- May 26, 2014
- 1,051
I'm just curious, what do you do after an infection?
(Select more than one if you like)
(Select more than one if you like)
After an infection...
- Thread starter Chromatinfish 123
- Start date
- Aug 22, 2014
- 1,027
It depends on the infection. If we're talking about a serious trojan infection, and a backup of my most important files is available, then definitely reinstalling the OS is the way to go! If I have no backup, then... I just scream and yell!
Last edited:
Hmmm, i do not see Disconnect from the internet among those choices... 
- Jun 9, 2013
- 6,720
Restore PC from one of several backups that i always keep handy.
Edit. I should say that i have not had one yet.
Edit. I should say that i have not had one yet.
Last edited:
In our 10-12 years of internet (shared system) no infection yet. Just 2-3 times AV/Web Module detection & now I think they were FPs.
Guess we are pretty safe users.
So dont know what we will do in an "After an infection..." scenario
May be we will welcome our first guest with a smile & treat it well with various dishes (scanners)
Guess we are pretty safe users.
So dont know what we will do in an "After an infection..." scenario
May be we will welcome our first guest with a smile & treat it well with various dishes (scanners)
- Mar 15, 2011
- 13,070
If its autorun attack through USB then a thorough quick scan with Hitman Pro and ESET Online Scanner for checking even though autorun/autoplay is off.
Other than that, I've never infected (on current system) beyond other categories.
Other than that, I've never infected (on current system) beyond other categories.
- Oct 23, 2012
- 12,527
Well first and foremost disconnect from the internet.Then you might want to figure out how you got one in the first place while you are scanning your PC.If it cannot be removed then wipe everything and do a clean install and hopefully you backed up your important files,pics,documents and whatever else you hold dear to you.
If you cannot remove the infection on your own you could always ask our malware removal expert for help and maybe make a donation to the cause.
My last infection was on a HP desktop running Windows 95 with the state of the art internet,AOL dial up.I must admit online porn was like landing on the moon or so I heard. Well my curiosity got the best of me and I decided to see if there was really such a thing.Suddenly something went terribly wrong with my HP desktop and it was stuck on a page.I tried to click the mouse and nothing.I tried to turn it off with the on/off button and nothing.My wife is in the other room and I am now panicking and sweating.I even unplugged it from the wall and it was still running I really cannot remember how it ended but somehow I fixed it.
If you cannot remove the infection on your own you could always ask our malware removal expert for help and maybe make a donation to the cause.
My last infection was on a HP desktop running Windows 95 with the state of the art internet,AOL dial up.I must admit online porn was like landing on the moon or so I heard. Well my curiosity got the best of me and I decided to see if there was really such a thing.Suddenly something went terribly wrong with my HP desktop and it was stuck on a page.I tried to click the mouse and nothing.I tried to turn it off with the on/off button and nothing.My wife is in the other room and I am now panicking and sweating.I even unplugged it from the wall and it was still running
I really cannot remember how it ended but somehow I fixed it.
Last edited:
- Mar 17, 2015
- 370
- May 8, 2015
- 881
First off, sorry for the rant. I like making my post through. May be littered with spelling mistakes and all that.
Well I haven't been infected in a very long time but I've been infected with ransomware, rogue AV, etc but most of all adware. The truth of the matter is, malware is supposed to operate without you knowing that it's there for the most part - unless it's a rogue AV or ransomware which needs you to know that it's there. Infections can go years without detection and therefore I can't in my right mind believe anyone who says they've never been infected (no offense, that's just my point of view - everyone starts somewhere, you aren't born with the ability to know what files do when you run them or what happens exactly when that file is malicious and you run it). If you learn IT before you actually used a computer (which is highly unlikely) then I might believe you. I expressed this on MT many times before so I'm not trying to target anyone by saying this here.
I used to just reinstall the whole system but with Paragon I just restore it (I mostly do this to simply refresh the system if I keep uninstalling after I set the backup). In my opinion, it's better to reinstall then backup (if your truly infected - ESPECIALLY with ransomware if you are running your backup program within the infected OS). Never know if that malware is going to intervene on the restore process. Just reinstall your backup software and immediately restore after you install your backup solution of choice to use those backup files. Done. Now unfortunately, my back up is on a secondary HDD that's internal and always connected (because my media files are there - music, etc) but the backup is on another partition. Chances that my backup could be ruined or infected is pretty high. I have to work with what I got at this point.
I also dismount the partition to protect it against such things while allowing my media partition to stay mounted. Everything in there is backed up with OneDrive and it's never on unless I need it to sync so even if ransomware hit, I just delete the partition, format, redownload data. The ransomware wouldn't be able to overwrite or upload to my OneDrive when it's not syncing at all times. If any of you DO leave your sync on at all times, I would highly recommend not doing so.
Nowadays I never run a file without running some kind of sandbox with it to see what it does. That includes using VirusTotal and malwr, Valkyrie, etc. Of course I don't do that with trusted files. And some are just to big to run that way unless you have Sandboxie or something which I don't. I'll probably buy it this year however. I download files all the time so having a sandbox that only cost $20.95 USD a year isn't bad at all.
Well I haven't been infected in a very long time but I've been infected with ransomware, rogue AV, etc but most of all adware. The truth of the matter is, malware is supposed to operate without you knowing that it's there for the most part - unless it's a rogue AV or ransomware which needs you to know that it's there. Infections can go years without detection and therefore I can't in my right mind believe anyone who says they've never been infected (no offense, that's just my point of view - everyone starts somewhere, you aren't born with the ability to know what files do when you run them or what happens exactly when that file is malicious and you run it). If you learn IT before you actually used a computer (which is highly unlikely) then I might believe you. I expressed this on MT many times before so I'm not trying to target anyone by saying this here.
I used to just reinstall the whole system but with Paragon I just restore it (I mostly do this to simply refresh the system if I keep uninstalling after I set the backup). In my opinion, it's better to reinstall then backup (if your truly infected - ESPECIALLY with ransomware if you are running your backup program within the infected OS). Never know if that malware is going to intervene on the restore process. Just reinstall your backup software and immediately restore after you install your backup solution of choice to use those backup files. Done. Now unfortunately, my back up is on a secondary HDD that's internal and always connected (because my media files are there - music, etc) but the backup is on another partition. Chances that my backup could be ruined or infected is pretty high. I have to work with what I got at this point.
I also dismount the partition to protect it against such things while allowing my media partition to stay mounted. Everything in there is backed up with OneDrive and it's never on unless I need it to sync so even if ransomware hit, I just delete the partition, format, redownload data. The ransomware wouldn't be able to overwrite or upload to my OneDrive when it's not syncing at all times. If any of you DO leave your sync on at all times, I would highly recommend not doing so.
Nowadays I never run a file without running some kind of sandbox with it to see what it does. That includes using VirusTotal and malwr, Valkyrie, etc. Of course I don't do that with trusted files. And some are just to big to run that way unless you have Sandboxie or something which I don't. I'll probably buy it this year however. I download files all the time so having a sandbox that only cost $20.95 USD a year isn't bad at all.
check,not chuck .
If i can't open anything - ComboFix + scripting
Sality or other infector - restore system image
Ransom - depends (for crypto clean remnants with TFC and restore my files,for real ransom use safe mode with cmd)
Adware - AdwCleaner + other stuff
Format - cowards only
If i can't open anything - ComboFix + scripting
Sality or other infector - restore system image
Ransom - depends (for crypto clean remnants with TFC and restore my files,for real ransom use safe mode with cmd)
Adware - AdwCleaner + other stuff
Format - cowards only
- Mar 15, 2011
- 13,070
Format - cowards only
Its a yes and no, sometimes that's the only reason to save your time to overthink for infections but still depends on practicality.
One of my classmate did that after an infection and he didn't resist to check for preliminary solution.
After an infection. ...
Well, this assumes that I have noticed that a malware has infected my OS.
So first I turn off the connection to prevent the malware can transmit data over the internet.
Check my AV to see if the malware was actually deleted, otherwise proceed with manual cleaning with other specific tools, or do myself.
Start different anti-malware scans to get more opinions.
However, I have several image backups stored on external HDD so the possibility that a malware can do serious damage on my sistem are limited.
Well, this assumes that I have noticed that a malware has infected my OS.
So first I turn off the connection to prevent the malware can transmit data over the internet.
Check my AV to see if the malware was actually deleted, otherwise proceed with manual cleaning with other specific tools, or do myself.
Start different anti-malware scans to get more opinions.
However, I have several image backups stored on external HDD so the possibility that a malware can do serious damage on my sistem are limited.
Last edited by a moderator:
- Jul 16, 2014
- 443
Or people who know what they are doing...Format - cowards only
On topic: I do exactly the same thing as @OokamiCreed, the only difference is that my backups are on an external drive that is only mounted for backups. Very important files are on OneDrive and/or GoogleDrive, NAS and external drives.
In some particular situations for example when it is not possible to access the backups, the malware has completely devastated the OS and It has overwritten the MBR, etc, format may be the only solution to solve the problem. ... it is never a lost war.Format - cowards only
- Feb 22, 2013
- 451
In the case of infection, usually first I use AV program. In the next step, I use the scanners on demand. In difficult cases may prove helpful to other tools such as ComboFix, RogueKiller, Removal Tool Junkware, etc. Last resort to restore the system from a backup.
- Sep 26, 2014
- 2,973
As @OneDay said it depends on the infection.
My first infection was a rogue av. The problem solved with system restore.
After that i had some adware. MBAM, EEK provided the solution.
The last infection ( totally my fault ) was a malware from Malware Hub section.
I wanted to try Comodo HIPS but by mistake i click Allow on the pop-up and all hell broke loose.
My system was unusable and our dear friend Argus ( R.I.P ) after the scan results suggested to format and that's what i did.
So because i want to be covered from this kind of infection i have all my important files on several USB drives.
My first infection was a rogue av. The problem solved with system restore
.After that i had some adware. MBAM, EEK provided the solution.
The last infection ( totally my fault ) was a malware from Malware Hub section.
I wanted to try Comodo HIPS but by mistake i click Allow on the pop-up and all hell broke loose
.My system was unusable and our dear friend Argus ( R.I.P
) after the scan results suggested to format and that's what i did.So because i want to be covered from this kind of infection i have all my important files on several USB drives
.This is always my first option but then i remember that i don't have enough money to do itHow about smash your infected pc/laptop and buy the new one?
Similar threads
