MajorGeeks Support Forums

Go Back   MajorGeeks Support Forums > ----------= PC, Desktop and Laptop Support =---------- > Malware Removal
Register FAQ Members List Calendar Casino Mark Forums Read

Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient.


Reply
 
Thread Tools Display Modes
  #1  
Old 04-11-08, 00:17
crazydan crazydan is offline
Private E-2
 
Join Date: Apr 2008
Posts: 4
Thanks: 0
Thanked 0 Times in 0 Posts
Unhappy i'm getting a TR/Crypt.XPACK.Gen problem and it won't go away =(

I've been having problems with this for the last 3 days now and norton is saying I have a trojan called torjan.packed.13 and avira is saying I have TR/Crypt.XPACK.Gen. I think I found the file in my temp folder but I am unable to remove it.I've tried many different programs and very few will even recognise the virus and none could even touch it.the only thing that happens when norton or avira tries to delete/quarantine it is it just changes its name slightly and continues to bug me. It all started when i tried to download a proxy crack and when i opened it the thing tried to send about 1 million emails out but norton prevented any of them from making it. I've spent about 6-7 hours in an attempt to remove this myself downloading various tools including sdfix. None of them seemed to help at all. I've done everything needed to do before a post but i don't know how much help it'll be because none of them found the virus i've been having a problem with =(. Well here are the logs needed and thank you for your time reading this and helping me =D.
Attached Files
File Type: zip MGlogs.zip (46.9 KB, 100 views)
File Type: txt cbfix.txt (14.8 KB, 32 views)
File Type: txt mbam-log-4-10-2008 (21-19-18).txt (739 Bytes, 24 views)
Reply With Quote
Sponsored links
  #2  
Old 04-11-08, 00:18
crazydan crazydan is offline
Private E-2
 
Join Date: Apr 2008
Posts: 4
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: i'm getting a TR/Crypt.XPACK.Gen problem and it won't go away =(

here is the other log
Attached Files
File Type: log SUPERAntiSpyware Scan Log - 04-10-2008 - 20-19-39.log (464 Bytes, 21 views)
Reply With Quote
  #3  
Old 04-11-08, 11:59
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,666
Thanks: 445
Thanked 4,644 Times in 4,384 Posts
Default Re: i'm getting a TR/Crypt.XPACK.Gen problem and it won't go away =(

Download SDFix and save it to your Desktop.

* Run the SDFix.exe by double clicking on it.
* Allow it to install into the default location which is normally c:\SDFix
* Now please reboot your computer into Safe Mode (see this if you don't know how: Starting your computer in Safe mode. )
* When you have booted into safe mode, open the C:\SDFix folder and double click RunThis.bat to start the script.
* Type Y to begin the cleanup process.
* It will remove any Trojan Services or Registry entries found and then prompt you to press any key to Reboot.
* Press any Key and it will restart the PC.
* When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
* Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt.
* Attach the Report.txt file to your next message.

Let me know how that went and then run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file.
Reply With Quote
  #4  
Old 04-11-08, 20:07
crazydan crazydan is offline
Private E-2
 
Join Date: Apr 2008
Posts: 4
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: i'm getting a TR/Crypt.XPACK.Gen problem and it won't go away =(

I've run sdfix twice already but I gave it another go. still nothing =(
almost immediatly avira started picking up the same virus and norton was picking up the other. Idk if they are the same one with different names for the 2 antiviruses(I know its not good to run 2 at the same time) but sdfix didn't even find them. Here's the logs you asked for.
Attached Files
File Type: txt Report.txt (4.8 KB, 43 views)
File Type: zip MGlogs.zip (47.3 KB, 48 views)
Reply With Quote
  #5  
Old 04-12-08, 15:08
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,666
Thanks: 445
Thanked 4,644 Times in 4,384 Posts
Default Re: i'm getting a TR/Crypt.XPACK.Gen problem and it won't go away =(

Please remove one of the anti-virus programs ....and then I want you to tell me the exact path to the issue that is being reported.

In the meantime, download The Avenger by Swandog469, and save it to your Desktop.
* Extract avenger.exe from the Zip file and save it to your desktop
* Run avenger.exe by double-clicking on it.
* Do not change any check box options!!
* Copy everything in the Quote box below, and paste it into the Input script here: part of the window:

Quote:
Files to delete:
C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp
C:\WINDOWS\SoftwareDistribution\Download\5307dd2c105b525b855331f4a4e982f5\BIT4.tmp
C:\s3qs
C:\s3qs.1
C:\s3qs.2
C:\s3qs.3
C:\s3qs.4
C:\s3qs.5
C:\s3qs.6
C:\s3qs.7
C:\s3qs.8
C:\s3qs.9
C:\s3qs.a
C:\s3qs.b
C:\s3qs.c
C:\s3qs.d
C:\s3qs.e
C:\s3qs.f
C:\s3qs.g
C:\s3qs.h
C:\s3qs.i
C:\s3qs.j
C:\s3qs.k
C:\s3qs.l
C:\s3qs.m
C:\s3qs.n
C:\s3qs.o
C:\s3qs.p
C:\s3qs.q
C:\s3qs.r
C:\s3qs.s
C:\s3qs.t
C:\s3qs.u
C:\s3qs.v
* Now click the Execute button.
* Click Yes to the prompt to confirm you want to execute.
* Click Yes to the Reboot now? question that will appear when Avenger finishes running.
* Your PC should reboot, if not, reboot it yourself.
* A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.


Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Avenger.
Reply With Quote
Sponsored links
  #6  
Old 04-13-08, 20:10
crazydan crazydan is offline
Private E-2
 
Join Date: Apr 2008
Posts: 4
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: i'm getting a TR/Crypt.XPACK.Gen problem and it won't go away =(

thank you for the help but i just swapped that 40gig that was infected for a 160 gig and $60 and now my computer is running smooth again. sorry for wasting your time.
Reply With Quote
  #7  
Old 04-14-08, 10:10
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,666
Thanks: 445
Thanked 4,644 Times in 4,384 Posts
Default Re: i'm getting a TR/Crypt.XPACK.Gen problem and it won't go away =(

No problem ...safe surfing.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
TR/Crypt.ULPM.Gen Win32.Trojan.Agent and Vundo newmedia3d Malware Removal 3 04-05-08 23:49
Win32.Trojan.Crypt oneriogrande Malware Removal 1 04-04-08 02:14
Software problem maybe hardware problem (vid. of problem included) USFSoccer Software 3 01-14-08 22:50
trojan crypt b slayer1970 Malware Removal 1 10-10-06 12:52
CRYPT help ale87 Software 6 10-07-04 01:40


All times are GMT -5. The time now is 09:08.

MajorGeeks.Com Menu

MajorGeeks.Com \ All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ NEW! PC Games \ System Tools \ Macintosh \ Demonews.Com \ Top Downloads

MajorGeeks.Com \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds


All content Copyright MajorGeeks.com source code Powered by vBulletin® Version 3.8.4
Copyright © 2009 vBulletin Solutions, Inc. All rights reserved.
Ad Management by RedTyger