Questions

I Think I Have A Trojan...

+
0 Votes
Locked

I Think I Have A Trojan...

anewmanofgod
Well, this problem started about 2 weeks ago. I was browsing online at my usual locations (yahoo, gmail, cnn, facebook) when my Nod32 Smart Securuity stopped an attack. I was currently on facebook at the time. So, I left Internet Explorer and I ran my virus scan; nothing found. I began to get popups stating my PC needed a virus scan. I consulted with a friend of mine who said it was probably a trojan. I ran Adaware found 20+ infections and removed them, just to re-run it immediately again, to find 20+ again. I ran another program that I cannot remember the name of, that checked my PC against a built database of trojan viruses, it found 10+ so I continued to run it until it found 0 infections. The popups continued and anytime I open IE, it caused PC lag and the scanners would pick everuthing back up again.

After dealing with this for a few weeks, I gave up and reformatted my PC; clean wipe and reinstall of Windows XP, this was a week ago. Now, I am getting the same problems again.

My question is, is there something I can run that will detect what I have? Virus scan isn't picking anything up. I see hundrends of Trojan removal programs, but I dont know what I have so the 15-20 I've tried find nothing.

Help!
  • +
    0 Votes
    JamesRL

    Update adaware. Consider getting Spybot search and destroy too. Make sure its updated. Get Ccleaner too.

    Turn off system restore.

    Boot into safe mode.

    Run Adaware, Spybot and any other tools while running in safe mode.

    Then run your virus scanner.

    Then run CCleaner. It cleans up registry entries, deletes temp files etc.

    Then reboot into "normal" mode and see if the problem still exists.

    James

    +
    0 Votes
    jimmy-jam

    Run Spybot S&D and CCleaner in Safe mode and that should fix you right up. The pop ups stating that you need a virus scan is most likely some ad-ware you picked up while surfing. Spybot can also give you some real time protection against that.

    Best of luck

    +
    0 Votes
    Jacky Howe

    run this as well.

    Download Malwarebytes Anti-Malware, install it and update it.

    <a href="http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe" target="_blank"><u>Malwarebytes</u></a>

    * Double-click mbam-setup.exe and follow the prompts to install the program.
    * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform Quick Scan, then click Scan.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Be sure that everything is checked, and click Remove Selected.

    If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
    <a href="http://malwarebytes.gt500.org/mbam-rules.exe" target="_blank"><u>mbam-rules</u></a>

    I would keep scanning with it until it is clean by closing out and rebooting and running it again.

    Just to be on the safe side when you finish do an online scan with Bitdefender or Google for an online scanner.

    http://www.bitdefender.com/scan8/ie.html

    Edit: To add
    With the new strains of Virus that have been created you may find it necessary to rename the executable files so that they will work. Rename mbam-setup.exe and then navigate to the install folder and rename mbam.exe. Do not change the files extension from .exe. Do the same with Spybot.

    +
    0 Votes
    willcomp

    Do not turn off System Restore. You may need it if something goes awry during malware removal.

    Malware Bytes AntiMalware is usually effective. If it does not remove the infection or you cannot get it to run, post back and we'll try the industrial strength remover.

    +
    0 Votes
    anewmanofgod

    Thank you everyone for your assistance. The Malware program caught the Trojan amd a Full Scan after I rebooted the PC found nothing. I thank you all so much...I usually can handle these issues, but this one I just wasn't aware of the proper software to use.

    Jon

    +
    0 Votes
    Jacky Howe

    sorted out.

    +
    0 Votes
    JamesRL

    The problem with having system restore on is that for whatever reason, the spyware and virus scanners ignore the restore saves. And if you have a restore save of an infected file, you don't clean the system.

    I'm not suggesting you turn it off forever, just for the cleaning period.

    James

    +
    0 Votes
    willcomp

    until I had a removal tool severely corrupt the registry. Now I wait until after infection is removed to turn System Restore off then back on to clear it out.

    +
    0 Votes
    Rottwild

    I have a program that i use and it is called Malwarebytes and you can get it from the link below and it is freeware scan using it and may find the bug. You may also want to try the free AVG you can get it from download.com. Me personally i would run both AVG has found viruses that NOD32 has not for me in the past.

    http://www.2009-version.info/malwarebytes/index.php?source=CCN-CD242-US&googleid=1039407835&targetsite=FDZ&dn=2009-Version.info&d=2009-Version.info&gclid=CJbCgJn9vpkCFRIcawodjVvs5g

  • +
    0 Votes
    JamesRL

    Update adaware. Consider getting Spybot search and destroy too. Make sure its updated. Get Ccleaner too.

    Turn off system restore.

    Boot into safe mode.

    Run Adaware, Spybot and any other tools while running in safe mode.

    Then run your virus scanner.

    Then run CCleaner. It cleans up registry entries, deletes temp files etc.

    Then reboot into "normal" mode and see if the problem still exists.

    James

    +
    0 Votes
    jimmy-jam

    Run Spybot S&D and CCleaner in Safe mode and that should fix you right up. The pop ups stating that you need a virus scan is most likely some ad-ware you picked up while surfing. Spybot can also give you some real time protection against that.

    Best of luck

    +
    0 Votes
    Jacky Howe

    run this as well.

    Download Malwarebytes Anti-Malware, install it and update it.

    <a href="http://download.bleepingcomputer.com/malwarebytes/mbam-setup.exe" target="_blank"><u>Malwarebytes</u></a>

    * Double-click mbam-setup.exe and follow the prompts to install the program.
    * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform Quick Scan, then click Scan.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Be sure that everything is checked, and click Remove Selected.

    If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install.
    <a href="http://malwarebytes.gt500.org/mbam-rules.exe" target="_blank"><u>mbam-rules</u></a>

    I would keep scanning with it until it is clean by closing out and rebooting and running it again.

    Just to be on the safe side when you finish do an online scan with Bitdefender or Google for an online scanner.

    http://www.bitdefender.com/scan8/ie.html

    Edit: To add
    With the new strains of Virus that have been created you may find it necessary to rename the executable files so that they will work. Rename mbam-setup.exe and then navigate to the install folder and rename mbam.exe. Do not change the files extension from .exe. Do the same with Spybot.

    +
    0 Votes
    willcomp

    Do not turn off System Restore. You may need it if something goes awry during malware removal.

    Malware Bytes AntiMalware is usually effective. If it does not remove the infection or you cannot get it to run, post back and we'll try the industrial strength remover.

    +
    0 Votes
    anewmanofgod

    Thank you everyone for your assistance. The Malware program caught the Trojan amd a Full Scan after I rebooted the PC found nothing. I thank you all so much...I usually can handle these issues, but this one I just wasn't aware of the proper software to use.

    Jon

    +
    0 Votes
    Jacky Howe

    sorted out.

    +
    0 Votes
    JamesRL

    The problem with having system restore on is that for whatever reason, the spyware and virus scanners ignore the restore saves. And if you have a restore save of an infected file, you don't clean the system.

    I'm not suggesting you turn it off forever, just for the cleaning period.

    James

    +
    0 Votes
    willcomp

    until I had a removal tool severely corrupt the registry. Now I wait until after infection is removed to turn System Restore off then back on to clear it out.

    +
    0 Votes
    Rottwild

    I have a program that i use and it is called Malwarebytes and you can get it from the link below and it is freeware scan using it and may find the bug. You may also want to try the free AVG you can get it from download.com. Me personally i would run both AVG has found viruses that NOD32 has not for me in the past.

    http://www.2009-version.info/malwarebytes/index.php?source=CCN-CD242-US&googleid=1039407835&targetsite=FDZ&dn=2009-Version.info&d=2009-Version.info&gclid=CJbCgJn9vpkCFRIcawodjVvs5g