Virus?

Reply

  #1  
Old 11-01-11, 05:48 AM
Member
Thread Starter
Join Date: Mar 2002
Location: Ontario, Canada
Posts: 587
Virus?

Booted up one of my machines this morning & noticed that my network connection was X'd out. When I tried to Repair it, I was given a message to the effect that a service wasn't running & that I would have to manually start it. While I was reading this, I noticed that my antivirus (Avast Free) was also X'd out. Tried to start it manually but wasn't able to.

I'm assuming all this is attributable to a virus. Anyone know what's floating around out there that would produce these symptoms?

I know, a lot of viruses will do this ... just wondering if there is something new that was scheduled to deploy Hallow'een night.
 
Sponsored Links
  #2  
Old 11-02-11, 03:25 AM
Member
Join Date: Apr 2007
Location: Near Buffalo, NY
Posts: 4,239
Can you boot into Safe Mode and run Avast from there?

If not, download Avast onto a thumb drive and install it (over the existing version) from the thumb drive. Avast will reboot the machine and run a boot scan.

I haven't heard of any new viruses that triggered on Halloween, but there may have been something dormant on your machine.
 
  #3  
Old 11-02-11, 06:01 AM
Member
Thread Starter
Join Date: Mar 2002
Location: Ontario, Canada
Posts: 587
Yes, tried running Avast in Safe Mode but it was dead there too. Did a System restore and everything came back. From there, I did a few Safe Mode virus/malware scans but they returned nothing of note.

One scan noted rootkit activity but couldn't identify or remove it.

I was given a copy of HirensBootCD but haven't figured out how to run the rootkit killers supposedly on the disk. When I boot to it, all that appears in the menu has to do with disk repair, etc.

I think the System Restore will keep things running for a while ... until the next deploy time. Nasty bugger ... got into my edit machine too.

Can you recommend a good, all-purpose rootkit killer? I had a look at HIJACK THIS but it's a bit over my head.
 
  #4  
Old 11-02-11, 11:11 AM
Member
Join Date: Nov 2011
Location: United States
Posts: 1
It could be a virus or a conflict in services. Regardless, a couple of good rootkit killers are Kaspersky TDSSKiller and ComboFix (make sure you do a system restore prior to ComboFix).
 
  #5  
Old 11-02-11, 02:18 PM
Member
Join Date: Jan 2011
Location: United States
Posts: 2,446
You might try AVG free as that is supposed to have a anti-rootkit in it. You have to scan manually for the rootkits with AVGs free edition but they say once you do the program will eliminate rootkits. If you do that though make sure you remove Avast first as the two programs will conflict. You can always put Avast back on and AVG is free too. Good luck to you!
 
  #6  
Old 11-02-11, 05:40 PM
Member
Thread Starter
Join Date: Mar 2002
Location: Ontario, Canada
Posts: 587
Originally Posted by C.M.Sevilla View Post
It could be a virus or a conflict in services. Regardless, a couple of good rootkit killers are Kaspersky TDSSKiller and ComboFix (make sure you do a system restore prior to ComboFix).
I just ran ComboFix (in Safe Mode & normal Windows) ... it makes its own System Restore Point. Ran Kaspersky earlier today -- both reported no problems.

Would the System Restore I did eliminate the rootkit or is it still dormant?
 
  #7  
Old 11-02-11, 05:45 PM
Member
Thread Starter
Join Date: Mar 2002
Location: Ontario, Canada
Posts: 587
Originally Posted by hedgeclippers View Post
You might try AVG free as that is supposed to have a anti-rootkit in it.
I used to run AVG but it was such a resource hog that Ireplaced it with Avast ... maybe a bad decisiuon?
 
  #8  
Old 11-02-11, 05:55 PM
Gunguy45's Avatar
Super Moderator
Join Date: Dec 2007
Location: USA
Posts: 21,103
AVG did get bad with one of their updates (don't remember which one). Never used Avast for whatever reason.

MSSE has been working great for me.
 
  #9  
Old 11-02-11, 11:31 PM
Member
Join Date: Jan 2011
Location: United States
Posts: 2,446
I know I never liked Avast but this was back when I still had Windows 98 and not Windows XP so I can't really say but back then I always heard bad things being said about it in other forums,as for now no but it has been a while too. Maybe doing a Google or Yahoo search for reviews would help you out. When I started using Avast back during Windows 98 days AVG was quiting support of Windows 98 and I didn't have much choice. You are right though AVG as with any antivirus for that matter can be a resource hog. Another good source is to go to Pc Worlds website at Reviews and News on Tech Products, Software and Downloads | PCWorld and look for free antivirus reviews they are an excellent source for professional reviews. Good luck.
Originally Posted by Editor View Post
I used to run AVG but it was such a resource hog that Ireplaced it with Avast ... maybe a bad decisiuon?
 
  #10  
Old 11-03-11, 03:34 AM
Member
Join Date: Apr 2007
Location: Near Buffalo, NY
Posts: 4,239
Avast (free version) has kept my three machines running for three or four years now. It pops up warnings every now and then if it detects a threat.

My wife's laptop was infected by operator error after she ignored the warnings and opened an email attachment from a friend of hers. Turns out the friend's computer had been infected. Same symptoms as Editor's. That's how I found out about installing from a thumb drive and how Avast reboots and runs a boot scan. It found and removed the culprit.

In this case the virus had wiped out all the restore points, so I don't know if reverting to an earlier state would have solved the problem.
 
  #11  
Old 11-03-11, 09:30 AM
Shadeladie's Avatar
Super Moderator
Join Date: Jan 2005
Location: PA - USA
Posts: 4,174
Likes Received: 12
I use the free version of Avast also, on two computers. Haven't had any problems.
I use MSSE on another computer. Haven't had any problems with that, either.
 
Reply

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Thread Tools
Search this Thread
Display Modes