Computer got a virus, went to backup point, got virus scanners, virus is back...

#1
Hey Pit, Ever scence about tuesday, I got this virus, "You have 32 infections, buy the full version to heal your computer, enter name, adress, email, credit card number." I would format my harddrive, but...

It decided that I can't do that on startup! So I went to safe mode, (which I am on now) And went to a previous save point. (March 25th 2011) It was fine, I lost around 100gb of stuff on my harddrive, I got AVG virus scanner, got rid of around 20 viruses so far, then I got Malwarebytes malware remover... I used that, it told me to restart my computer, I restarted it, I got rid of hundreds of malware stuff, now I can't go on my computer regularly... So I can only go on in safe mode... I can't format my harddrive from startup, so what can I do to get my computer back to normal? I'm running Windows XP Service Pack 3.

Thanks, any positive help is REALLY needed.
No "Delete system 32 jokes"
#2
I've had this problem, I had to keep restoring earlier saves.

Any idea when you got it? I know next to nothing about computers though, but the computer thread is always helpful!

Edit: Upgrade to system33
Horseness is the whatness of allhorse.
We are all Neil Lennon
UG GT5 group
#4
What problem does it give you when you log on in normal mode (not safe)?

Also what do you want to do, fix or format?
🙈 🙉 🙊
#5
Usually when you do a system restore to an earlier date, all your files get moved somewhere if I remember correctly.

If you can, go into safe mode and look for them. Try to transfer them to an external hardrive or something.

If you need to format, you need to boot with your windows cd.
The content of this signature is pretty much irrelevant
#7
If you know what the virus is and what it's called you can always go hunt it in the registry and get rid of it. Risky though, as you can do damage if you delete the wrong thing.

If you've restored to a point you know windows wasn't infected it's probably quite advanced malware which people here probably couldn't help you with over the net.
Ironically... I'd say 'delete system32'... not in so many words. Basically backup your user files and re-install windows. It sounds like a pain but is probably the easiest option.
#8
I had no idea how I got the virus, it just happened, I don't have a credit card.

When I log in normally, nothing loads, I can go onto task manager, I see my cursor, but nothing else happens. When I right click nothing happens. No box comes up. So I'm basically stuck. Nothing works. No bar at the bottom or desktop icons. And I really don't care if I were to fix or fomat, I already lost 110gb of stuff.
#9
You'll probably have to reformat your computer using a repair disk, or an actual windows XP install disk.

Your virus scanner software probably detected a bunch of infected system files and deleted them which is why it wont start correctly.
BLANKBLANK
#10
you ost 100gb?

that isnt what system restore does. Either its been moved or that was virus that deleted that.


Also, try microsoft security essentials. Malware Avg and avast as well.
also i had a virus a lil while back that the only AV that found it was commodore.

just pwn the shit out of that virus,


also stop downloading shady porn and dont open files called, pornvideo.exe, thats a file not a video duh.
Sell and Promote your music TuneHub!



wy is yer mad at muy gramhar fer?


Quote by jimmyled
jimmybanks youre a genius.


aparently i ar smrt?
Quote by dyingLeper
jimmybanks youre a genius


GO SENS GO
#11
well i do not dl pron, ok? at all. none.

Just to clarify, I can't do anything on a normal startup. It's just blank with a cursor and my backround. All I can do is open up task manager. I got rid of the other virus I had. Plus deleting like 12 other viruses, along with the hundreds of malware stuff. It was al fine before I used malware bytes. Then it said restart to complete the process, then I waited 1/2 hr and my computer still hadnt started up.
#13
Quote by entity0009
What tasks is task manager running when you open it?


This, and a screen cap would be excellent.
#14
Quote by LolCatGuitar
well i do not dl pron, ok? at all. none.

Just to clarify, I can't do anything on a normal startup. It's just blank with a cursor and my backround. All I can do is open up task manager. I got rid of the other virus I had. Plus deleting like 12 other viruses, along with the hundreds of malware stuff. It was al fine before I used malware bytes. Then it said restart to complete the process, then I waited 1/2 hr and my computer still hadnt started up.



yeah sure sure ya didnt.


have you tried those AV's yet?
Sell and Promote your music TuneHub!



wy is yer mad at muy gramhar fer?


Quote by jimmyled
jimmybanks youre a genius.


aparently i ar smrt?
Quote by dyingLeper
jimmybanks youre a genius


GO SENS GO
#17
Quote by LolCatGuitar
Task manager runs absolutley nothing, it has tons of process open but no programs.
And how to screencap?


I'm pretty sure he meant the processes, the applications open won't tell you much, if anything.


And there should be a button on your keyboard at the upper right hand corner that says 'prt sc,' 'print screen,' or something along those lines. You then paste in paint, save, and upload to tinypic.com or something like that.
#18
Is this an internet virus that looks like a fake anti-virus?


or is this a popup and its own running program?


(that is causing the u have 32 errors etc)
Sell and Promote your music TuneHub!



wy is yer mad at muy gramhar fer?


Quote by jimmyled
jimmybanks youre a genius.


aparently i ar smrt?
Quote by dyingLeper
jimmybanks youre a genius


GO SENS GO
#19
Quote by SlayingDragons
I'm pretty sure he meant the processes, the applications open won't tell you much, if anything.


And there should be a button on your keyboard at the upper right hand corner that says 'prt sc,' 'print screen,' or something along those lines. You then paste in paint, save, and upload to tinypic.com or something like that.

He can't open paint remember

Edit: Scratch that, he might be able to. Task manager > New task > Type in mspaint and hit enter. Can't remember if you can do that on XP though.
🙈 🙉 🙊
Last edited by entity0009 at Apr 16, 2011,
#20
The way you can tell suspiscious processes most of the time is if there's no definition with the process. Be careful though that some don't have processes (csrss.exe for example) and if you can try to google what you think might be causing the problem.

Get rid of your restore points, and find that lil fucker that's giving you the problem. An easier way though is three easy steps:

Backup
Format
Reinstall.
#21
Quote by entity0009
He can't open paint remember

Edit: Scratch that, he might be able to. Task manager > New task > Type in mspaint and hit enter. Can't remember if you can do that on XP though.


Ah, I haven't had to go into safe mode on windows in forever, so I don't know much about what can and can't be done in safe mode. >.>
#22
The virus with the 32 errors is its own independant program, which disabled me to open up every single process and delete files. So safe mode to restore point. Go to restore point, get AVG, delete all viruses, everything is normal, get a couple programs, then I get malware bytes and it all stops working after I scanned it. I have to restart computer, unplug when it loads then load safe mode to get back onto ug and the internet, so I will do everything at once.
I stopped getting programs with that malware/spyware program though.

EDIT: I have no problems in safe mode though. I'm doing an avast full scan right now so it'll be done in a couple minutes.

Also if I go to:
C:\Documents and Settings\Coftropter\Windows
The folder is completley empty...
is that paticularly bad?
Last edited by LolCatGuitar at Apr 16, 2011,
#23
Quote by LolCatGuitar
The virus with the 32 errors is its own independant program, which disabled me to open up every single process and delete files. So safe mode to restore point. Go to restore point, get AVG, delete all viruses, everything is normal, get a couple programs, then I get malware bytes and it all stops working after I scanned it. I have to restart computer, unplug when it loads then load safe mode to get back onto ug and the internet, so I will do everything at once.
I stopped getting programs with that malware/spyware program though.



So malyware bytes deleted the viruses but now you cant restart the laptop?

but it will run into safe mode?


have you tried uninstalling malware bytes and seeing if it will restart?

...could be a bad driver that has become corrupted.
Sell and Promote your music TuneHub!



wy is yer mad at muy gramhar fer?


Quote by jimmyled
jimmybanks youre a genius.


aparently i ar smrt?
Quote by dyingLeper
jimmybanks youre a genius


GO SENS GO
#24
if you dont have any files that are really important on your hard drive, just format and reinstall windows. if you do have important files on your hard drive, use this as a lesson why you back up all your important files on an external device.
Remember through sounds
Remember through smells
Remember through colors
Remember through towns
-Modest Mouse, "Novocaine Stain"
#25
Quote by SlayingDragons
Ah, I haven't had to go into safe mode on windows in forever, so I don't know much about what can and can't be done in safe mode. >.>

I meant in normal mode, cause he can't see desktop and start bar, I'm more interested in the processes running when it doesn't work than when it does
🙈 🙉 🙊
#26
Quote by LolCatGuitar
The virus with the 32 errors is its own independant program, which disabled me to open up every single process and delete files. So safe mode to restore point. Go to restore point, get AVG, delete all viruses, everything is normal, get a couple programs, then I get malware bytes and it all stops working after I scanned it. I have to restart computer, unplug when it loads then load safe mode to get back onto ug and the internet, so I will do everything at once.
I stopped getting programs with that malware/spyware program though.

EDIT: I have no problems in safe mode though. I'm doing an avast full scan right now so it'll be done in a couple minutes.

Also if I go to:
C:\Documents and Settings\Coftropter\Windows
The folder is completley empty...
is that paticularly bad?

Not necessarily. The files inside may just be hidden from you. If Windows still boots up (in safe mode or otherwise) the files are still there.

Anyway, if you could get a screen cap of the task that your computer is running, it would be of great help. Try this to get paint working.

Hit Windows Key + r to bring up the run prompt. Type in "mspaint", and hit the print screen button with task manager showing. Paste it into paint, with CTRL + v if you need to, upload to your image sharing web site of choice and post it in here.
Quote by MakinLattes
I'd kill you and wear your skin.
Quote by Siv During Livh
To attempt to have intercourse with a hornet's nest is a very bad idea,

Voted UG's worst cross dresser.
Also voted #95 on UG's Top 100 2013. Like it means anything....
#28
Think you could get one on normal mode? (look a few posts back to see how to open paint)
🙈 🙉 🙊
#30
TBH right now im confused,


TS are there still virus' appearing?

or is the problem that you cannot restart your computer after running malware bytes?
Sell and Promote your music TuneHub!



wy is yer mad at muy gramhar fer?


Quote by jimmyled
jimmybanks youre a genius.


aparently i ar smrt?
Quote by dyingLeper
jimmybanks youre a genius


GO SENS GO
#31
Strange, it works normally after avast scanning it...

now i have scans from AVG, Avast! and Malware Bytes
But for the process pic, warning, large:
http://tinypic.com/r/30c7lw1/7
Everything SEEMS okay... My computer is still slow after getting rid of 100+gb...

^
My problem WAS that I ran malware bytes, it restarted my computer, then I couldn't get onto my normal computer mode and had to go onto safe mode, after making this thread and doing an avast scan, it seems to have gone away...
Last edited by LolCatGuitar at Apr 16, 2011,
#32
Quote by LolCatGuitar
Strange, it works normally after avast scanning it...

now i have scans from AVG, Avast! and Malware Bytes
But for the process pic, warning, large:
http://tinypic.com/r/30c7lw1/7
Everything SEEMS okay... My computer is still slow after getting rid of 100+gb...

^
My problem WAS that I ran malware bytes, it restarted my computer, then I couldn't get onto my normal computer mode and had to go onto safe mode, after making this thread and doing an avast scan, it seems to have gone away...



Well thats good news, sometimes it just works out.


As for a standard running anti-virus, i highly suggest microsofts own mse(microsoft security essentials), its regularly considered the best of free AV by sites like lifehacker and it takes up extremely low amounts of cpu consumption.

nobody knows their own operating system as well as microsoft and i think thats part of the reason it runs so well (atleast on win7)
Sell and Promote your music TuneHub!



wy is yer mad at muy gramhar fer?


Quote by jimmyled
jimmybanks youre a genius.


aparently i ar smrt?
Quote by dyingLeper
jimmybanks youre a genius


GO SENS GO