Solved restoring from Trojan attack

jhhrz · May 25, 2011

Hi, I am an international student in college, so I use two languages for my language bar. This is the first time I encounter such situation.
My camputer anti-virus software detected a Trojan attack so I deleted the Trojan file. But the Trojan program changed my computer setting completely. I did recover all my important files back; but there are still two problem I cannot solve, neither could my college IT department.
The Trojan program somehow changed my start menu so now all the files in the start menu has no sub-file, which should not be that way. The other problem is that I cannot see my language bar now, nor change my language, although I have two languages set up already.
Is anyone able to help me? It is be great. Thank you.

essenbe · May 26, 2011

This is not my area, but you can remove the trojan but tou cannot remove the damage and changes it has caused. The files and folders you backed up need to be scanned with an good anti virus program before reinstallation. Once the computer is infected the only safe procedure is to completely reinstall. Trojans and viruses can embed themselves in the registry and settings, which it sounds like has happened. I would use diskpart and run the 'clean all' command. That is the only way you can be sure to get rid of it. Then do a clean install of the OS. Here is a tutorial of how to do it. Optimize for Windows Reinstallation . After following this procedure you could restore an image made before the infection. But you would have to know exactly when you downloaded the Trojan. A clean install is the best way.

TheReaper · May 26, 2011

+1
A clean install is the best course of action, when the system files have been altered or damaged beyond repair.

essenbe · May 26, 2011

Thanks Reaper. I just know that clean all is the only way to get rid of a Trojan. Thanks.

jhhrz · May 26, 2011

Is there any way I can restore it without reinstall the whole system? I asked because I do not want to reinstall my system.

essenbe · May 26, 2011

The best answer is no. That is the omly way to rid yourself of the virus. From then on, do frrquent image of your OS.

TheReaper · May 26, 2011

It is safest to do a clean install(I know it's a pain in the a**), if you want to get rid of the malware & get your system up and running as it should be. After the clean install, you really should do at least weekly system images(to avoid situations like this), here's how: imaging with free macrium.

jhhrz · May 26, 2011

thanks guys, guess have to reinstall my system.

essenbe · May 26, 2011

Sorry, but it is the only safe way to rid yourself of the trojan. None of us look forward to a new install, but sometimes it's necessary.

theog · May 26, 2011

If your luck is in,
Press the F8 key repeatedly at boot up or use the Startup disk.
Try this
http://www.sevenforums.com/tutorials/700-system-restore.html?ltr=S
in
http://www.sevenforums.com/tutorials/681-startup-repair.html?ltr=S

http://www.sevenforums.com/tutorials/2083-system-repair-disc-create.html

jhhrz · May 26, 2011

actually I restarted my computer then it fixed the problem. Maybe it was just a minor setting problem but I thought it was bige problem. Sorry guys, but still thank all of you.

TheReaper · May 26, 2011

No problem, glad it worked itself out.
Please mark the thread as solved: use the icon at the top right, next to the rep icon

138500d1297752599-how-do-you-mark-thread-solved-samp.jpg

type in "solved", send it & a mod will mark it

Solved restoring from Trojan attack

New member

My Computer

Jedi Master (RET)

My Computers

New member

My Computer

Jedi Master (RET)

My Computers

New member

My Computer

Jedi Master (RET)

My Computers

New member

My Computer

New member

My Computer

Jedi Master (RET)

My Computers

New member

My Computer

New member

My Computer

New member

My Computer