super virus

[DrBejar]

Hi everyone!
My friend told me she has a bunch of virus on her computer and she has two account on the computer.One is the admin and other is the guest, she said that she can’t do anything on the admin account only on the guest. Also she didn’t tell me specifically what happens, but how do I remove it?
When I get more details about what happens I’ll edit my post.

How would I boot into safe mode, like when I start up it’s F8, but if that doesn’t work I have to change it in the msconfig. What if I can’t run the msconfig? I know I can do safe mode try that, but if that doesn’t work what other option is there? I also wanted to know that if I have to reinstall windows, can I give her a copy of windows that I have.I used it once with the license and then about 4 months later I went to windows 7.

oh, what if i install malwarebytes and see if that works to?

 

[HonorGamer]

get a usb device and download a anti virus onto that. transfer it to her computer, and install. do a virus scan, and see if you can find any viruses. If so do as recommended. If you can't get anything to work, the only thing i could recommend is to wipe the HDD completely(possibly a DoD 7 lap over right). And then re-install windows.

 

[yowanvista]

Hi everyone!
My friend told me she has a bunch of virus on her computer and she has two account on the computer.One is the admin and other is the guest, she said that she can’t do anything on the admin account only on the guest. Also she didn’t tell me specifically what happens, but how do I remove it?
When I get more details about what happens I’ll edit my post.

How would I boot into safe mode, like when I start up it’s F8, but if that doesn’t work I have to change it in the msconfig. What if I can’t run the msconfig? I know I can do safe mode try that, but if that doesn’t work what other option is there? I also wanted to know that if I have to reinstall windows, can I give her a copy of windows that I have.I used it once with the license and then about 4 months later I went to windows 7.

oh, what if i install malwarebytes and see if that works to?

Use Malwarebytes in safe mode with networking

 

[HonorGamer]

Hi everyone!
My friend told me she has a bunch of virus on her computer and she has two account on the computer.One is the admin and other is the guest, she said that she can’t do anything on the admin account only on the guest. Also she didn’t tell me specifically what happens, but how do I remove it?
When I get more details about what happens I’ll edit my post.

How would I boot into safe mode, like when I start up it’s F8, but if that doesn’t work I have to change it in the msconfig. What if I can’t run the msconfig? I know I can do safe mode try that, but if that doesn’t work what other option is there? I also wanted to know that if I have to reinstall windows, can I give her a copy of windows that I have.I used it once with the license and then about 4 months later I went to windows 7.

oh, what if i install malwarebytes and see if that works to?

Use Malwarebytes in safe mode with networking

Wouldn't this mainly be a virus to do this? Or could Mal-ware do this as well?

 

[DrBejar]

get a usb device and download a anti virus onto that. transfer it to her computer, and install. do a virus scan, and see if you can find any viruses. If so do as recommended. If you can't get anything to work, the only thing i could recommend is to wipe the HDD completely(possibly a DoD 7 lap over right). And then re-install windows.

what type of anti virus can i get to help?
what's a DoD 7 lap? :shock:

 

[DrBejar]

i have Mal-ware download already, so i install it in safe mode?

 

[HonorGamer]

what type of anti virus can i get to help?
what's a DoD 7 lap?

You could get Microsoft security Essentials(which I use, and most of the people here). Or i also recommend Avast! Free Anti-Virus.

And DoD wiper is a department of Defense hard drive wiper that writes zero's to the drive, and not missing anything. It goes over the HDD 7 times to make sure everything is zero'd.

i have Mal-ware download already, so i install it in safe mode?

Yes, but make sure you do the same with that as the anti-virus.

 

[Golden]

Hi DrBejar,

First thing is first : malware and viruses are exactly the same thing. Malware is a general term used to describe any malicious software, be it classic viruses, worms, trojans etc.

I very strongly recommend following yowanvistas advice : download, install, update and run a FULL scan using Malwarebytes in Safe Mode with Networking. Post the results here. Once we know what types of infections you have, we can tackle this further.

For your information, DoD7 refers to a secure wipe of hard disk using a Department of Defense algorithm that writes to the disk 7 times. Its a waste of time and effort : you can clean a disk of any malware just as easily by doing a secure wipe of the disk using the CLEAN ALL command of Windows DISKPART.

Let me know if you need more help or guidance.

Regards,
Golden

 

[DrBejar]

Hi DrBejar,

First thing is first : malware and viruses are exactly the same thing. Malware is a general term used to describe any malicious software, be it classic viruses, worms, trojans etc.

I very strongly recommend following yowanvistas advice : download, install, update and run a FULL scan using Malwarebytes in Safe Mode with Networking. Post the results here. Once we know what types of infections you have, we can tackle this further.

For your information, DoD7 refers to a secure wipe of hard disk using a Department of Defense algorithm that writes to the disk 7 times. Its a waste of time and effort : you can clean a disk of any malware just as easily by doing a secure wipe of the disk using the CLEAN ALL command of Windows DISKPART.

Let me know if you need more help or guidance.

Regards,
Golden

I see and when you say do it on a network, you mean have the computer like connected to the internet? sorry trying to know the right stuff

 

[Golden]

Thats correct.

 

[DrBejar]

I will let you guys know if this works!

 

[DrBejar]

Ok, what if i can't get into safe mode?

 

[Orbital Shark]

Are you getting any error messages appear when trying to access safe mode? What sort of behaviour is it displaying when you try to access anything in safe mode?

 

[imeem]

Also i suggest doing a boot up scan. This is because some viruses may not get detected after everything is loaded

 

[Crush]

Hi DrBejar,

Before doing anything too invasive with the infected machine let's get an idea of what we're dealing with here. Since the malware is running we'll have to stop it running before we can do anything.

First:

Please download and run RKill.

Download mirror 1 - Download mirror 2 - Download mirror 3

• Save it to your Desktop.
• Double click the RKill desktop icon.
• It will quickly run and launch a log. If it does not launch a log, try another download link until it does.
• Please post its log in your next reply.
• After it has run successfully, delete RKill.

Note: This tool only kills the active infection, the actual infection will not be gone. Once you reboot the infection will be active again! Please do not reboot until instructed further to do so.

====
Next, download OTL.exe by OldTimer to your Desktop.

• Close all windows and double click OTL.exe.
• Click Run Scan and let the program run uninterrupted.
• It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
• You may need to use two posts to get it all.

 

[DrBejar]

Are you getting any error messages appear when trying to access safe mode? What sort of behaviour is it displaying when you try to access anything in safe mode?

You know how you have to push F8, it wont boot into safe mode at all.
It's on a windows vista.

 

[DrBejar]

Also i suggest doing a boot up scan. This is because some viruses may not get detected after everything is loaded

How will i do a boot up scan?