I need information about how to get rid of a trojan named īDropperī

Have a question or want to start a discussion? Post it! No Registration Necessary.  Now with pictures!

Threaded View
I need information about how to get rid of a trojan named īDropperī

I clicked on something on a site I didnīt know(still donīt even know
what site it was, I just clicked on an image showing on my screen
thinking the original would be blown up).
Anyway, it invaded my PC and is installed on all of my īdisksī.
I have three physical disks and several partitions. Some FAT32, some
NTFS.
The trojan is inside(at least) all of the īSystem Volume Informationī
folders on all disks.
Avast has recognized the invasion, in real time, but it did not forbid
its entrance. Maybe because of some miss-configured parameter(I am not
blaming Avast for not stopping the thing... just want to get rid of it
for good...)
More: I have somehow discovered where the associated programs and
files were stored, by chance.
So, I tried to delete them.
It didnīt work, for every time I deleted the files, I had to wait for
some seconds, when copies were somehow built and re-installed...
Worse: multiple copies were done in such processes.
Still more: as the files are no System Volume Information folders, I
am not able to access them anymore. Windows forbids me to do so.
So, can anyone help me?
Is there any way to get some kind of vaccine, sent to me in an
appropriate format, so that it doesnīt get infected before I can use
it?
Lastly, I have tons of data I canīt lose in those disks. Two of them
are 250 gigs and one is 30 gigs(this one was installed in an attempt
to have a new copy of Windows XP, but I have found out it got infected
almost as soon as it was installed,,, still, the operating system is
there and working... but I am almost sure my mouse and my keyboard
drivers are affected,,, and this is dreadfull...), all of them about
60% full...
Any help welcome.
Thank you all in advance... (and please, anyone who thought of it...
donīt send me similar things... I canīt stand anymore of it... :-[ )
Foca





Re: I need information about how to get rid of a trojan named īDropperī

Quoted text here. Click to load it

Hi Foca,  

Sorry to hear of your troubles.  That's a hard way to learn these
lessons.  :-\  

You are faced with an extremely invasive malware infection, and the
only reliable foolproof method to get back to a known clean state is
to flatten, reformat, and reinstall the OS from original media.
There are utilities that claim to clean things, but you can never be
sure they got "everythign" and even in the best case you're left with
a system that might no longer be the drone of some remote master, it
still wont' be terribly stable since the "cleaning" process soemtimes
rips out some functionality your OS really needs.  

To get the data you need off, a utility disk like Sysresccd.org, a
bootable CD that runs Linux (without executing one bit of code off
your infected hard drive) and an external hard drive can be wonderful.
You'll have to learn the basics of mounting the disks and doing the
copying from the internal hard drives to the external box, but it's
not too bad.  Tutorials are out there, and help is around for the
asking.  

Once your new OS has been restored on your freshly formatted disks,
and all updates applied either from another machine with all the
patches downloaded, or much more easily, Windows Update from behind a
consumer home gateway device of some sort, youn run AV against the
data you backed up before restoring it back as data to your system,
and you can be on about your way.

Best Regards,  
--  
Todd H.
http://www.toddh.net/

Re: I need information about how to get rid of a trojan named īDropperī
X-No-Archive: Yes

Quoted text here. Click to load it


Now that's one of the few things I agree on with people here.
The ONLY way to get rid of a malware infection is to totally
reinstall Windows. Now, one guy from the broadcasting
newsgroups will say otherwise, but reinstalilng the OS is the
only POSSIBLE way to fix the problem.  



Site Timeline