Virus Help, followed tutorial. Cant Boot in normal mode, Possible trojan.

Hi,

I am currently running Windows Vista 32bit Buisness premium.

A couple days ago, my Antivir Antivirus program started go go off almost every ten seconds, warning me of different viruses infecting my computer. I immediately downloaded spybot, performed a scan, and got rid of the viruses it found. I continued to recieve constant popups from antivir though. I turned off my computer, hoping to work on the problem more the next day.

The next day, my computer would not turn on in normal boot mode. The computer would just stay put on a black screen. I booted it in safe mode with networking. Downloaded malwarebytes, scanned, and deleted what it found, but the scan did not change the situation. I was still unable to boot in normal mode, and when i would browse the internet, i would be redirected to different websites. Also, google chrome was not working for me, so i started to use internet explorer.

Using safe mode with networking, I stumbled across the "read me" pinned thread in this forum on how to remove malware from your computer, and i followed that to the best of my ability.

This is the log from the Super-anti spyware program i ran.
View attachment 152004

This is the log from the Malwarebytes scan i ran from the turorial.
View attachment 152005

I installed combofix, but everytime i tried to open it, i would immediatly get a blue screen crash, therefore i was not able to open it. I installed rootrepeal, but when i opened it, i recieved the error code "0xc0000024". I then proceeded to go to the files tab, then i proceeded to scan. When it started, an error code came up saying "Could not initiliaze driver. Please contact the author." Therefore i was not able to run rootrepeal.

This is the .zip file from MGtools, although it did not look like MGtools did much at all.
View attachment 152006

I tried installing Norton internet security 2010 in safe mode and every time I'd, it freezes at a certain number of files. The last thing i did with the computer before Antivir started warning me of the visures was that i had just downloaded an audio program using torrents. I unzipped the winrar it came in, but was never able to start/ install the program. A couple hours later is when antivir started going bezerk.

Any help would be appreciated, and i will be happy to try to add any extra info that is neede as I'd like to figure this out before the holiday break is over. Thanks a lot!

 

Hi,

Removed messenger plus live. Computer told me to restart so it can officially remove the program and its contents. I tried to reboot the computer, but i guess it got frozen in the process, so i had to turn it off the hard way.

Downloaded avenger, ran it, copy/pasted the quote, and executed. Computer told me to reboot it so i did. The same thing happened where i had to hard boot it off. Either way, a log was still saved on my C Drive, so i presume it was succesful.

Ran Ccleaner as i normally would, did not open any other programs.


Ran the C:\MGtools\GetLogs.bat file, here are the requested logs.

Avenger text file
View attachment 152017

MGlogs .zip file
View attachment 152018

I have yet to notice any changes in the computer thus far. After i publish this post, im going to restart the computer, and try to run it in normal mode. I will edit my post with the results.

Thanks alot for the help, it is very much appreciated!

 

Still cant run in normal mode, and my google chrome still does not work, but this doesnt pose a huge problem, as i am using internet explorer in the meantime. I havent noticed any change on my computer is acting.

Any other ideas?

 

This okay?

Sorry about that.

 

Scanned, it found something, so i selected cure and rebooted, but i had to hard boot it off, and i turned it on in safe mode.

attached is the log from TDSSkiller.

 

i got the
"Found non-standard or infected MBR.Enter 'Y' and hit ENTER for more options, or 'N' to exit" response.


attached is the MBR log.

 

if i go along with this step, will it affect any of the data on my PC? i do have some important files that cannot be backed up that i really need.

Thanks for all your help, i really appreciate all the effort you have put into helping me out!