Home Forums Classifieds Blogs Today's Posts Search Social Groups



  
SIGN-UP
Notices

Glock Talk
Welcome To The Glock Talk Forums.

 
  
Reply
 
Thread Tools Display Modes
Old 12-05-2012, 21:38   #1
Drjones
Senior Member
 
Join Date: Sep 2002
Location: CA, just outside the United States
Posts: 17,912
Blog Entries: 1
Send a message via AIM to Drjones


Problems removing virus from Win 2000

I have a new client with a Windows 2000 PC they're using as a server.

It's caught a nasty virus that turns all your folders & files into applications - .exe

I've ran MalWareBytes, Microsofts Malicious Removal Tool, running ClamWin now...

I ran the "New Folder Removal" tool which seemed to fix it - for about 30 min.

The problem is that not only have none of the other tools found any infections but many tools I'm trying such as HitMan, ComboFix, etc. are not compatible with Win2K!!

What do I do?

My next step is going to be booting to a few different rescue CD's like BitDefender & Kaspersky. I was going to do that when I was on-site but all my bootable discs are DVDs, and of course this machine is so ancient it has a CD-ROM.

Help!
__________________
The danger to America is not Barack Obama, but a citizenry capable of entrusting a man like him with the Presidency.
Drjones is offline   Reply With Quote
Old 12-05-2012, 21:41   #2
TK-421
Senior Member
 
TK-421's Avatar
 
Join Date: Oct 2012
Posts: 6,843
Is Microsoft Security Essentials compatible with 2000?
TK-421 is offline   Reply With Quote
Old 12-05-2012, 22:41   #3
Drjones
Senior Member
 
Join Date: Sep 2002
Location: CA, just outside the United States
Posts: 17,912
Blog Entries: 1
Send a message via AIM to Drjones


Quote:
Originally Posted by TK-421 View Post
Is Microsoft Security Essentials compatible with 2000?

I believe so, yes.
__________________
The danger to America is not Barack Obama, but a citizenry capable of entrusting a man like him with the Presidency.
Drjones is offline   Reply With Quote
Old 12-05-2012, 23:10   #4
TK-421
Senior Member
 
TK-421's Avatar
 
Join Date: Oct 2012
Posts: 6,843
I'd give that a shot, I've had great success with Microsoft Security Essentials. It's pretty good at picking up the stuff that other programs don't detect.
TK-421 is offline   Reply With Quote
Old 12-06-2012, 00:21   #5
Drjones
Senior Member
 
Join Date: Sep 2002
Location: CA, just outside the United States
Posts: 17,912
Blog Entries: 1
Send a message via AIM to Drjones


Quote:
Originally Posted by TK-421 View Post
I'd give that a shot, I've had great success with Microsoft Security Essentials. It's pretty good at picking up the stuff that other programs don't detect.

....aaaand it's not compatible with Win2K.....
__________________
The danger to America is not Barack Obama, but a citizenry capable of entrusting a man like him with the Presidency.
Drjones is offline   Reply With Quote
Old 12-06-2012, 00:25   #6
1337-G
Armed
 
1337-G's Avatar
 
Join Date: Mar 2006
Location: The High Desert
Posts: 1,762


Lol time to fire that client.
__________________

To view links or images in signatures your post count must be 10 or greater. You currently have 0 signatures.
1337-G is offline   Reply With Quote
Old 12-06-2012, 00:27   #7
TK-421
Senior Member
 
TK-421's Avatar
 
Join Date: Oct 2012
Posts: 6,843
Quote:
Originally Posted by Drjones View Post
....aaaand it's not compatible with Win2K.....
Sounds like it's time to upgrade to a modern version of Windows.
TK-421 is offline   Reply With Quote
Old 12-06-2012, 00:37   #8
Drjones
Senior Member
 
Join Date: Sep 2002
Location: CA, just outside the United States
Posts: 17,912
Blog Entries: 1
Send a message via AIM to Drjones


Ok, I'm not going to hold my breath, but I *think* I may have gotten it....if not, I'm going to backup all the data tomorrow, put it on a different CLEAN PC, and get them upgraded to a NAS.

It's a real disaster over there; virtually all software is totally out of date, not a single computer running antivirus software...
__________________
The danger to America is not Barack Obama, but a citizenry capable of entrusting a man like him with the Presidency.
Drjones is offline   Reply With Quote
Old 12-06-2012, 00:48   #9
TK-421
Senior Member
 
TK-421's Avatar
 
Join Date: Oct 2012
Posts: 6,843
Quote:
Originally Posted by Drjones View Post
Ok, I'm not going to hold my breath, but I *think* I may have gotten it....if not, I'm going to backup all the data tomorrow, put it on a different CLEAN PC, and get them upgraded to a NAS.

It's a real disaster over there; virtually all software is totally out of date, not a single computer running antivirus software...
I have just the thing to make you feel better.

http://www.rinkworks.com/stupid/cs_abuse.shtml
TK-421 is offline   Reply With Quote
Old 12-06-2012, 07:59   #10
sbhaven
Senior Member
 
sbhaven's Avatar
 
Join Date: Jun 2008
Location: Constitution State
Posts: 4,707
Combofix is the last resort option that works great at cleaning nasty infections that other tools cannot clean. Sadly they no longer support Windows 2000.
__________________
Currently hiding behind enemy lines in a Blue State.
sbhaven is offline   Reply With Quote
Old 12-06-2012, 08:29   #11
GIockGuy24
Bring M&M's
 
GIockGuy24's Avatar
 
Join Date: Jul 2005
Location: With Amber Lamps
Posts: 3,987
Live CD's.

http://www.majorgeeks.com/Avira_Anti...tem_d6005.html

Avira is the easiest to use and works very well.

http://www.majorgeeks.com/Kaspersky_...isk_d6501.html

http://www.majorgeeks.com/Dr._Web_LiveCD_d6817.html

Dr. web is one of the best and combines different antivirus engines.

http://www.majorgeeks.com/F-Secure_Rescue_CD_d6628.html

I run F-Secure and Bitdefender in Linux on an external USB hard drive and F-Secure scans Windows well.

http://www.majorgeeks.com/Zillya_LiveCD_d7384.html

I haven't used the Zilla! live CD but it might be worth trying.

I Haven't used the Bitdefender Live CD in a long time but it looks like it might still be available.

Direct download.

http://download.bitdefender.com/resc...-rescue-cd.iso


http://bitdefender-rescue-cd.en.softonic.com/


Previous version.


http://forum.bitdefender.com/index.php?showtopic=36646


http://www.howtogeek.com/howto/36677...r-infected-pc/

Many live CD scanners.

http://www.askvg.com/download-free-b...re-and-others/


http://live.vipreantivirus.com/


 
Thank you for downloading Panda SafeCD from CNET Download.com
 

Direct download.

http://download.cnet.com/3001-2239_4-10967336.html


http://www.avg.com/us-en/avg-rescue-cd-download


Bitdefender internet scanner.

http://www.bitdefender.com/scanner/online/free.html

Some tools that may run in Windows 2000.

http://www.majorgeeks.com/RKill_d6848.html

http://www.majorgeeks.com/F-Secure_E...ean_d7729.html

http://www.majorgeeks.com/Kaspersky_...ool_d4515.html

http://www.majorgeeks.com/Sophos_Vir...ool_d7714.html

http://www.majorgeeks.com/Trend_Micr...ner_d6319.html

.
__________________
Despite some media reports, there were no AK-47s involved in the incident
GIockGuy24 is offline   Reply With Quote
Old 12-06-2012, 09:54   #12
Drjones
Senior Member
 
Join Date: Sep 2002
Location: CA, just outside the United States
Posts: 17,912
Blog Entries: 1
Send a message via AIM to Drjones


Wow, THANKS for all those links! Downloading much of that now....
__________________
The danger to America is not Barack Obama, but a citizenry capable of entrusting a man like him with the Presidency.
Drjones is offline   Reply With Quote
Old 12-06-2012, 10:25   #13
DoubleWide
Senior Member
 
Join Date: Sep 2008
Posts: 3,320
It's called a restore. Also tell your client that they should stop using an OS that Microsoft stopped supporting about 2 years ago.
DoubleWide is offline   Reply With Quote
Old 12-06-2012, 23:29   #14
srhoades
Senior Member
 
srhoades's Avatar
 
Join Date: Jul 2000
Posts: 4,598
That sounds more like a worm that a virus. Maybe this will help?

http://forum.precisesecurity.com/com...pplication-exe
__________________
Let's see. You drive a Ford, you drink crap beer, you quote Hitler, and you haven't had sex in years. Nope, ain't taking your advice. - BALIFF
srhoades is offline   Reply With Quote
Old 12-07-2012, 09:26   #15
Drjones
Senior Member
 
Join Date: Sep 2002
Location: CA, just outside the United States
Posts: 17,912
Blog Entries: 1
Send a message via AIM to Drjones


Man, what a mess. The "host" pc that infected the network wouldn't run the Kaspersky bootable rescue disk I brought. I tried BitDefender bootable rescue, and that kept giving me cryptic errors.

Finally pulled the drive, scanned with Malwarebytes AND AVG, MBAM removed 6 bugs.

Popped the drive back in.....and......still infected.

I'm done with that, the machine is an old, home-built POS that's long overdue for replacement anyway and the client is fine with that.

After those issues, I was discouraged & stopped the DrWeb scan on the server (bootable disk also). I'm going to see how to get the program to run off a workstation until we can get a new solution. That Win2k server is another big disaster waiting to happen.
__________________
The danger to America is not Barack Obama, but a citizenry capable of entrusting a man like him with the Presidency.
Drjones is offline   Reply With Quote
Old 12-07-2012, 09:27   #16
Drjones
Senior Member
 
Join Date: Sep 2002
Location: CA, just outside the United States
Posts: 17,912
Blog Entries: 1
Send a message via AIM to Drjones


So the database program they use is in Visual FoxPro....can we just put the files onto a NAS & run from there, or does something actually have to get installed onto a server?

I'm trying to get in touch with the man who set this up in the first place to get help.
__________________
The danger to America is not Barack Obama, but a citizenry capable of entrusting a man like him with the Presidency.
Drjones is offline   Reply With Quote

 
  
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT -6. The time now is 06:25.




Homepage
FAQ
Forums
Calendar
Advertise
Gallery
GT Wiki
GT Blogs
Social Groups
Classifieds


Users Currently Online: 839
231 Members
608 Guests

Most users ever online: 2,672
Aug 11, 2014 at 2:31