread a read:

http://forums.pcformat.co.za/viewtopic.php?f=24&t=36364

There's some suggestions there as well for you.
Image
Siemens
Registered User
Posts: 2812
Joined: 01 Jul 2005, 02:00
Location: somewhere over the rainbow where katie melua is running from me.

Re: Got Virus - what to do?

Post by Siemens »

Yeah the thing is that thread helps to keep the nasty off the flash drive. In my case the flash drive infected me. However I somehow figured out that the freezing was not caused by a Virus but by uTorrent(which err I use for completely legal stuff of course).
Image
"Friends are a lot like potatoes. If you eat them they die." - Stuart
Post Reply