Cannot Open Hard Drives

manzoor · Jul 19, 2008

I had some sort of Chinese tool in the IE Toolbar (where the refresh, stop, back,forward buttons are) I looked into the ADD/Remove Programs and there were two unknown softwares installed, I uninstalled them, run a NOD32 scan, it founded some viruses, but it couldn't remove it, even though it showed that they were removed but every time i do another scan I found them again...

MY IE homeppage was changing continuously, then I reinstalled my Windows as I couldn't get connected to the Internet. Now when I my OS has been reinstalled I run a another NOD32 Antivirus scan but it says that my system is clean.

When I click my hard drives (C:, D: ) It gives me the Open With option
Although after I have formatted my C: drive, the C: drive is now fine, but the rest are same. And when I right click them, In place of Open and Explore I get two chinese option i dont know what they are. I clicked them but still get the Open With option

Although I can go to my drives, with writing E:. D:. F: in the explorer address bar

So i believe the virus is still hiding there, but what to do, nod32 isn't detecting them

check my logs

TimW · Jul 19, 2008

I am going to have you do some things first:

First...tell me what these are:
C:\Documents and Settings\Manzoor\Desktop\047009754X.zip
C:\Documents and Settings\Manzoor\Desktop\007222942X.zip

Now find and delete these:
C:\Documents and Settings\Manzoor\Desktop\cleanvirus.bat
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\AntiPoisoner.lnk
C:\cap

Then go HERE and scroll down to Drives.....apply the fix.

Go to Bitdefender agree to the license and then select Scan. DO NOT CHANGE THE OPTIONS TO SHOW ALL FILES SCANNED. That will make your logs huge and we don't need to see clean files. Once Bitdefender completes the scan:

Click-on the Detected Problems tab. Then select Click here to export the scan report

When the window comes up to save the report, change the Save as type: box to Text (Tab Delimited) (*.txt) and then in the File name box enter change to bdscan then click save. This will save a file named bdscan.txt in whatever folder you are currently in when you save the file (take notice of where you are at so you can find it later). This bdcan.txt file will actually contain HTML code that we can easily view later while reviewing your log. All we have to do is rename the file to bdscan.html.

manzoor · Jul 20, 2008

I did as you said, and the files your asking about are two ebooks which contain only .chm files. Deleted the cleanvirus.bat and Antipoisoner, they were tools for arp spoofing given to me by my ISP, I was fine with them for almost 5 months. But it could be a malware source so deleted them both.

I forget to tell you that I had a n0tepad.exe process seen in my Task Manager in the previous OS installation but now I have reinstalled my OS, Its not there.

BDscan found no malwares

TimW · Jul 20, 2008

You reinstalled the OS when? Just now?

Notepad should only be running if it is active.

What is the status of you system now? DId you run the drive script I linked you to?

Log in or Sign up

Cannot Open Hard Drives

manzoor Private E-2

Attached Files:

SASLog.txt

mbam-log-7-18-2002 (10-57-14).txt

MGlogs.zip

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

manzoor Private E-2

Attached Files:

bdscan.txt

TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member