Unofficial tech quiz

kronoSX

kronoSX

Honorary Master
Joined
Feb 28, 2005
Messages
15,305
Reaction score
336
Location
Capetown home to gang stars
Yes people we going to answer a question for me today.RIght.............

This nerd/person /dumba$$/whateverrrrrr is sabotaging a pc.He feeds it viruses, Trojans...etc..etc.THe system32 files become infected and most of all the usernet files and .dll files.On startup windows loads but explorer.exe wont start up and manually trying to start up explorer.exe via task manager dos not work.SO all we see is the users desktop picture:eek:

As a good technician what do you think is the best option for repair.

1-Repair windows installation via the cd(remember this dont usually fix the problem..thanks to MS poor repair system for xp)

2-Use recovery console to copy files from original disc to the windows folder

3-format...a goawd fearing word which we dont like using.

4-By doing a full new installation but leaving the file system intact without a format.Remember doing this only some program files might work by using shortcuts to them.

5-Non of the above

6-Give up and install windows 7:D

7-Put linux on the system and tell him..there i fixed your boggle.

8-Go buy a mac damnit.

9-Wish the problem away...its a kinda magic

10-I give up, pass me that hammer you mentioned about.

11-we run a system restore...hopeless to

12 We run safemode with command prompt as other safemode option still wont activate explorer.exe due to the virus


Now this is seriouaaazzzzz please vote for your choice and tell me why.If you have another way please do tell.
 
Last edited:
Remove the hdd, plug it in as an externel on another machine (that has a good anti-virus installed already), perform a scan and remove the virus.

Follow up by plugging the drive back into the original machine and doing an install/repair of the OS.
 
Ju99l3r said:
Remove the hdd, plug it in as an externel on another machine (that has a good anti-virus installed already), perform a scan and remove the virus.

Follow up by plugging the drive back into the original machine and doing an install/repair of the OS.
Click to expand...

+1
 
Ju99l3r said:
Remove the hdd, plug it in as an externel on another machine (that has a good anti-virus installed already), perform a scan and remove the virus.

Follow up by plugging the drive back into the original machine and doing an install/repair of the OS.
Click to expand...

+1... that is the best procedure.
 
dablakmark8 said:
Wrong the virus has already damaged the files.even if a virus program could clean it there would be consequences.We all know this to well.Its not a sure way.
Click to expand...

so how else are you going to tell the extent of the damage without first cleaning the infection, and then re-booting to see if you can then do a repair, or if a re-install is needed?

I notice you don't offer an alternative.
 
dablakmark8 said:
you cant do that cause the system32 file contents is damaged .If you know a way please do tell.System restore via task manager:confused:
Click to expand...

If the PC is that infected, then it is very likely that your system restore files are also compromised. Doing a system restore on a machine that is that infected is not advisable. You need to deal with the infection first. The only way to be sure is to do a complete scan on the drive when the drive is not in primary mode.
 
Option 3. You could be finished already instead of trying to find a "better method".

There's no problem that can't be solved with a Sledge Hammer and Duct Tape :D
 
Do as Ju99l3r says, but instead of re-installing windows, retrieve the person's/user account profile, that would be the My Documents, Desktop, Favourites, etc etc. Check program files. for any special programs that was used. backup those files too... Check C root drive for any apps like a Pastel DB, then run a good key finder, and retrieve Office (if any) and Windows keys, and any other programs that are being used..... backup the entire registry for later diagnostics. Do a final sweep with a good, ultra fast searching app, such as "everything".... (The best search app ever)

Then when you are confident the machine is backed up, do a format, G_D fearing or not, a true (as in a reinstall is not fresh) fresh start. that's the only way to ensure that the system is very likely to be clean of bugs, and the systems' original "freshness" will be back.

Ask the client for the discs, i.e Windows, Office, etc. - If The cannot provide it, then, and this is my disclaimer, use your own copy of Windows at own risk, with THEIR keys...

Copy the old profiles back... and there you go... a few minor changes, such as re applying the old background, and restoring the favourites.. and that would add the final touches to your reinstalled system.

Charge them something like R250 an hour, or a flat format fee or say R500.
 
Garyvdh said:
so how else are you going to tell the extent of the damage without first cleaning the infection, and then re-booting to see if you can then do a repair, or if a re-install is needed?

I notice you don't offer an alternative.
Click to expand...

OK so we clean the system with another pc or hirens or ubcd ..etc.Now we back to the first stage.Right our files has suffered major damage:D.
 
dablakmark8 said:
OK so we clean the system with another pc or hirens or ubcd ..etc.Now we back to the first stage.Right our files has suffered major damage:D.
Click to expand...

Yes, but at least now you are in a position to see if it can be repaired with the recovery console and if not, then you can begin data recovery. No more virus to worry about... you scanned the entire drive.
 
kwaggawerner said:
Do as Ju99l3r says, but instead of re-installing windows, retrieve the person's/user account profile, that would be the My Documents, Desktop, Favourites, etc etc. Check program files. for any special programs that was used. backup those files too... Check C root drive for any apps like a Pastel DB, then run a good key finder, and retrieve Office (if any) and Windows keys, and any other programs that are being used..... backup the entire registry for later diagnostics. Do a final sweep with a good, ultra fast searching app, such as "everything".... (The best search app ever)

Then when you are confident the machine is backed up, do a format, G_D fearing or not, a true (as in a reinstall is not fresh) fresh start. that's the only way to ensure that the system is very likely to be clean of bugs, and the systems' original "freshness" will be back.

Ask the client for the discs, i.e Windows, Office, etc. - If The cannot provide it, then, and this is my disclaimer, use your own copy of Windows at own risk, with THEIR keys...

Copy the old profiles back... and there you go... a few minor changes, such as re applying the old background, and restoring the favourites.. and that would add the final touches to your reinstalled system.

Charge them something like R250 an hour, or a flat format fee or say R500.
Click to expand...


I have to say i would rather do this as.....
 
Garyvdh said:
If the PC is that infected, then it is very likely that your system restore files are also compromised. Doing a system restore on a machine that is that infected is not advisable. You need to deal with the infection first. The only way to be sure is to do a complete scan on the drive when the drive is not in primary mode.
Click to expand...

how about doing a system restore to at least get some functionality back, then do a virus scan .
if it works, you've saved a lot of time. if not, well format and start again:)
 
You must log in or register to reply here.
Back
Top
Sign up to the MyBroadband newsletter
X