Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Can this Trojan be deleted?
July 1, 2009 | Oshkalaboomboom

Posted on 07/01/2009 7:12:27 AM PDT by Oshkalaboomboom

I have a rootkit trace that refuses to go away. Macafee can't delete it. Malwarebytes Antimalware claims to delete it but it's right there as soon as it closes. I find hundreds of references to it via Google but nobody says how to get rid of it and nobody even discusses what it does besides annoy you. My cd burning programs have been disabled so I can't make an alternative OS like BartPE. I can boot off the Windows CD and get into the Recovery console. I use DOS commands to delete the files but they come right back again.

Microsoft has said that there are some infections that can't be fixed. Is this one of them? I can wipe everything out and start over but I'd prefer that to be the last resort, not the first.

The file that won't go away is uacinit.dll It also makes a few copies of itself and a registry key. Has anyone ever successfully deleted this?


TOPICS: Computers/Internet
KEYWORDS: lowqualitycrap; malware; rootkit; trojan; virus
Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-66 next last
To: Oshkalaboomboom
Photobucket
21 posted on 07/01/2009 7:39:52 AM PDT by martin_fierro (< |:)~)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Chronic
The last time I had something like this a few weeks ago it was like described here. It just kept self replicating. Did you try combofix? That is what fixed it for me.
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

I ran MRT and AVG at the same time and AVG removed my trojan/peraonal antivirus virus fist because it ran faster. It came up on mrt but mrt could not remove it because I had already removed it with AVG.

22 posted on 07/01/2009 7:41:49 AM PDT by mountainlion (concerned conservative.)
[ Post Reply | Private Reply | To 15 | View Replies]

To: Oshkalaboomboom

Turn off System Restore


23 posted on 07/01/2009 7:42:01 AM PDT by AppyPappy (If you aren't part of the solution, there is good money to be made prolonging the problem.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: mountainlion

AVG, Norton, McAfee, etc. are not powerful enough to totally and completely remove 99% of malicious rootkits, though. Not to mention that the last two are memory hogs.


24 posted on 07/01/2009 7:42:02 AM PDT by library user
[ Post Reply | Private Reply | To 18 | View Replies]

To: martin_fierro

Love the irony of using BING for that search.


25 posted on 07/01/2009 7:42:40 AM PDT by library user
[ Post Reply | Private Reply | To 21 | View Replies]

To: Oshkalaboomboom

When I used to use Windows, I’d set up my computer specifically so I could just zap the whole install and start over whenever I needed to. I found this much easier than pounding my head against the wall every few months. When Windows started to slow down, or if I had a problem, I’d format the Windows partiion on the HD. Then, I’d put the Recovery Disks in and start over from the beginning. Really didn’t take that long to do and I knew that when I was finished, I’d have a healthy computer.

Most of my data stayed on a separate partition anyway, and I always had backup copies of any programs I used regularly.

Those days have long passed since I started using Ubuntu.


26 posted on 07/01/2009 7:44:31 AM PDT by FLAMING DEATH (I am NOT better off than I was four years ago!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Oshkalaboomboom

I’ve been using Linux for two years now. You can boot up your computer with a Linux “live CD”. It does nothing to your Hard Drive and you can then save all the important files you really need on memory sticks or an external hard drive. Once you’ve backed up all the data you really want reinstall Windows. (Or , if you like, stay with Linux and become pleasantly amused at all the hardship others are having when a better choice is free for the taking)


27 posted on 07/01/2009 7:44:32 AM PDT by Nateman (If liberals aren't screaming you're doing it wrong.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Oshkalaboomboom
I use a USB pendrive to remove rootkits off of infected computers. (Well, actually, I use write protected SD cards in an SD card reader, swapping in tools as I need it.)
28 posted on 07/01/2009 7:47:01 AM PDT by kingu (Party for rent - conservative opinions not required.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: NCC-1701

Just a different problem instead...


29 posted on 07/01/2009 7:47:03 AM PDT by Vanders9
[ Post Reply | Private Reply | To 5 | View Replies]

To: Lazamataz

The computer, or the girl?


30 posted on 07/01/2009 7:47:32 AM PDT by Vanders9
[ Post Reply | Private Reply | To 10 | View Replies]

To: Oshkalaboomboom

OK, if none of that stuff works, go to www.majorgeek.com and follow their instructions TO THE LETTER for removing malware. Why are they different? Because they walk you through the process (in part using the hijackthis tool) of actually digging into the registry, bootup process, etc where malware hides and manually ripping it out by the roots. Warning: The process is long and tedious and if you mess up a step, you just might (in fact probably will) trash your computer. Its where I go when all else fails (and I have both trashed and saved my computer on different occassions).


31 posted on 07/01/2009 7:49:25 AM PDT by piytar (Take back the language: Obama axing Chrystler dealers based on political donations is REAL fascism!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: NCC-1701
Get a Mac. You won’t have this problem.

I agree. Eating and drinking lots of beer make lots of problems just disappear.


32 posted on 07/01/2009 7:53:40 AM PDT by VeniVidiVici (ABC-AP-MSNBC-All Obama, All the time.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Oshkalaboomboom
It is a pain to remove. I finally started pulling the hard drive out of systems and installed them onto a known good system I use for Folding@home and virus removal.

Depending on the age of your hard drive and type, buy a SATA/IDE-to-USB adapter or an external drive enclosure. Pull your hard drive, plug it into the USB adapter and then plug into a system with the very latest Windows updates, AVG/other antivirus and spyware removal tools.

Once mounted externally, you can treat it as another drive. I start with an AVG scan and finish with a Malwarebytes scan.

There are a few extra “super-hidden” files that you can't get into on a drive that is the boot drive. I typically find these infected files in “Recycler”.

While you have the drive out, go ahead and run a defrag of the drive.

If this is a true rootkit then you will need better tools, but for most things AVG, Windows Defender and Amlwarebytes work fine.

There comes a time that you may be well advised to take the system into a local nerdshop and pay them to help.

If you can wait a day, I can build you a BartPE and send it over. FReepmail me if you need it.

33 posted on 07/01/2009 7:57:09 AM PDT by texas booster (Join FreeRepublic's Folding@Home team (Team # 36120) Cure Alzheimer's!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Oshkalaboomboom

Well, “delete computer” and then “get a Mac” and you’re home free... :-)


34 posted on 07/01/2009 8:01:10 AM PDT by Star Traveler (The God of Abraham, Isaac and Jacob is a Zionist and Jerusalem is the apple of His eye.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Vanders9
The girl.

Then the computer.

Then the girl.

 

 

Then the girl again.

35 posted on 07/01/2009 8:01:41 AM PDT by Lazamataz (Too sick for words!)
[ Post Reply | Private Reply | To 30 | View Replies]

To: Oshkalaboomboom

Did you turn off/disable Windows Restore before trying to delete the trojan?

If not, you need to do that.


36 posted on 07/01/2009 8:04:49 AM PDT by smokingfrog ( Don't mess with the mockingbird! /\/\ http://tiny.cc/freepthis)
[ Post Reply | Private Reply | To 1 | View Replies]

To: jersey117

Bookmark


37 posted on 07/01/2009 8:07:29 AM PDT by jersey117
[ Post Reply | Private Reply | To 1 | View Replies]

To: Lazamataz

You do know that “I’d hit it” comments makes some people break out in hives don’t you?

But then, that’s probably why you said it.

I wouldn’t hit it because I am married.

Is fantasizing really cheating?


38 posted on 07/01/2009 8:07:31 AM PDT by wxgesr (I want to be the first person to surf on another planet!)
[ Post Reply | Private Reply | To 35 | View Replies]

To: wxgesr
You do know that “I’d hit it” comments makes some people break out in hives don’t you?

I'd hive it.

I wouldn’t hit it because I am married.

Oh, you'd hit it. You just don't want the consequences of hitting it.

But make no mistake.

You'd hit it.

39 posted on 07/01/2009 8:09:51 AM PDT by Lazamataz (Too sick for words!)
[ Post Reply | Private Reply | To 38 | View Replies]

To: Oshkalaboomboom

bump for later


40 posted on 07/01/2009 8:11:57 AM PDT by GOPJ (Duke University official offers to SELL a black five year old for rape parties & the MSM looks away?)
[ Post Reply | Private Reply | To 1 | View Replies]


Navigation: use the links below to view more comments.
first previous 1-2021-4041-6061-66 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson