Help to make sure trojan virus is really gone

Page 1 of 2 12 LastLast

  1. Posts : 19
    Windows 7 Professional, 64 bit
       #1

    Help to make sure trojan virus is really gone


    Hi,
    I got infected with the trojan downloader dofoil virus and removed it with malwarebytes. But I heard that they can leave other programs behind that do more damage so I'm not comfortable to leave it at that.
    Also I was blocked by spamhaus and don't fancy being blocked again.
    I understand there are other things I can check to make sure this virus hasn't left any friends behind, if someone can take me through some processes that would be excellent.
    Karen
      My Computer


  2. Posts : 2,470
    Windows 7 Home Premium
       #2

    hkfish,

    Please go to the Farbar Recovery Scan Tool Download
    Select the 64-bit version.
    Save it to your Desktop.
    Double-click the downloaded file to run it.

    When the tool opens click Yes to the disclaimer.

    Press the Scan button.

    FRST64 makes a log (FRST.txt) in the same directory from which the tool is run (Desktop).

    Please provide the FRST.txt in your reply. <<---

    The first time the tool is run, it also makes another log: Addition.txt
    Also post the: Addition.txt in your reply. <<---


    Also download RogueKiller:
    http://tigzy.geekstogo.com/roguekiller.php

    Select the x64 version.
    Click the applicable button to download.
    Save to the Desktop.


    Close all windows and browsers.
    Right-click and select: Run as Administrator

    At the program console, wait for the prescan to finish. (Under Status, it says: Prescan finished.)

    Press: SCAN

    When done, a report opens on the Desktop: RKreport.txt

    Please provide the RKreport.txt (Mode: Scan) in your reply.

      My Computer


  3. Posts : 19
    Windows 7 Professional, 64 bit
    Thread Starter
       #3

    Hi cottonball,
    Here are the results attached. I hope it isn't serious..
    Help to make sure trojan virus is really gone Attached Files
      My Computer


  4. Posts : 2,470
    Windows 7 Home Premium
       #4

    So far, so good. :)

    Let's run an online scanner...
    This may take a while, so run the following when you can be home...

    This Scanner is implemented as an ActiveX control, so it is best run on Internet Explorer.
    Right click the IE shortcut and select: Run as Administrator

    Next, download: Free Online Virus Scanner | ESET

    On the ESET website, click on: Run ESET Online Scanner
    Click: Start

    When asked, allow the add-on to be installed
    Click: Start again

    On the next prompt, Computer Scan Settings, check: Remove found threats
    Next, click on: Advanced Settings

    Make sure these options are checked:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
    Click: Scan

    When the scan is completed, if threats are found, in the Scan Results prompt:
    • Click on: List of threats found
    • Click on: Export to text file
    • Save to the Desktop and name it ESET Scan Results
    • Click on: Back
    • Place a check on: Uninstall application on close
    • Click on: Finish, and close the program.
    Please provide the ESET report in your reply to determine if any further action is necessary.
      My Computer


  5. Posts : 19
    Windows 7 Professional, 64 bit
    Thread Starter
       #5

    Oh no soooo many viruses getting past all my virus checkers...

    Those scanner tools are fantastic though aren't they? Now I know why I kept getting DHL emails popping up all the time - because I've got the DHL virus as well.
    Help to make sure trojan virus is really gone Attached Files
      My Computer


  6. Posts : 2,470
    Windows 7 Home Premium
       #6

    These are 2 programs that get rid of Adware/Junkware and will help your cleanup effort:


    Please go to the AdwCleaner Download
    Save to the Desktop.


    Close all open programs.
    To run the program, right-click AdwCleaner.exe and select: Run as Administrator


    Click on Delete and confirm the prompt.


    After the program finishes, the computer is restarted.

    A text file report opens after the restart.

    Please attach the content of the C:\AdwCleaner[S1].txt in your reply.



    Also use the Junkware Removal Tool Download
    Save to the Desktop.

    Make sure you temporarily disable your AntiVirus, Firewall, and any other AntiSpyware applications.
    These programs may interfere with the running of JRT.
    Info: How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs - Security Mini-Guides


    Right-click JRT.exe and select: Run as Administrator

    The tool opens and starts scanning the system. Please be patient as this can take a while...


    When done, a report, JRT.txt is saved on the Desktop.

    Please post the contents of JRT.txt in your reply.


    Last, let’s check the Security status with the following...

    Download Security Check:
    http://screen317.spywareinfoforum.org/
    Save to your Desktop.

    Double-click SecurityCheck.exe

    Follow the onscreen instructions inside the black box.

    When done, a Notepad report opens automatically, called: checkup.txt

    Please post the checkup.txt in your reply.

    (Please do not take any corrective actions!)
      My Computer


  7. Posts : 19
    Windows 7 Professional, 64 bit
    Thread Starter
       #7

    done! Here are the 3 file attachments. The last check didn't run as my op sys isn't supported.
    Help to make sure trojan virus is really gone Attached Files
      My Computer


  8. Posts : 6,830
    Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
       #8

    The Security Check should work on 32-bit and 64-bit Win7
      My Computer


  9. Posts : 6,830
    Windows 7 Ultimate 32-Bit & Windows 7 Ultimate 64-Bit
       #9

    Try running Security check in Safe Mode

    Restart the PC while the PC is booting up tap on the F8 key on your Keyboard . You should get to the Advanced Boot Options screen . Inside there press the down arrow until you get to Safe Mode and press <enter> key . You will see a list of text scrolling down the screen . Login to your account and run Security Check again and save the file to the desktop then restart your PC to normal mode and upload the file .
      My Computer


  10. Posts : 19
    Windows 7 Professional, 64 bit
    Thread Starter
       #10

    oops run as administrator - here it is
    Help to make sure trojan virus is really gone Attached Files
      My Computer


 
Page 1 of 2 12 LastLast

  Related Discussions
Our Sites
Site Links
About Us
Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd
All times are GMT -5. The time now is 20:05.
Find Us