help me with this god damn trojan

Discussion in 'OT Technology' started by dealwithit, Jul 9, 2008.

  1. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    Ok, so my virus scanner (avg) detected a trojan about a week ago. Before I could try removing it or quarantining it, the trojan just shuts off my computer. The wierd thing is, if I press any key the computer turns back on but shuts back off about 5 seconds later. This keeps happening for about 10 minutes until I can finally turn it back on. When I try to remove it, the same thing happens again...even in safe mode. So what should I do? I tried The Cleaner and online scanners but the same thing happens. :dunno:
     
  2. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    Place on the tip, then unroll.

    Oh wait...
     
  3. Chris

    Chris New Member

    Joined:
    Oct 27, 2003
    Messages:
    14,711
    Likes Received:
    0
    Location:
    Texas on my mind
    1. sdfix
    2. download kaspersky anti-virus and activate a trial license
     
  4. DAN513

    DAN513 OT Supporter

    Joined:
    Mar 10, 2003
    Messages:
    10,089
    Likes Received:
    2
    Location:
    204
    make sure avg is updated
    install Ccleaner from www.ccleaner.com
    disable system restore
    boot into safe mode
    run ccleaner removing all temporary files
    run avg
    ???
    profit
     
  5. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    tried that and the same thing happened :wtc:

    i even tried turning off all unnecessary startup programs in msconfig and scanning again in safe mode, but the same thing happens :dunno:
     
  6. Chris

    Chris New Member

    Joined:
    Oct 27, 2003
    Messages:
    14,711
    Likes Received:
    0
    Location:
    Texas on my mind
    did you try sdfix?
     
  7. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    where can i get it from? couldnt find it on download.com
     
  8. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    ok i just ran sdfix and it didnt detect anything :sad2:
     
  9. DAN513

    DAN513 OT Supporter

    Joined:
    Mar 10, 2003
    Messages:
    10,089
    Likes Received:
    2
    Location:
    204
    Does it put your system to sleep or does it actually shut it off and you have to boot from scratch?
     
  10. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    it does both. when i press a button it turns back on and then it boots from scratch.

    i ran system analyzer, it found the following:

    trojans:

    trojan-dropper.gen

    viruses:

    Mal/EncPk-C
    Mal/Packer
     
  11. cmsurfer

    cmsurfer ºllllllº

    Joined:
    Jun 6, 2003
    Messages:
    5,079
    Likes Received:
    0
    Location:
    NJ
    Sorry to say, but it sounds like it's time for a format...

    Yea, it may be a hassle to have to backup all your data, and re-install everything, but it's better than going crazy trying to get rid of a virus.
     
  12. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    ya, im just gonna take the route. thanks for the help guys.
     
  13. Prince

    Prince New Member

    Joined:
    May 28, 2008
    Messages:
    285
    Likes Received:
    0
    Formating may not work too. Try this program before doing so.
    This program will deactivate any running virus prog just click on autorun virus button within the program. Then scan your pc using the updated free tool form Kaspersky (with the to date definitions list), It works well.

    The link for the autorun remover program is:
    http://www.ziddu.com/download.php?uid=abObmpStbK2dlpyntayZlJyiZ66WlZir7

    The link of the free updated kaspersky tool is:
    http://downloads1.kaspersky-labs.com/devbuilds/AVPTool/

    Also you can use Adaware 2007 or the latest ver, just search for it on download com.
    It always worked for me, give it a shot.
     
  14. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    Wait, what? Formatting might not work? Erasing the drive and everything on it, including the virus, might not work?
     
  15. Prince

    Prince New Member

    Joined:
    May 28, 2008
    Messages:
    285
    Likes Received:
    0
    assuming he will format partition c only (boot partition)...yeh, It may not work
    assuming he will format the whole drive...It will work but It is the hardest non professional way to solve a virus problem.
     
  16. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    If he reformats the boot partition, the virus may continue to reside on the data partition, but it will be inactive and a post-reinstallation virus scan will pick it up. Let's not forget, computer viruses aren't self-animated, they can only do their thing if the OS loads them into RAM and tells the CPU to run them. With the Registry wiped out, Windows won't even know the virus is there on the other partition.
     
  17. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    lol i fdisk'd and formatted the partition. everythings running ok now. thanks alot.
     
  18. Prince

    Prince New Member

    Joined:
    May 28, 2008
    Messages:
    285
    Likes Received:
    0
    right and any double click on other data partitions will reactivate the virus again so one must open the partitions with explore command from the right click menu (if he has to open the data partitions before scanning). Anyway what I meant is formatting is the last solution to do for solving a virus problem.
     
  19. Prince

    Prince New Member

    Joined:
    May 28, 2008
    Messages:
    285
    Likes Received:
    0
    :) congratz, hope you formatted the whole drive then.
     
  20. trouphaz

    trouphaz New Member

    Joined:
    Sep 22, 2003
    Messages:
    2,666
    Likes Received:
    0
    Wirelessly posted via wap.offtopic.com (Mozilla/2.0 (compatible; MSIE 3.02; Windows CE; PPC; 240x320) BlackBerry8703e/4.1.0 Profile/MIDP-2.0 Configuration/CLDC-1.1 VendorID/105)

    Actually, he just needs a good, up to date virus scan util that'll catch the virus before he's infected again. So, scan all data before loading anything up.
     
  21. deusexaethera

    deusexaethera OT Supporter

    Joined:
    Jan 27, 2005
    Messages:
    19,712
    Likes Received:
    0
    The virus still isn't going to get executed unless Windows is told to run it. I've never seen a virus that could embed an execute command for itself into the file allocation table, and AUTORUN.INF doesn't work on hard drives, so I really don't think it's an issue. Besides, if you know you might have a virus, why would running a scan ever not be the first thing you do?

    But whatever, it's a moot point now.
     
  22. Prince

    Prince New Member

    Joined:
    May 28, 2008
    Messages:
    285
    Likes Received:
    0
    You're right but there are viruses that get reactivated by double clicking on the data partitions (for example the virus which hides the folder options from tools menu).

    maybe I have stored the Antivirus program source on a data partition!

    and as you said it's a moot point now.
     
  23. dealwithit

    dealwithit OT Supporter

    Joined:
    May 30, 2007
    Messages:
    32,214
    Likes Received:
    41
    Location:
    Vancouver
    shit, the virus came back :wtc:

    my computer and internet are running slow again, and when i tried to run spysweeper my computer automatically shut off... same behaviour as when i was virused... fuck

    i guess im gonna have to reformat again. how should i format this so that i can get rid of this problem for good? :dunno:
     
  24. Doomsday

    Doomsday XXX

    Joined:
    Mar 14, 2000
    Messages:
    14,902
    Likes Received:
    0
    Location:
    Minnesota
  25. trouphaz

    trouphaz New Member

    Joined:
    Sep 22, 2003
    Messages:
    2,666
    Likes Received:
    0
    did it come back immediately? did you run a virus scan against all of your data before you opened any of it?
     

Share This Page