Please HELP!! Trojans!

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by crazydudemanperson, Jan 17, 2010.

  1. crazydudemanperson

    crazydudemanperson Private E-2

    Please help! I got some trojans, and I believe I was infected from them from blindly downloading a DVD burner program. My computer started slowing down, and coming up with various error messages..ie: (Explorer.exe). Also sometimes when I connected on the net dirty:-o icons popped up on my desktop. When I opened a browser it also redirected me to various search engines that were random.
    So far I have scanned my computer with Pareto logic and Xoftspy. They could'nt remove the trojans, so I tried to reformat my harddrive and reinstall windows. Once I started and connected to the net.... the dirty icons:-o and crappy web connection... ran Spybot... and trojans were back!!!:cry
    I went through the Malware Removal Guide and have attached what I could!

    I couldn't run ComboFix.. had the following error:
    !! ALERT!! It is NOT SAFE to continue!
    The contents of the ComboFix package has been compromised. Please download a fresh copy from:
    http://www.bleepingcomputer.com/combofix/how-to-use-combofix
    Note: You may be infected with a file patching virus 'Virut'


    Pllleeeeeaaassseee help....these trojans are making me angry, and I started with a full set of hair like Don King and now look like Mr. Clean!!!!
     

    Attached Files:

  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Sorry to give you the bad news but you will have to do a total clean reinstall.
    I can see the reason for your problems. Your logs show that your Windows Operating system files have become infected by a Virut infection and there is no known reliable fix for this. In addition there are many many other infected files. We could spend a lot of time trying to remove this infection, but odds are that it will not work because the nature of the infection has so many executable system files infected that as soon as we fix one file, other files that are infected will almost immediately or upon the next reboot, just reinfect the files. In addition, your PC would still basically be unreliable/untrustworthy even if we manage to fix the infected files that we can see since there could be many more that we are not seeing.

    The safest thing for you to do is backup your personal data immediately since your PC could possibly become unbootable at any point in time. Do not back up any executable files. This includes programs that you have downloaded since any of them could be infected. Anything you may have already backed up that is an executable type file (things you downloaded to install programs....etc) are most likely infected and will cause you to be reinfected if you reuse these files.

    Once you backup, you need to delete partitions, recreate partitions, format partitions and reinstall Windows from a clean original disk. Then install all other software from clean non-backed up files unless the backups are from original CDs ( not ones you made) especially your protection software. Then install all updates for all software. DO NOT reinstall from any executable file backups you made while this PC was infected or you will just be reinstalling the infection and will have to start over again.
     
  3. crazydudemanperson

    crazydudemanperson Private E-2

    Dang! Well...thats cool! As long as I knock this dang virus out!:boxing Quick question, which format option should I perform:
    * Format the partition by using the NTFS file system (Quick)
    * Format the partition by using the FAT file system (Quick)
    * Format the partition by using the NTFS file system
    * Format the partition by using the FAT file system
    * Leave the current file system intact (no changes)
    Also I used an 80g external hard drive to backup my files:(... can I clean it and reformat it.. or is it too late? If I can how can I go about doing it...Disk Management tool?:confused
     
  4. crazydudemanperson

    crazydudemanperson Private E-2

    :clapHey many thanks chaslang for your help! :clapYou are awesome. I am now in the process of deleting partitions, recreating partitions, formating partitions and reinstalling Windows!:cloud9 Hopefully this will lay waste to the virus!
     
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    The 3rd option ( * Format the partition by using the NTFS file system )

    Yes you of course you can format it. Cleaning it would be impossible if the infection is still active in your Window operating system. You have to clean your boot drive first. Be aware that if this backup drive has even 1 infected file and you run this file (i.e, like an installer program or any other executable), you will reinfect your whole system.
     
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome.
    It will but you must make sure that you don't reinstall the infection from any backups you have.
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds