|
Member Login:
|
|
 |
September 7th, 2003
|
Top | #1 |
Unregistered
Posts: n/a
|
Virus ??
Help me please !! Thank you. |
|
|
September 7th, 2003
|
Top | #2 |
Good grief Charlie Brown
Joined: May 2002
Location: Melbourne Australia
Posts: 5,920
Reputation: 560
Power: 183 |
Did you format (wipe the disk) or just reinstall over the top. Formatting should have wiped out any trouble you were having unless it was a virus that got into the bios.....but that's doubtful. Check this guide out & see if that is what you did.
|
|
|
|
September 7th, 2003
|
Top | #3 |
|
Unregistered
Posts: n/a
|
I booted from the xp cd and deleted the exisiting partitiion and formatted it in ntfs (Not the quick option). then installed xp.
Could it be the service pack update that i installed both times ?? (i doubt it would contain virus but maybe an errror) |
|
|
|
September 7th, 2003
|
Top | #4 |
|
Unregistered
Posts: n/a
|
Hola! First post here WOOHOO!
Anyway, if it really is a virus it could still be there after a full reinstall. The real nasty virus's of the world can do one of 2 things: 1) Write themselves to the Hidden SCSI boot sector on your hard drive 2) Write themselves to one of the EPROMS on your motherboard. A good example of this is BOARDTRASH. It writes itself to the keyboard controller chip on your MOBO. The way to get rid of this is use a low level format utility (avaiable from your hard disk manufacturer) on the drive and totally power off the system, remove the mains lead and the battery and wait for 5 mins. THis should do the trick On the other hand, amy not be a virus at all, just a slightly dodgy (ie amaged) install disk! Hope this was of some use 
|
|
|
|
September 7th, 2003
|
Top | #5 |
|
OSNN Veteran Addict
Joined: February 2003
Posts: 1,338
Reputation: 330
Power: 126 |
There is no indication as yet that this is a virus.
banter, could you please check the event log. You will find a message from Windows File Protection which will state the file that has been replaced and will point us in the right direction. StormFront, Welcome! Generally nowadays we don't seen viruses doing this. I have not come across a sample in some time that has used the "old hand" methods. Modern boards protection of EPROM and CMOS RAM is pretty good, makes its hard for malicious code to survive there. |
|
|
|
|
September 7th, 2003
|
Top | #6 |
|
Unregistered
Posts: n/a
|
Thanks Enyo
As for these viruses not occuring very much these days you are right. I am however a paranoid old git..... 
|
|
|
|
September 7th, 2003
|
Top | #7 |
|
Unregistered
Posts: n/a
|
I ran sfc/scannow and then looked at the event viewer. I think the files aren't actually being deleted but it says the files have a bad signature. What could have caused windows to think they have a bad signature?? Its affecting all (or almost all) the files in system32 folder.
|
|
|
|
September 7th, 2003
|
Top | #8 |
|
OSNN Veteran Addict
Joined: February 2003
Posts: 1,338
Reputation: 330
Power: 126 |
If SFC cant verify the signature it could be that the Cryptographic Services service is not running, ensure that it is. Windows cant do signature checking without this.
|
|
|
|
|
| Bookmarks |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| New Virus windows virus | mooo | Windows Desktop Systems | 10 | August 19th, 2005 1:09am |
| Is there an anti-virus that stops the virus until I run a scan? | veronica | Windows Desktop Systems | 26 | August 28th, 2004 7:53pm |
| MP3 with virus | WiredBrain | Windows Desktop Systems | 14 | November 10th, 2003 7:25am |
| Virus | AlphaGremlin | Windows Desktop Systems | 3 | September 13th, 2003 2:49pm |
| virus ? | Hud | Windows Desktop Systems | 18 | July 21st, 2002 5:20am |
