Laptop full of malware

Discussion in 'Malware Help (A Specialist Will Reply)' started by Denise_M, Jan 28, 2008.

  1. Denise_M

    Denise_M MajorGeek

    Hi,

    My son-in-law is having problems with his laptop and asked me if I would take a look at it. I ran the usual CCleaner, AdAware and Spybot first.

    I also ran Anti-Worm and it found something called a duplicator. It's located in Windows > System32 > drivers > etc. The message said that the original host file was replaced by a replicant, where it replicates itself all through the pc and, when you try to kill it, it will sprout off somewhere else and try to hide.

    When I ran Spybot S&D, it found a file named Win32.Autorun in the registry, SBI $DE8B4C73) Settings HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\Windows NT\CurrentVersion\Winlogon\Shell

    I was going to attach screenshots but I couldn't find the Prt Scr button on the laptop.

    I deleted the Win32.Autorun problem but the problem found by "Anti...worm" gives no methods for removal of malware. It only tells you where it found malware. What would be a good program that would find the replicant and remove it, or is a format of the laptop needed?

    Since this is my son-in-law's computer, I'll let him do any further testing and be in contact with you. Any help you can give would be great.
     
    Denise_M, Jan 28, 2008
    #1
  2. TimW

    TimW MajorGeeks Administrator - Jedi Malware Expert Staff Member

    TimW, Jan 29, 2008
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds