Dope Wars virus has got rid of My Computer, My Documents, System Restore..
Hi all
how it happened
I was running a refurbished (purchased in Dec 07) IBM X31 Thinkpad. It worked a pleasure for 8 months until I did something stupid. I’m usually pretty prudent with watching out for viruses/malware but this time, common sense eluded me.
I was admittedly looking for a free registration key for Dope Wars (a small computer game that you can play for free but requires registration for the higher levels) and came across a site which directed me to an .exe file (fyi, this was the link – if you open it, you still need to click ‘download’ to actually get the virus but I would STRONGLY ADVISE AGAINST VISITING THIS SITE >>>> Link Removed <<<<
. I usually know to be suspicious of this kind of thing, but as I said, I was being stupid and I downloaded and opened it.
what the virus is doing
It ran a virus which is the worst I’ve ever seen; it removed the My Documents and My Computer folders from my desktop, removed the Control Panel, Applications, Run and other toolbars from my start menu which means I can’t access System Restore. It also changed my desktop background to a skull and cross bones and when I turn the computer on, it comes up with multiple error messages saying that I have a virus on my computer (I don’t know if these are genuine or part of the virus).
Also, it came up with a 100 phoney messages from “Norton Antivirus 2008” saying that I had viruses that needed to be removed and that I should click a link. Even though I don’t have NAV 2008. The bottom-right hand corner for Windows Security (again, I don’t know if this is real or genuine) comes up with messages saying “565 viruses found on your computer”, “879 viruses found on your computer”, “1239…” etc.
what I tried to do
I had Adaware Home in a folder on the desktop and the virus seems to have missed that – I ran it and it showed up some viruses but otherwise it has done nothing.
help!
So I can’t get rid of the virus, can’t System Restore it and I don’t want to connect it to the internet in case it somehow spreads or makes it worse (so I have turned my router off). Ideally, I would like to somehow revert my hard disk so I don’t lose any data (I have some stuff backed up, but not recent files which I don’t want to get rid of).
Is there some sort of virus-cleaner USB key thing that I can buy online, plug it in, and it magically deals with all my viruses?
If I reformat and reinstall windows, is there any way to get my important files back (mostly, some important documents, pictures from my trip to Poland and some mp3s)?
Please advise!!
Please do not link to known malware sites, or Crack/Keygen files
how it happened
I was running a refurbished (purchased in Dec 07) IBM X31 Thinkpad. It worked a pleasure for 8 months until I did something stupid. I’m usually pretty prudent with watching out for viruses/malware but this time, common sense eluded me.
I was admittedly looking for a free registration key for Dope Wars (a small computer game that you can play for free but requires registration for the higher levels) and came across a site which directed me to an .exe file (fyi, this was the link – if you open it, you still need to click ‘download’ to actually get the virus but I would STRONGLY ADVISE AGAINST VISITING THIS SITE >>>> Link Removed <<<<
. I usually know to be suspicious of this kind of thing, but as I said, I was being stupid and I downloaded and opened it.
what the virus is doing
It ran a virus which is the worst I’ve ever seen; it removed the My Documents and My Computer folders from my desktop, removed the Control Panel, Applications, Run and other toolbars from my start menu which means I can’t access System Restore. It also changed my desktop background to a skull and cross bones and when I turn the computer on, it comes up with multiple error messages saying that I have a virus on my computer (I don’t know if these are genuine or part of the virus).
Also, it came up with a 100 phoney messages from “Norton Antivirus 2008” saying that I had viruses that needed to be removed and that I should click a link. Even though I don’t have NAV 2008. The bottom-right hand corner for Windows Security (again, I don’t know if this is real or genuine) comes up with messages saying “565 viruses found on your computer”, “879 viruses found on your computer”, “1239…” etc.
what I tried to do
I had Adaware Home in a folder on the desktop and the virus seems to have missed that – I ran it and it showed up some viruses but otherwise it has done nothing.
help!
So I can’t get rid of the virus, can’t System Restore it and I don’t want to connect it to the internet in case it somehow spreads or makes it worse (so I have turned my router off). Ideally, I would like to somehow revert my hard disk so I don’t lose any data (I have some stuff backed up, but not recent files which I don’t want to get rid of).
Is there some sort of virus-cleaner USB key thing that I can buy online, plug it in, and it magically deals with all my viruses?
If I reformat and reinstall windows, is there any way to get my important files back (mostly, some important documents, pictures from my trip to Poland and some mp3s)?
Please advise!!
Please do not link to known malware sites, or Crack/Keygen files
0
This discussion has been closed.
Comments
Took some photos of what exactly is wrong with it...
Start-up...
As you can see, I can't access "RUN" or "System Restore"...
I didn't install Antivirus XP 2008. I assume it is part of the virus...
Then windows seems to die and this message comes up...
This pic shows all the desktop icons NOT added by me (also, the desktop background is part of the virus)... Also note that the icons for MY DOCUMENTS and MY COMPUTER have been deleted...
My name is Katana and I will be helping you to remove any infection(s) that you may have.
Please observe these rules while we work:
1. If you don't know, stop and ask! Don't keep going on.
2. Please reply to this thread. Do not start a new topic.
3. Please continue to respond until I give you the "All Clear"
(Just because you can't see a problem doesn't mean it isn't there)
If you can do those three things, everything should go smoothly
Please Note, your security programs may give warnings for some of the tools I will ask you to use.
Be assured, any links I give are safe
Malwarebytes' Anti-Malware
Please download Malwarebytes' Anti-Malware to your desktop.
Installed Programs
Please could you give me a list of the programs that are installed.
You will see a list with the programs installed in your computer.
Click on save list button and specify where you would like to save this file.
When you press Save button a notepad will open with the contents of that file.
Simply copy and paste the contents of that notepad into your next post.
Please post the above logs along with a fresh HJT log
Infections can change and fresh instructions will now need to be given. If you wish to reopen your topic, please send a Private Message (PM) to Trogan with a link to your thread.
If you are not the user who started this thread, you must start your own Thread instead