View Full Version : Problems after Brontok virus removal.
Hi everybody, i'm new here and need help please.
A while ago my PC got infected with the Brontok virus. (email/USB virus)
I've removed the Brontok worm by means of Avast Bootscan from C:\System Volume Information.
Now my PC behaves strange like;
1)Sometimes my PC reboot by itself,
2)TeaTimer.exe not showing up in the taskbar,
3)Avast only shows up the second time when opened.
I've read somewhere that after removing Brontok, a PC is never the same again. (is this true?)
Now i need some info like what this strange names in the S&D directory means;
HEHIFR.scr
KHQVRJAXJJEKKVXV.scr
NVYLKWYBBZLWWENXH.scr
Could this be Brontok files created to oppose S&D's functions?
I use S&D version 1,5,2,0
Your help regarding this will be very much appreciated.
Regards
Hello lonman,
.scr is a file extension. As a script or a screen saver the file may have been used to execute other files which carried a Trojan.
If you would like someone to take a look at the system, please follow the procedure in this link:
"BEFORE you POST"(READ this Procedure BEFORE Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)
Then start your own thread in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) where a helper will advise you when available.
Regards. :)
Hello lonman,
.scr is a file extension. As a script or a screen saver the file may have been used to execute other files which carried a Trojan.
If you would like someone to take a look at the system, please follow the procedure in this link:
"BEFORE you POST"(READ this Procedure BEFORE Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)
Then start your own thread in the Malware Removal Forum (http://forums.spybot.info/forumdisplay.php?f=22) where a helper will advise you when available.
Regards. :)
Thx for your help tashi, i will do so.
Thx for your help tashi, i will do so.
Edit; Hi tashi, i've read the procedure in the link and this is going to be a long story for me cos at my age i'm not so good with PC's.
I do have a good backup which i can use and it will be much quicker for me to format and load backup again.
I appreciate your help
Thx
Regards
jjjdavidson
2008-10-02, 23:31
Now i need some info like what this strange names in the S&D directory means;
HEHIFR.scr
KHQVRJAXJJEKKVXV.scr
NVYLKWYBBZLWWENXH.scr
Could this be Brontok files created to oppose S&D's functions?
I don't know about removing Brontok or what damage it does, but those .scr files are normal for Spybot. See this thread:
http://forums.spybot.info/showthread.php?t=29543
Hope this helps,
Jay
I don't know about removing Brontok or what damage it does, but those .scr files are normal for Spybot. See this thread:
http://forums.spybot.info/showthread.php?t=29543
Hope this helps,
Jay
Yes, however,
Now my PC behaves strange like;
1)Sometimes my PC reboot by itself,
2)TeaTimer.exe not showing up in the taskbar,
3)Avast only shows up the second time when opened.
So there is a problem and without looking at a log we can't know what is causing it. :)
I do have a good backup which i can use and it will be much quicker for me to format and load backup again.
There may be no need to format lonman, a quick look at a HiJackThis log by one of our analysts would be easy enough and you could go from there. Edit: The computer may be perfectly clean and the problems you are experiencing may have been caused during the process of malware being removed and require a fix.
If you decide to take that path I will ask someone to assist you asap.
Best regards.
I don't know about removing Brontok or what damage it does, but those .scr files are normal for Spybot. See this thread:
http://forums.spybot.info/showthread.php?t=29543
Hope this helps,
Jay
Thx Jay for this info, now i don't have to worry about them.
@ tashi, my PC still do everything that i need to do, but it's these annoying things that happens sometimes.
Due to the fact that i'm doing work on the internet i cannot afford to be offline for more than 10 hours. My backup can be restored within half an hour and this will be my best solution, but i don't have to do it now cos like i said my PC is working atm. But i always try to do a repair without formatting, cos formatting for every little problem is no experience regarding troubleshooting & repair.
Thx for all your info & help.
BTW i am using HJT and Autorun for a long time now but couldn't find anything suspicious.
Have a nice day
Regards