Windows 7 Updater does not work

[win7userJ]

I have a trojan (GXVXC). I am having trouble removing it. Every time I remove it from my registry and my SYSTEM32 folder, it comes back when I reboot.

It has caused my Windows 7 updater to stop working.

I have attached a screen shot of what it does to my updater.

Anyone got any ideas what I can do?

 

[TheSchaft]

win7userJ -

I've been seeing some traffic on this particular piece of malware, and it looks like a real nasty one.

The easy solution is to save your user data and do a clean install of Windows 7.

If that isn't do-able, and you have some time, you might want to start with a good on-line scanner/remover like Kapersky (Free Virus Scan - Kaspersky Lab) or TrendMicro (HouseCall - Trend Micro USA).

If that doesn't work, come back and we'll figure out the next steps. (It would help if you put some more info into your system specs also.)

The problem is going to be getting rid of all traces of this little bugger, and since it disables antivirus programs and puts auto run commands on the hard drives, among other things, that may prove difficult.

Let us know how it works out, and good luck.

 

[Tews]

For this particular varmint I would do a clean install .. by the time you chased down all the registry keys etc. you would be up and running...

PS.. remember to image your drive/partition as soon as you finish!

 

[Jacee]

This is a Backdoor Trojan including a Rootkit. You should be aware that any sensitive or personal information (credit card number/Banking account, passwords) on this machine can be or has been stolen.

A wipe and clean install of Windows would be most recommended!

 

[win7userJ]

I was hoping you wouldn't all say that!!!

I am running Window 7 RC build 7100

 

[johngalt]

Another thing you'll want to take a look at would be to perhaps use Darik's Boot And Nuke | Hard Drive Disk Wipe and Data Clearing to wipe that HD really really clean.

Also, don't plan on using another HD in that system / a partition on that drive to make your backup - make them physically off the compute, and back up only data - no executables if you can help it.

 

[Jacee]

I was hoping you wouldn't all say that!!!
I am running Window 7 RC build 7100

A backdoor Trojan including a Rootkit is something you don't mess around with!

If you didn't get your RC Build 7100 from a reliable source, then don't even bother to use the .ISO or DVD again.

 

[Dinesh]

what all things are you using to scan your computer?
Download Best Free Antivirus: ESET! Try free antivirus programs for 30 days.
and
Malwarebytes.org
and run a full system scan.

 

[Tews]

I have a trojan (GXVXC). I am having trouble removing it. Every time I remove it from my registry and my SYSTEM32 folder, it comes back when I reboot.

It has caused my Windows 7 updater to stop working.

I have attached a screen shot of what it does to my updater.

Anyone got any ideas what I can do?

what all things are you using to scan your computer?
Download Best Free Antivirus: ESET! Try free antivirus programs for 30 days.
and
Malwarebytes.org
and run a full system scan.

He's already done this Dinesh. He needs to format and reinstall ASAP. The longer he waits, the worse the situation is going to get. His entire system is compromised, and further delay is not an option.

 

[Dinesh]

Nowhere he has mentioned that he has scanned his system. Anyways, if you say so, clean install is always recommended.