Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Virus Issue

01 Sep 2010   #1
Gbsnplr

Windows 7 x64
 
 
Virus Issue

I have picked up a virus that shows itself as a virus protection program. It will not allow me to into msconfig and it has shut down Essentials. I have shut down the system and removed it from my network and online capabilities.

How can I delete this issue without reinstalling Windows? And I will reinstall if necessary.


My System SpecsSystem Spec
.
01 Sep 2010   #2
NoGoodNamesLeft

Windows 7 Home Premium 64bit
 
 

Have you tried starting your computer in safe mode without networking and then running a virus scan?
My System SpecsSystem Spec
01 Sep 2010   #3
dranfu

 

You can also use the tools (and the virus detection is decent, too) in SuperAntiSpyware

This program has a collection of tools that you can use to perform repairs, such as re-enabling msconfig, system restore, and other windows tools. If you can get to the net, you can try downloading a copy of malwarebytes, going into safe mode, and running a full scan.

However, because you have a virus written by a programmer who is diligent enough to disable MSE, I would bet money that in his code (malware code), he has probably spent the extra time to write functions to disable, or hide from, the majority of AV vendors (kapersky, malwarebytes, hitman, ESET, etc.) The more popular your Anti Virus program is, the more likely a malware writter has written code to look for it, and disable it. They are, after all, aware of these AV tools

The best method of scanning is to use a Live Boot CD. With these, you pop a cd in your cd-rom, an operating system is loaded into memory (from the cd-rom) and you scan your hard drive while it is off. Since windows isn't loaded, it's very hard for the viruses to hide. In fact, it's darn near impossible for them to hide. And since the windows os is off, the virus can't do anything to regenerate itself when its deleted, since it is unaware that it is being deleted.

If you're feeling frisky, you can read about Manually Cleaning Up a Virus Infestation
My System SpecsSystem Spec
.

01 Sep 2010   #4
Tews

64-bit Windows 8.1 Pro
 
 

What antivirus program/s have you used to clean your computer...
My System SpecsSystem Spec
01 Sep 2010   #5
Skulblaka

Windows 8 Professional 64-bit
 
 

Pretty much, go into "Safe Mode" then click "Run" in "Start Menu". Then type "MSConfig".

Go to "Startup" tab, then look for names of start up programs that stand out, no manufacturer or a very odd name like "ssjsufgg" etc.

This usually works, also you can go to "Services" tab, and do the same thing you did for "Startup".

If you find the virus listed, you can see the directory of it, just follow it and delete it, after that run a scan.
My System SpecsSystem Spec
01 Sep 2010   #6
dranfu

 

Quote   Quote: Originally Posted by Skulblaka View Post
Pretty much, go into "Safe Mode" then click "Run" in "Start Menu". Then type "MSConfig".

Go to "Startup" tab, then look for names of start up programs that stand out, no manufacturer or a very odd name like "ssjsufgg" etc.

This usually works, also you can go to "Services" tab, and do the same thing you did for "Startup".

If you find the virus listed, you can see the directory of it, just follow it and delete it, after that run a scan.
Good advice, and definitely useful in certain cases. but I think it is fair to note: that would only work for very simple infections, where it is easy to locate the offending program visually. More sophisticated Malware would not make itself so easy to be seen.
My System SpecsSystem Spec
01 Sep 2010   #7
Skulblaka

Windows 8 Professional 64-bit
 
 

Quote   Quote: Originally Posted by dranfu View Post
Quote   Quote: Originally Posted by Skulblaka View Post
Pretty much, go into "Safe Mode" then click "Run" in "Start Menu". Then type "MSConfig".

Go to "Startup" tab, then look for names of start up programs that stand out, no manufacturer or a very odd name like "ssjsufgg" etc.

This usually works, also you can go to "Services" tab, and do the same thing you did for "Startup".

If you find the virus listed, you can see the directory of it, just follow it and delete it, after that run a scan.
Good advice, and definitely useful in certain cases. but I think it is fair to note: that would only work for very simple infections, where it is easy to locate the offending program visually. More sophisticated Malware would not make itself so easy to be seen.
It is worth a try, I've done that every time I had to do come "cleaning" for others, majority of the computers I cleaned were easily fixed using this technique.

Alas it won't work every time, still effective and very worth the try.
My System SpecsSystem Spec
02 Sep 2010   #8
jimbo45

Linux CENTOS 7 / various Windows OS'es and servers
 
 

Hi there.

I personally would NEVER trust a computer that had an infection on it that was "ostensibly" removed by AV software.

I might be in total disagreement with 99.99% of other members on the Forum -- but relying on an Infected OS to clean itself up is a bit like asking the Fox to guard the chickens in the henhouse.

If you have a decent UNINFECTED backup image of the OS -- restore that. If you don't then IMO the only SAFE option is to re-install the OS.

ALWAYS TAKE REGULAR BACKUPS and you can avoid these types of problems.


This also shows the need for REGULAR BACKUPS - which you can easily scan to ensure they are virus free.


Even a 70 GB Windows installation doesn't take more than around 25 mins to backup or restore on a modest laptop using good backup software -- I use Acronis but there are others.

Cheers
jimbo
My System SpecsSystem Spec
02 Sep 2010   #9
Tews

64-bit Windows 8.1 Pro
 
 

+ 1 to everything you said Jimbo! I would NEVER trust an installation after an infestation... Thats why I'm so anal about imaging my drive (with Acronis).. Its so much easier to restore a clean image, than spending hours reinstalling the OS along with my programs....... +rep to you!!
My System SpecsSystem Spec
02 Sep 2010   #10
Borg 386

Win 7 32 Home Premium, Win 7 64 Pro, Win 8.1, Win 10
 
 

I agree with dranfu, you should try running a rescue boot up disk, which loads before the OS does.

There are several out there, I have all of them in my arsenal but I usually start with this one.

AVG Rescue Disk – Free AVG Bootable Antivirus CD

You have others boot disks to choose from also - Avira, Kaspersky, Bitdefender, etc. The links for these are also listed on the page
My System SpecsSystem Spec
Reply

 Virus Issue




Thread Tools




Similar help and support threads
Thread Forum
Virus issue, need help ASAP.
So, I've had this virus for a couple of weeks now and it has annoyed me, I've tried running Malwarebytes around 10 times now with no success, it detects the file, deletes it but it re-creates. It's until today the virus really scared the living soul out of me. It started to do some VERY weird...
System Security
Crytolocker Virus Issue
Morning all, We recently had a laptop which seemed to have the cryptolocker virus on it. We ran some scans on it, and wasn't aware of it being cryptolocker at the time. At the time, the tech noticed pop ups coming up at start up saying that files were locked, so the tech ran malware bytes and...
System Security
Anti Virus Pro Security issue
Hello, I've been passed an acer laptop on with the Anti Virus Pro Security ransom ware on. i have removed these before using safe mode but this one seems to be a little more inventive. when i log in in safe mode it boots me back out and restarts the laptop up in standard mode. same with...
System Security
Virus issue
hey friends, my friend has got 21 files affected by virus. Was getting an error. These excel & word files which are affected. We want to know how can we recover/back-up these files as they are really important without losing them forever??? Its a Dell laptop No AV, No Firewall, No external...
System Security
Back up issue after a virus.
I recently had some trouble with a virus. My Norton scanner cleaned the virus out, but it had changed my registry and some other files I do not know how to restore.(I think some of the virus is still present because my computer is slower then before) So I wanted to do a clean re-install of my...
General Discussion


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 09:59.
Twitter Facebook Google+ Seven Forums iOS App Seven Forums Android App