Trojan-Spy.Win32.GreenScreen

Discussion in 'Malware Help (A Specialist Will Reply)' started by demonise, Jan 12, 2010.

  1. demonise

    demonise Private E-2

    Hello, I have a very similar problem to the one in this post
    http://forums.majorgeeks.com/showthread.php?p=1438795

    I turned on my PC one day and it had a big message in a black box on a green desktop saying my system has been infected and a bunch of "buy me" sort of programs started to pop up. As soon as I got this sign on my desktop I disconnected my internet. It will not let me use Ctrl+Alt+Del to get to the Task Manager as it says it has been disabled by the Administrator, even though I am in the administrators account. It won't let me run my normal AVG checks etc.

    I then followed the directions on this website, went into safe mode and delted any files from the date I got the bug but it would not let me delete one file Sys32. But ever since then my computer will not let me log in to any accounts, it logs me straight back out without even loading the desktop. Sometimes it says I need to re-activate my Windows via internet or phone, but my net is disconnected and it doesn't provide a phone number (seems phishy to me).

    Now I am unable to even login to my computer. I have tried to run Kepersky Anti Virus software by inserting a CD while my computer is booting up and scanning it then. It found a couple of things but after scanning my PC twice now, it still won't log in to either normal windows or safe mode.

    I'm not sure what to do next, I would reealllyy prefer not to reformat the computer if I can help it.

    Kind regards
    Demonise
     
    Last edited: Jan 12, 2010
    demonise, Jan 12, 2010
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Very bad idea!!! Those are bad instructions that will lead to disaster as you have now noticed first hand. Without knowing exactly what files you have deleted, we cannot even try to restore them using the Recovery Console (which requires your Windows CD). You did not even tell us which version of Windows you are using! I will assume it is Windows XP and give you something to try down at the end.


    You more than likely also removed the files for your Windows license.


    It may wind up being your only choice, but first try the below assuming you have Windows XP and also that you have your Boot CD.

    Try restoring to an older registry hive using the Recovery Console as per the below.
     
    chaslang, Jan 15, 2010
    #2
  3. demonise

    demonise Private E-2

    I have formatted the computer and reinstalled windows. I can log into my computer fine but would this have gotten rid of the trojan? What firewall / anti spyware programs to you recommend I use, or should I just run the Malware Removal instructions anyway?

    Yes I do have Windows XP Home Edition, but have now upgraded it to Windows Vista Home Premium. I ran the instructions to start Recovery Console etc. but it did not solve the problem.
     
    demonise, Jan 17, 2010
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    I cannot say for sure since I never saw exactly what you had. While most infections will not survive a proper format/reinstall, some infections can.

    See this: How to Protect yourself from malware!

    Yes, if you are still having problems or want to be sure you are clean.
     
    chaslang, Jan 18, 2010
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds