Clean install didn't remove trojan(s)...

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by jbradvi9, Dec 28, 2012.

  1. jbradvi9

    jbradvi9 Private E-2

    After many unsuccessfull tries to repair pc issues by paying pc-tehnicians I did the following:formatted the HDD with a linux live CD(partedmagic). After that I gave a look if there was some remaining files on c: drive and there wasn't any,all wiped.I installed a legal copy of widows7 downlloaded before from Microsoft download center.All worked like a charm untill i connected internet.The machine became unresponsive continously blocking for a short period any program at least every 5-10 min.I don't know what to do with my pc at this point.The only thing I didn't do it is to wipe the HDD and then disconect it from RAM(turn off the PC,unplug from power supply for next 1-2 hours....).Any help would be appreciated!
     
    jbradvi9, Dec 28, 2012
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Did you delete partitions and recreate from scratch before reinstalling. There are many infections that will survive a simple reinstall and even a format.

    If however you would like us to check to see if there is any malware at play then please follow the instructions in the below link:

    READ & RUN ME FIRST. Malware Removal Guide


    and attach the requested logs when you finish these instructions.
    • **** If something does not run, write down the info to explain to us later but keep on going. ****
    • Do not assume that because one step does not work that they all will not. MGtools will frequently run even when all other tools will not.

    • After completing the READ & RUN ME and attaching your logs, make sure that you tell us what problems still remain ( if any still do )!
    Helpful Notes:

    1. If you run into problems trying to run the READ & RUN ME or any of the scans in normal boot mode, you can run the steps in safe boot mode but make sure you tell us what you did later when you post logs. See the below if you do not know how to boot in safe mode:
    2. If you have problems downloading on the problem PC, download the tools and the manual update Malwarebytes ( links are given in the READ & RUN ME) onto another PC and then burn to a CD. Then copy them to the problem PC. You will have to skip getting updates if (and only if) your internet connection does not work. Yes you could use a flash drive too but flash drives are writeable and infections can spread to them.
    3. If you cannot seem to login to an infected user account, try using a different user account (if you have one) in either normal or safe boot mode and running only RogueKiller and Malwarebytes while logged into this other user account. Then reboot and see if you can log into the problem user account. If you can then run the rest of the READ & RUN ME FIRST instructions on the infected account.
    4. To avoid additional delay in getting a response, it is strongly advised that after completing the READ & RUN ME you also read this sticky:
    Any additional post is a bump which will add more delay. Once you attach the logs, your thread will be in the work queue and as stated our system works the oldest threads FIRST.


     
    chaslang, Dec 28, 2012
    #2
  3. jbradvi9

    jbradvi9 Private E-2

    I deleted all partitions.I used linux live cd partition utility to delete all partitions and then used this linux utility file manager to look for any partitions,maps or files and there was nothing but the name of my hard drive...Now I am using safe mode to contacting you because working in normal mode causes continual breaks of wirless connection!
     
    jbradvi9, Dec 29, 2012
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay but you don't need to use wireless do you? Why not use wired if wireless is an issue.

    Also to really provide the proper support we prefer that the READ & RUN ME FIRST be run in normal boot mode and it does not need a connection other than to download the programs needed and then to attach logs later. If run the READ & RUN ME FIRST and attach the logs, I will assess whether there is a malware problem. The likelihood is low since you repartitioned and reinstalled, however if there was inadequate protection installed when the PC was reconnected to the internet, there is a chance that it instantly became infected. It does happen. Also if any backups of executable files were reused and they contained infections, they could also have potentially caused a problem.
     
    chaslang, Dec 29, 2012
    #4
  5. jbradvi9

    jbradvi9 Private E-2

    Nothing helped....now things are i am in normal mode but no browser can connect www except realpayer-browser so now I am writting this reply on it.:)
    Outlook can receive e-mail.
    now answers:
    Step 1: Getting Started
    -i am not having browser redirection problems
    -i ra n microsoft fixit

    Step 2: Uninstalling Multiple Protection Applications
    -i have Adaware antivirus 10 installed as only av-program

    Step 3: Configuration & Setup
    -i uninstalled windows7 after trial period and now running windows xp 32-bit
    -i enabled option view system protected and hidden files and folders

    Step 4: Disable Any Disk Emulation Software (like Daemon Tools..etc)
    -i disabled powerISO virtual devices manager

    Step 5: Temp File/Folder Cleaning
    -i ran CCleaner

    Step 6: Windows OS Specific Cleaning Instructions
    -i have submitted attachments..
     

    Attached Files:

    jbradvi9, Dec 30, 2012
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds