PDA

View Full Version : Malware removel, or new hard drive?



gofigurehuh
2007-12-06, 10:26
well i belive i have sum trojans(2), and maybe worm?. i have ran spybot and got the these results: LEGMIR-BN(trojan), i have file name and other info also...DLOADER-VI or VL not sure (trojan) file name msmsgrs.exe....RIZON-A:worm disgiused as program for my soundcard SOUNDMAX.....Also i had ran multiple antivirus' and only 1 came up with malware results it was referred to to as destructive program as i can only remember a portion of the name is as goes: .....[php1] not much but i was limited buy circumstances. i have other oddities with installed programs and windows behavior. i have reinstalled windows, ran AV in safe-mode, tried to track down in regedit, few other options . i must also mention i play[ed] console games and belive that is were most odd behavior began, i heard nasty tales of console games being prime oppertunties for intrusions i have some logs i am also posting from HJT. any and all help would be fanstastic. and i think wat u guys do for FREE is VERY commendable. i would like to not have to buy new Hard drive and start over if i can salvage this1. ps if i do have to start completely fresh wat is good way to prevent this(software,tips...ect) BTW i Don't do the porn thing so that can be rules out. thx again!!!

Mr_JAk3
2007-12-09, 12:59
Hello gofigurehuh and welcome to the Forums :)

Sorry for the delay.

If you still need help:

Please post a HijackThis log to here.

Download HJTInstall.exe (http://www.trendsecure.com/portal/en-US/threat_analytics/HJTInstall.exe) to your Desktop.
Doubleclick HJTInstall.exe to install it.
By default it will install to C:\Program Files\Trend Micro\HijackThis .
Click on Install.
It will create a HijackThis icon on the desktop.
Once installed, it will launch Hijackthis.
Click on the Do a system scan and save a logfile button. It will scan and the log should open in notepad.
Copy/Paste the log to your next reply please.

Don't use the Analyse This button, its findings are dangerous if misinterpreted.
DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.