ENTIRE HDD Erased!

Hello, I will make a big story now:

A few weeks ago I freshly installed Win 7 Professional with a student key.
I noticed that my program settings wouldn't be saved, so I made a thread here, someone told me to modify the registry and add something(program settings like Mozilla wouldn't find Flash Player, Photoshop settings and so on).

3-4 days ago those problems started again, but this time my Chrome disappeared, and then my entire project HDD, everything deleted clean.

I restored most of my projects and I made a full clean installation of everything. The first thing after install was to install KAspersky 2010. I scanned everything, everything clean, the only things left were my music, games and what I could save from my projects, everyhting clean, just some keylogger from Coffee Cup form builder that I have 2 years now in a zip that I don't open :).


Today, I was afk for cca 2hrs and when I returned I found everything f****ed up.
My screen was rotated, resolution 800x600 (from 1920x1080), screensaver was running with some chicks, and out of thin air, Ihad installed Virtual GirlHD and Virtual GuyHD, and some application from softpedia: The Ultimate Virus.

Chome, Firefox, the entire Adobe Master Collection CS4 Suite is deleted, along with ALL the files from all my HDD's.

Here is the log Kaspersky spit out. Nothing suspicious, what am I missing. I will definitevly have to recover my project files but I need to know with what antivirus should I look for anything.

Anyhow, as it seems, my installation being 2 days old, the virus wasn't on the pc, but some sort of trojan that downloaded that heap of crap from the internet and what exactly deleted everything from my pc?

UAC is off, I don't like to always hit allow, because I only install things that are necessary and nothing more.

If anyone has an idea about this, please share.

Thanks!


Prinscr1.jpg is from another pc on the same network.
Print1.jpg is from my pc.

My pc is running W7 X64 Professional + KAV 9.0.xxxx
The other pc is running WinXP Sp2(updated) + KAV 9.0.xxxx
They're both being a Dlink DI-524 Router (Firewall not enabled, only WPA2 on WiFi)

karthurk said:

UAC is off, I don't like to always hit allow, because I only install things that are necessary and nothing more.

It seems you also install Trojans. This is the perfect example of what the UAC is designed to protect you from.

wow, Jacee, JACEEEE

ultraplanet said:

karthurk said:

UAC is off, I don't like to always hit allow, because I only install things that are necessary and nothing more.

It seems you also install Trojans. This is the perfect example of what the UAC is designed to protect you from.

The only things I installed since I installed w7 The other day were, Adobe Master Collection, SHockwave, Flash, Quicktime, Media Player Classic (+ffdshow, ac3filter, haali media splitter, x264), WinRar, Total Commander, Winamp, Google Chrome, Firefox, ACDSee, Yahoo Messenger. The same things I have installed in the last 2 years.

If you have the UAC turned off you can and will run into things out there that can slip around your defences and just install themselves without asking you or without your knowlege.... and ta da you have a trojan. With UAC on, any thing that tries to install itself will have to have your permission to do it. It is your choice though.... I have had luck with Malwarebytes in the past it can be downloaded at malwarebytes.org

There's an entire farm of malware there, GREAT!

karturk, commiserations. You will hopefully recover from this a much wiser person.

I restarded my PC after Malware Bytes scanned and required me to restart the PC, to delete all malware and now i`m facing a bright blue screen. Cool

karthurk said:

A few weeks ago I freshly installed Win 7 Professional with a student key.

Where did the copy of the OS come from? Was it a legitimate source?

karthurk said:

Today, I was afk for cca 2hrs and when I returned I found everything f****ed up.
My screen was rotated, resolution 800x600 (from 1920x1080), screensaver was running with some chicks, and out of thin air, Ihad installed Virtual GirlHD and Virtual GuyHD, and some application from softpedia: The Ultimate Virus.

Yeah, something now owns your machine. I wouldn't do anything short of a format and complete and total reinstall at this point.

karthurk said:

UAC is off, I don't like to always hit allow, because I only install things that are necessary and nothing more.

Well, if you keep installs to a minimum and go with the defaults of UAC in Windows 7....you aren't going to get prompted very often at all with it enabled. These are exactly the types of things that UAC is designed to help protect against. It won't stop it from installing if you say Yes...but a prompt indicating that something is trying to get admin level access might throw up a red flag...and cause alarm right at the start....versus after the fact like you are experiencing now.