News:

And we're back!

Main Menu

Help with Trojan

Started by Josephus, June 24, 2011, 08:42:17 AM

Previous topic - Next topic
Print
Go Down Pages1 2
User actions

Josephus

June 24, 2011, 08:42:17 AM
So my PC is infected with one of those trojans that sends a million "Your computer has serious Hard Drive Errors" etc etcc popups. Before I can even try to figure out how to deal with that issue, though, there is also something else. My desktop is completely black; I can't see my wallpaper or any icons. Now someone on Youtube posted a posssible solution where I select explorer.exe from New Task in the task manager.
I have nothing to lose by trying that...or do I? I have no idea if this kid is pulling my leg and this is a bad thing to do or whether it's worth a shot.

Signed: Anxious PC user.

PS: The only good thing is that the trojan only infected one of the user accounts...the other user account seems, so far, to be OK, except my virus protection can't seem to connect to the Internet and doesn't open when I log on.
Civis Romanus Sum<br /><br />"My friends, love is better than anger. Hope is better than fear. Optimism is better than despair. So let us be loving, hopeful and optimistic. And we'll change the world." Jack Layton 1950-2011

Grey Fox

#1
June 24, 2011, 09:55:21 AM
Combofix from bleepingcomputer.com
Colonel Caliga is Awesome.

Josephus

#2
June 24, 2011, 10:09:18 AM
Given that I don't know what I'm doing this message on Combofix scares me:


You should not run ComboFix unless you are specifically asked to by a helper. Also, due to the power of this tool it is strongly advised that you do not attempt to act upon any of the information displayed by ComboFix without supervision from someone who has been properly trained. If you do so, it may lead to problems with the normal functionality of your computer.

Also because my desktop is black and it wants to install it there, I won't be able to see it.
Civis Romanus Sum<br /><br />"My friends, love is better than anger. Hope is better than fear. Optimism is better than despair. So let us be loving, hopeful and optimistic. And we'll change the world." Jack Layton 1950-2011

Grey Fox

#3
June 24, 2011, 10:11:45 AM
Use it anyway.

Do it from safe mode.
Colonel Caliga is Awesome.

DontSayBanana

#4
June 24, 2011, 10:55:54 AM Last Edit: June 24, 2011, 10:57:31 AM by DontSayBanana
Yeah, GF's suggestion is probably easier.  As a backup, here's my usual process:


  • Restart in Safe Mode
  • Run HijackThis, fix known bad entries and anything with "file missing"
  • Run msconfig, remove bad services
  • Find and nuke any files associated with the given malware
  • Restart, update antivirus in Safe Mode with Networking if possible
  • Restart to normal, check for normal operation
  • Update antivirus, if it wasn't possible in SMWN
Takes me about 40 minutes to do a virus removal, but I also keep good track of files and have gotten good at reading HJT logs.
Experience bij!

Caliga

#5
June 24, 2011, 01:12:40 PM
Here's my solution:

* back all your important shit up if you aren't already doing that regularly like you should be
* wipe hard drive
* reinstall OS
* reinstall programs
0 Ed Anger Disapproval Points

Josephus

#6
June 24, 2011, 01:17:47 PM
Quote from: Caliga on June 24, 2011, 01:12:40 PM
Here's my solution:

* back all your important shit up if you aren't already doing that regularly like you should be
* wipe hard drive
* reinstall OS
* reinstall programs

Maybe.

See here's the thing...the computer works fine, as I said, when using a secondary user account..so I'm just using that for now.
Civis Romanus Sum<br /><br />"My friends, love is better than anger. Hope is better than fear. Optimism is better than despair. So let us be loving, hopeful and optimistic. And we'll change the world." Jack Layton 1950-2011

Caliga

#7
June 24, 2011, 01:24:11 PM
I've just found that it's often not much more work to wipe the drive, and it has the secondary bonus of forcing you to reevaluate what apps you really need installed right now vs. stuff you haven't used in months and probably should have uninstalled a while ago.
0 Ed Anger Disapproval Points

DontSayBanana

#8
June 24, 2011, 04:39:08 PM
Quote from: Caliga on June 24, 2011, 01:24:11 PM
I've just found that it's often not much more work to wipe the drive, and it has the secondary bonus of forcing you to reevaluate what apps you really need installed right now vs. stuff you haven't used in months and probably should have uninstalled a while ago.

That was true with XP and Vista; the licensing restrictions on 7 don't really support it, though (the severely limited number of activations).  Microsoft also has a large enough percentage of tools linked to activation that I don't recommend throwing a customer under the bus with a hot copy of the OS.
Experience bij!

Slargos

#9
June 26, 2011, 06:18:41 PM

garbon

#10
June 27, 2011, 08:19:45 AM
Thanks, Slargos. :rolleyes:
"I've never been quite sure what the point of a eunuch is, if truth be told. It seems to me they're only men with the useful bits cut off."
I drank because I wanted to drown my sorrows, but now the damned things have learned to swim.

Josephus

#11
June 27, 2011, 08:38:09 AM
Is that what they mean by "safe mode"? :lol:
Civis Romanus Sum<br /><br />"My friends, love is better than anger. Hope is better than fear. Optimism is better than despair. So let us be loving, hopeful and optimistic. And we'll change the world." Jack Layton 1950-2011

Slargos

#12
June 27, 2011, 10:33:46 AM
I will admit, I only read the thread title.  :sleep:

Darth Wagtaros

#13
July 14, 2011, 05:33:47 AM
Quote from: Caliga on June 24, 2011, 01:24:11 PM
I've just found that it's often not much more work to wipe the drive, and it has the secondary bonus of forcing you to reevaluate what apps you really need installed right now vs. stuff you haven't used in months and probably should have uninstalled a while ago.
Data could be infected too. 
PDH!

DontSayBanana

#14
July 14, 2011, 07:15:03 AM
Quote from: Darth Wagtaros on July 14, 2011, 05:33:47 AM
Quote from: Caliga on June 24, 2011, 01:24:11 PM
I've just found that it's often not much more work to wipe the drive, and it has the secondary bonus of forcing you to reevaluate what apps you really need installed right now vs. stuff you haven't used in months and probably should have uninstalled a while ago.
Data could be infected too. 
Good point.  Didn't think of that, but I'm also one of those paranoid types that scans each file as it's downloaded and cleans all executable files out of the download folder at least weekly.
Experience bij!
Print
Go Up Pages1 2
User actions