Help dealing with a virus

#1
On the older computer in the house, my brother managed to install 'Virus Response Lab 2009' along with many other Trojans and the like.

Getting rid of the main part (VRL 09) was easy enough, but the trojans and many other programs simply keep replicating themselves after deletion, does anyone have any ideas to how I can sort this (without re-formatting) out once and for all?

I'll add the details of the main Trojan soon; It was in WINDOWS/System32 then it had created a new folder 67_____ and in it the troublesome .dll file.
 
#2
Well, seems obvious by I always asked, have you switched system restore off?? A lot of the buggers like to hide in their, so just install themselves again after a reboot
 
#3
acidedge said:
Well, seems obvious by I always asked, have you switched system restore off?? A lot of the buggers like to hide in their, so just install themselves again after a reboot
Not obvious to me, I thought system restore had to be manually activated once the system is already booted up?

Oh, and I keep deleting one of the trojan .dll files (while looking in the folder) and it just re-appears straight away, as if another file re-writes it. Renaming doesn't work either.
 
#4
FWIW, I've used PCTools Spyware Doctor with AntiVirus - does an excellent job. Another variant is Threat Fire - also works well and will root out the buggers in short order.
 
#5
AAGF said:
FWIW, I've used PCTools Spyware Doctor with AntiVirus - does an excellent job. Another variant is Threat Fire - also works well and will root out the buggers in short order.
I'm pretty limited to free anti-virus, Spyware Docter found every file in quick time, but then wanted me to pay to get rid of them. I'll give Threat Fire a try.
 
#7
Backup all your files except your windows folder then once you've backed them all up. Insert your XP disk and re-install windows hopefully it should fix it. If its installed into your program files then your going to have to get rid of your program files; in other words format it.
 
#9
start windows in safe mode - delete problem file.
Try hijack this - free download
 
#10
Just got rid of nasty with MALWAREBYTES ANTI-MALWARE its free and backup is free
I didnt need backup it was located and removed completely Also has blogspot for help and understanding
diferent virus etc
 
#11
MASON-N said:
Backup all your files except your windows folder then once you've backed them all up. Insert your XP disk and re-install windows hopefully it should fix it. If its installed into your program files then your going to have to get rid of your program files; in other words format it.
It is in the program files, still, i'll try the other options before formatting it.
 
#14
Looks like it's gone now, manually searched through system32 and all the files which were part of the virus are now gone.

Malaware, AVG8 and ad-aware seemed to do the job nicely, although Malaware found most of them (54 files...).

Thanks for the help guys :)
 
#15
jaybee2786 said:
combofix link combofix


run it in safe mode
Interesting. I've not seen this one before.

msr
 

Similar threads


Latest Threads

Top