Threats detected by Avira

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Aria, Jul 1, 2012.

  1. Aria

    Aria Private E-2

    Hi,
    My laptop apparently encountered a malware problem and my roommate who is a little more computer savvy than myself recommended this site as his go-to.

    Today while surfing google Avira detected malware called 'tr/atraps.gen' and 'tr/atraps.gen2', and my computer seemed to have been running a little slower since. More than that, it continually re-detected the threats every five minutes or so despite my repeated commands to remove them.

    I went ahead and ran a full Avira scan but it didn't detect it in the course of it, even though all the while it ran I kept getting the pop-ups..

    After going through the site's read me and running the four programs I am no longer getting the pop-up from Avira, and while I am relieved, I'd still like to double check with someone who knows better and make sure that my system is indeed clean. Particularly since HitmanPro did detect ten infections (which I ignored as instructed). The logs are attached below.

    Thank you for any assurance that could be offered, I so appreciate it!
     

    Attached Files:

    Aria, Jul 1, 2012
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I am not seeing much in the way of malware in your logs. However, you do need to run CCleaner to clean out your temp folders. Let's just double check, so please download ComboFix to your desktop and run it. Attach the log.
     
    TimW, Jul 1, 2012
    #2
  3. Aria

    Aria Private E-2

    Oh my, problem..

    So I tried running ComboFix and it told me Avira and BitDefender were running and would need to be disabled. I disabled Avira's realtime but did not immediately recognize BitDefender as a program. I assumed it might have to do with firewalls, but when I tried to go into my firewall settings and check I was told 'due to an unidentified problem, windows cannot display windows firewall settings'.

    I hit escape to try to get out of ComboFix while I got sorted but it just told me that both were still active (despite me turning off Avira's realtime) and that continuing would be at my own risk and could further damage computer. Again, I tried escape but it proceeded anyway. I didn't want to hurt my computer so I closed the box as it started to run.

    Upon closing it, I could not longer access the internet and freaked out a bit before restarting. Now my internet is back, but BitDefender's firewall (I guess it was indeed my firewall) is now disabled and cannot be turned on either through security center or through control panel (I get the same popup saying it can't be viewed).

    I'm sorry, I feel so stupid. I've made things worse it seems. I read the description for ComboFix regarding it being for advanced users and I'm thoroughly scared to try using it again. Is there something I can do to fix my firewall?
     
    Last edited: Jul 1, 2012
    Aria, Jul 1, 2012
    #3
  4. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    Please re-run Roguekiller and attach the log.
     
    TimW, Jul 2, 2012
    #4
  5. Aria

    Aria Private E-2

    Sure thing.

    To be clear, when I use RogueKiller is it okay for me to delete the things it finds, or am I supposed to ignore them for now and just post the report?
     

    Attached Files:

    Aria, Jul 2, 2012
    #5
  6. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    It removed what was needed. Tell me what issues you are still having, if any.
     
    TimW, Jul 5, 2012
    #6
  7. Aria

    Aria Private E-2

    If you read my above post (07-01-12, 16:21), I explain that trying to run ComboFix caused my firewall to turn off and become unusable.
    Specifically, the pop-up that comes up when I try to access my firewall settings is "due to an unidentified problem, windows cannot display windows firewall settings".

    So my problem is now how I could get my firewall working again, as it had no issues prior.
     
    Aria, Jul 5, 2012
    #7
  8. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    I suggest you try uninstalling BitDefender and then run CCleaner. Reinstall BitDefender and see if it now works. If not, post in the software forum.

    If you are not having any other malware problems, it is time to do our final steps:

    1. We recommend you keep SUPERAntiSpyware and Malwarebytes Anti-Malware for scanning/removal of malware. Unless you purchase them, they provide no real time protection. They do not use any significant amount of resources ( except a little disk space ) until you run a scan.We recommend them for doing backup scans when you suspect a malware infection.
    2. If we had you use ComboFix, uninstall ComboFix (This uninstall will only work as written if you installed ComboFix on your Desktop like we requested.)
      • Click START then RUN and enter the below into the run box and then click OK. Note the quotes are required
      • "%userprofile%\Desktop\combofix" /uninstall
        • Notes: The space between the combofix" and the /uninstall, it must be there.
        • This will uninstall ComboFix and also reset hidden files and folders settings back to Windows defaults.


    3. Go back to step 6 of the READ ME and renable your Disk Emulation software with Defogger if you had disabled it.
    4. Any other miscellaneous tools we may have had you install or download can be uninstalled and deleted.
    5. If we had you download any registry patches like fixme.reg or fixWLK.reg (or any others), you can delete these files now.
    6. If running Vista, it is time to make sure you have reenabled UAC by double clicking on the C:\MGtools\enableUAC.reg file and allowing it to be added to the registry.
    7. Go to add/remove programs and uninstall HijackThis.
    8. Goto the C:\MGtools folder and find the MGclean.bat file. Double click on this file to run this cleanup program that will remove files and folders related to MGtools and some other items from our cleaning procedures.
    9. If you are running Win 7, Vista, Windows XP or Windows ME, do the below:
      • Refer to the cleaning procedures pointed to by step 7 of the READ ME
        for your Window version and see the instructions to Disable System Restore which will flush your Restore Points.
      • Then reboot and Enable System Restore to create a new clean Restore Point.

    10. After doing the above, you should work thru the below link:


    Malware removal from a National Chain = $149
    Malware removal from MajorGeeks = $0
     
    TimW, Jul 6, 2012
    #8

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds