Parts Catalog Accessories Catalog How To Articles Tech Forums
Call Pelican Parts at 888-280-7799
Shopping Cart Cart | Project List | Order Status | Help




Go Back   PeachParts Mercedes-Benz Forum > General Discussions > Off-Topic Discussion

Reply
 
LinkBack Thread Tools Display Modes
  #1  
Old 05-25-2009, 08:46 PM
Registered User
 
Join Date: Sep 2004
Location: Seattle
Posts: 1,931
Help! Computer question - virus removal with no internet

Hi,

My friend's computer got the "W32/VirusIsolator.EG" virus aka "W32/fakeInit.I trojan". Problem is he cannot get onto the internet anymore. I downloaded spyware-doctor from PC Tools onto a USB drive and gave it to him but it will not run without internet updates!! He has XP.

He also tried System Restore but that did not work. What can he do?

Thanks
__________________
1998 C230 330,000 miles (currently dead of second failed EIS, yours will fail too, turning you into the dealer's personal human cash machine)
1988 F150 144,000 miles (leaks all the colors of the rainbow)
Previous stars: 1981 Brava 210,000 miles, 1978 128 150,000 miles, 1977 B200 Van 175,000 miles, 1972 Vega (great, if rusty, car), 1972 Celica, 1986.5 Supra
Reply With Quote
  #2  
Old 05-25-2009, 08:57 PM
Registered User
 
Join Date: Jul 2007
Location: Columbus OH
Posts: 275
Has he tried starting up in safe mode? Should be able to get on the internet then.
__________________
1984 300TD
Reply With Quote
  #3  
Old 05-25-2009, 09:03 PM
Registered User
 
Join Date: Sep 2004
Location: Seattle
Posts: 1,931
OK. What he did is he diagnosed the internet connection with IE7 and that got him connected. So then he did the update and now he is scanning with the spyware-doctor. I will let you know how it turns out...
__________________
1998 C230 330,000 miles (currently dead of second failed EIS, yours will fail too, turning you into the dealer's personal human cash machine)
1988 F150 144,000 miles (leaks all the colors of the rainbow)
Previous stars: 1981 Brava 210,000 miles, 1978 128 150,000 miles, 1977 B200 Van 175,000 miles, 1972 Vega (great, if rusty, car), 1972 Celica, 1986.5 Supra
Reply With Quote
  #4  
Old 05-25-2009, 10:26 PM
pawoSD's Avatar
Dieselsüchtiger
 
Join Date: Oct 2004
Location: Grand Rapids, MI
Posts: 15,050
I'd just salvage data off it, wipe, and reinstall. Much easier and you can be sure the virus is gone.
__________________
-diesel is not just a fuel, its a way of life-
'15 GLK250 Bluetec 80k - mine - (OC-80,500)
'17 Metris(VITO!) - 11k - wifes (OC-17k)
'01 E320 Wagon - 159k - mine (OC-160,000)
'01 E320 - 172k - dad's (OC-171,500)
'07 E350 Wagon - 131k - dad's (OC-132,500)
'01 SL500 - 50k - dad's (OC-52,000)
'09 E350 4matic Sedan - 140k - Brothers (OC-141,500)
Reply With Quote
  #5  
Old 05-25-2009, 10:58 PM
compress ignite's Avatar
Drone aspiring to Serfdom
 
Join Date: Feb 2004
Location: 32(degrees) North by 81(degrees) West
Posts: 5,554
Yeah! FORMAT

Nothing can stand up to that.
__________________
'84 300SD sold
124.128
Reply With Quote
  #6  
Old 05-25-2009, 11:14 PM
Registered User
 
Join Date: Jul 2007
Location: Columbus OH
Posts: 275
Quote:
Originally Posted by pawoSD View Post
I'd just salvage data off it
How do you do that after the virus is already on there?
__________________
1984 300TD
Reply With Quote
  #7  
Old 05-26-2009, 01:31 PM
Registered User
 
Join Date: Sep 2004
Location: Seattle
Posts: 1,931
Thanks for the ideas. He says the spyware-doctor got rid of that virus.
__________________
1998 C230 330,000 miles (currently dead of second failed EIS, yours will fail too, turning you into the dealer's personal human cash machine)
1988 F150 144,000 miles (leaks all the colors of the rainbow)
Previous stars: 1981 Brava 210,000 miles, 1978 128 150,000 miles, 1977 B200 Van 175,000 miles, 1972 Vega (great, if rusty, car), 1972 Celica, 1986.5 Supra
Reply With Quote
  #8  
Old 05-26-2009, 02:04 PM
pawoSD's Avatar
Dieselsüchtiger
 
Join Date: Oct 2004
Location: Grand Rapids, MI
Posts: 15,050
Quote:
Originally Posted by tankdriver View Post
How do you do that after the virus is already on there?
Either boot it with a Linux Live-CD or parallel install windows (if the original install is dead) but leave the files in tact....then retrieve the files, save them on external media.....and proceed with the full wipe/install. Or use the Windows PE live CD to do that same thing as the Linux disc. I prefer linux.....but either way works.
__________________
-diesel is not just a fuel, its a way of life-
'15 GLK250 Bluetec 80k - mine - (OC-80,500)
'17 Metris(VITO!) - 11k - wifes (OC-17k)
'01 E320 Wagon - 159k - mine (OC-160,000)
'01 E320 - 172k - dad's (OC-171,500)
'07 E350 Wagon - 131k - dad's (OC-132,500)
'01 SL500 - 50k - dad's (OC-52,000)
'09 E350 4matic Sedan - 140k - Brothers (OC-141,500)
Reply With Quote
  #9  
Old 05-26-2009, 06:14 PM
toomany MBZ's Avatar
Registered User
 
Join Date: Nov 2006
Location: central Va
Posts: 7,820
I'm having the same problem, I have the re-install cd, but that says it will remove EVERYTHING and start over. That will not allow me to keep the files.
__________________
83 SD

84 CD
Reply With Quote
  #10  
Old 05-26-2009, 07:01 PM
powerpig's Avatar
In Memory of the Sam Man
 
Join Date: Feb 2006
Location: Guntersville, AL
Posts: 649
Download malwarebytes free version, run it and you should be good to go.
__________________
99 ML320
94 SL600
92 SL500
95 E320 Cabriolet
87 560SEC
86 300SDL Grease Car
80 380SLC Euro

13 Fiat Abarth
02 Maserati Spyder Cambiocorsa
00 BMW Z3
90 Rolls Royce Silver Spur
80 Ferrari 308 GTSI
88 Jaguar XJS12 H&E Edition
99 Land Rover Discovery
Reply With Quote
  #11  
Old 05-27-2009, 12:09 AM
Larry Delor's Avatar
What, Me Worry?
 
Join Date: Jun 1999
Location: Sarasota, Fl.
Posts: 3,112
Be sure and go to malwarebytes.org ....not .com or .whatever

Or, do a search for mbam.exe - there should be a link to majorgeeks or some such site that hosts that file.
__________________
It is a truism that almost any sect, cult, or religion will legislate its creed into law if it acquires the political power to do so. Robert A. Heinlein


09 Jetta TDI
Reply With Quote
  #12  
Old 05-27-2009, 08:05 AM
toomany MBZ's Avatar
Registered User
 
Join Date: Nov 2006
Location: central Va
Posts: 7,820
I was able to install and run Adware and AVG anti virus, it's still in the other computer.
__________________
83 SD

84 CD
Reply With Quote
  #13  
Old 05-27-2009, 10:02 AM
link's Avatar
Registered User
 
Join Date: Jun 2008
Posts: 835
The problem of the scorched earth solution (i.e. reformatting the drive) is that you never find the problem and as a result you’re likely going to have the same problem come back shortly after all the work of re-formatting the drive.

A simple solution is to put the infected drive in another computer, but set to be a slave drive in the other computer. Doing this means that the data is accessible without loading any programs on the drive.

Once the drive is in the other computer, run a suite of anti-virus and anti–spyware detection and removal tools. While both Spyware Doctor and Malware Bytes (mentioned above) are both excellent at detecting some spyware, they are selective in what they find. As a consequence you should use several programs. When I'm hired to do these kinds of scans, I use a total of 7 programs plus some other things. Generally all of the programs will find things the others missed.
Reply With Quote
  #14  
Old 05-27-2009, 10:55 AM
lutzTD's Avatar
Registered User
 
Join Date: Oct 2006
Location: Lutz, Florida (N of Tampa)
Posts: 2,458
I bought mcaffee at work and saved to and loaded it from a thumbdrive on my infected computer. I now stay connected all of the time and have been trouble free since.
__________________

1982 300CD Turbo (Otis, "ups & downs") parts for sale
2003 TJ with Hemi (to go anywhere, quickly) sold
2001 Excursion Powerstroke (to go dependably)
1970 Mustang 428SCJ (to go fast)
1962 Corvette LS1 (to go in style)
2001 Schwinn Grape Krate 10spd (if all else fails)
Reply With Quote
  #15  
Old 05-27-2009, 07:05 PM
aklim's Avatar
Registered User
 
Join Date: Apr 2000
Location: Location: Greenfield WI, USA
Posts: 8,514
Quote:
Originally Posted by pawoSD View Post
I'd just salvage data off it, wipe, and reinstall. Much easier and you can be sure the virus is gone.
I wouldn't be too sure if it were me. How do you know the virus hasn't embedded itself into the datafiles you salvaged off?
__________________
01 Ford Excursion Powerstroke
99 E300 Turbodiesel
91 Vette with 383 motor
05 Polaris Sportsman 800 EFI
06 Polaris Sportsman 500 EFI
03 SeaDoo GTX SC Red
03 SeaDoo GTX SC Yellow
04 Tailgator 21 ft Toy Hauler
11 Harley Davidson 883 SuperLow
Reply With Quote
Reply

Bookmarks

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is On
Trackbacks are On
Pingbacks are On
Refbacks are On




All times are GMT -4. The time now is 06:50 PM.


Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2019, vBulletin Solutions, Inc.
Search Engine Optimization by vBSEO 3.6.0
Copyright 2018 Pelican Parts, LLC - Posts may be archived for display on the Peach Parts or Pelican Parts Website -    DMCA Registered Agent Contact Page