window 7 - hacked?!

Forums › Microsoft Windows › window 7 - hacked?!

fundanglr

169 posts

Master Geek
+1 received by user: 2

#214629 21-May-2017 20:21

ive been trying to resolve a windows issue all day- seems my wifes pc has been hacked, ive tried all types of virus and malware tools and nothing found-

rikill found that 10 MS services have been patched, and also every file is missing a digital signature , and also , it wont connect to microsoft.com .

im guessing no one knows anything of a virus/hack that causes this

1 | 2

1201 posts

Uber Geek
+1 received by user: 402

Lifetime subscriber

#1785625 21-May-2017 20:23

Try running sfc /scannow in an administrative command prompt and see if it reports any issues

Clint

freitasm

BDFL - Memuneh
80646 posts

Uber Geek
+1 received by user: 41030

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#1785635 21-May-2017 20:30

Tried MalwareBytes and Norton Power Eraser?

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

fundanglr

169 posts

Master Geek
+1 received by user: 2

#1785657 21-May-2017 21:28

yes it found some corrupt files, but couldnt fix all. so then i tried all sorts of tools, rkill found all the missing dig signs , and no MS software will run

fundanglr

169 posts

Master Geek
+1 received by user: 2

#1785660 21-May-2017 21:29

tried MB Hitmanpro , avast (pre windows scan) eset online scanner, its certainly a nasty one whatever it is

Brumfondl

1198 posts

Uber Geek
+1 received by user: 524

Trusted

Subscriber

#1785674 21-May-2017 22:08

So is it just me who, in a situation like this would be thinking, "Well the important stuff I need is all backed up so let's just wipe and re-install this sucker"?

The important stuff is all backed up, right?

Linux

12173 posts

Uber Geek
+1 received by user: 8469

Trusted

Lifetime subscriber

#1785675 21-May-2017 22:08

format hard drive and start again

Linux

Quic Broadband

Move to New Zealand's best fibre broadband service (affiliate link). Free setup code: R587125ERQ6VE. Note that to use Quic Broadband you must be comfortable with configuring your own router.

andrewNZ

2487 posts

Uber Geek
+1 received by user: 1461
Inactive user

#1785676 21-May-2017 22:12

Kill it with fire. Even if you think you can get rid of it, can you guarantee it's gone?

Not worth the risk IMO.

lNomNoml

1842 posts

Uber Geek
+1 received by user: 521

ID Verified

#1785678 21-May-2017 22:23

Upgrade to Windows 10, then do a reset?

freitasm

BDFL - Memuneh
80646 posts

Uber Geek
+1 received by user: 41030

Administrator

ID Verified

Trusted

Geekzone

Lifetime subscriber

#1785698 21-May-2017 23:15

Yes, in this case reformat and reinstall. Not worth the risk of having stuff lurking in the dark.

Referral links: Quic Broadband (free setup code: R587125ERQ6VE) | Samsung | AliExpress | Wise | Sharesies

Support Geekzone by subscribing (browse ads-free), or making a one-off or recurring donation through PressPatron.

ANglEAUT

altered-ego
2436 posts

Uber Geek
+1 received by user: 841

Trusted

Lifetime subscriber

#1785699 21-May-2017 23:17

lNomNoml: Upgrade to Windows 10, then do a reset?

No, please don't upgrade. Rather download the USB Media Creation Tool on a separate PC, create the USB drive and then do a fresh install on the wifes machine.

Please keep this GZ community vibrant by contributing in a constructive & respectful manner.

jnimmo

1098 posts

Uber Geek
+1 received by user: 255

#1785743 22-May-2017 08:26

Or checkout Windows Defender Offline - install it on a USB, boot from the USB and run a scan. Sounds a good idea to reformat though.

https://support.microsoft.com/en-us/help/17466/windows-defender-offline-help-protect-my-pc

Lenovo

Shop now for Lenovo laptops and other devices (affiliate link).

1101

3141 posts

Uber Geek
+1 received by user: 1143

#1785851 22-May-2017 10:43

Some malware gets in, does the damage, adds backdoors, encrypts etc, then completely deletes all traces of itself
some malware cannot be detected by anything, the AV companies dont even know of it (that pretty rare though)

or you may just have system corruption (not malware at all)

Wipe & re-install. Its the quickest fix when you get a mess like this
You could spend days trying to sort this out other wise

and run some Hard Drive tests