malware issue... i think?

Discussion in 'Malware Help (A Specialist Will Reply)' started by antrocc, Jun 15, 2009.

  1. antrocc

    antrocc Private E-2

    gday, how are you?

    i have searched these forums for a solution to my problem, but can't quite hit the nail on the head. I'm not sure if my malware is a very issue specific one, but just thought i'd ask for a hand because i know how knowledgable you guys are :)

    adaware says that i have Win32TrojanDownloaderBHO, which every time i 'remove' and reboot, seems to turn up again. i have followed the read & run me malware guide to no avail.

    Notes you may find useful.

    I'v installed Spyware Doctor, but i can't get it to start as the Smart Update won't allow me to connect to the internet to download the latest definitions, displaying 'update failed. error downloading the list of updates'. AVG will also not allow me to update.

    Most of the websites with manual trojandownloader removal guides are somewhat 'address not found'ed? i cant even get to avg.com...

    I downloaded combofix, but won't allow me to fully execute the program, as it has been 'compromised' and says i may have a 'virus named virut', so still unsure on that front as well.

    Because Spyware Doctor and ComboFix wouldn't allow me their services, i've only been able to include the logs from MalwareBytes and MGTools.

    I hope that the information i've given is specific enough, and thankyou so much in advance for helping. I really tried not to waste your time with a question that has already been answered, but i'm absolutely stumped. I've tried so many different solutions...

    Thanks, and looking forward to getting rid of this annoyance!

    cheers,
    ant
     

    Attached Files:

    antrocc, Jun 15, 2009
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Welcome to Major Geeks!

    Yes I'm sorry to give you the bad news but you do have a Virut infection. Read on.

    I can see the reason for your problems. Your logs show that your Windows Operating system files have become infected and there is no known reliable fix for this. In addition there are many many other infected files. We could spend a lot of time trying to remove this infection, but odds are that it will not work because the nature of the infection has so many executable system files infected that as soon as we fix one file, other files that are infected will almost immediately or upon the next reboot, just reinfect the files. In addition, your PC would still basically be unreliable/untrustworthy even if we manage to fix the infected files that we can see since there could be many more that we are not seeing.

    The safest thing for you to do is backup your personal data immediately since your PC could possibly become unbootable at any point in time. Do not back up any executable files. This includes programs that you have downloaded since any of them could be infected.

    Once you backup, you need to format partitions and reinstall Windows and all other software especially your protection software. Then install all updates for all software. DO NOT reinstall from any executable file backups you made while this PC was infected or you will just be reinstalling the infection.
     
    chaslang, Jun 18, 2009
    #2
  3. antrocc

    antrocc Private E-2

    hi,

    yes, as i have never not been able to remove any infection before, i had assumed that this would be a special case! im happy that i finally have the word, so now i can reformat this beast, as i was just waiting in hopes that there would be a easier solution.

    One more thing though, since i will have to re-format, i've always come across a slight problem with drivers and what not, just wondering if you had any advice on driver utilities that i could possibly download after i've reformatted which have an extensive base of drivers that may be able to help me? other than going to the manufactures website and tirelessly searching for the drivers.

    Oh, and because this is an old work laptop, i don't have any of the original cd's :(

    it is a IBM Thinkpad t40 with no mods.

    any ideas?

    cheers again mate!
    greatly appreciated!
     
    antrocc, Jun 18, 2009
    #3
  4. antrocc

    antrocc Private E-2

    also one more thing,

    if i'm just backing up all documents and no executables, is there still any chance that the virus is able to attach itself to the documents?
     
    antrocc, Jun 18, 2009
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You would be better off posting your PC specs and asking about this in the Hardware Forum.[/QUOTE]

    Yes there is a chance especially for binary type documents like .DOC and .PDF file (just two examples). The likelyhood is lower but it is not impossible. What I suggest is that you go a little slowly with the reinstall. First only reinstall Windows itself and your protection software. Make sure all seems good before attempting to reinstall any other software or any backup files. Then still proceed slowly. That way if something does go wrong, you will know the cause.


    Also I suggest that you read the below:

    How to Protect yourself from malware!
     
    chaslang, Jun 20, 2009
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds