Does format get rid of trojan?

Discussion in 'malware problems & news' started by alex11111, Jul 4, 2007.

Thread Status:
Not open for further replies.
  1. alex11111

    alex11111 Registered Member

    Joined:
    Jun 14, 2007
    Posts:
    13
    hi did a format of drive many times and reinstall windows but some funny things happen:

    1) Software shut down without clicking exit
    2) Network cable unplug while surfing (have to reinstall modem driver)
    3) Uses spyware software, avg, counterspy and other misc softwares but nothings found

    Does format really get rid of trojan? Does trojan program as NON format file which the trojan is on drive or other hardware even with format? Pls advise tks
     
  2. pykko

    pykko Registered Member

    Joined:
    Apr 27, 2005
    Posts:
    2,236
    Location:
    Romania...and walking to heaven
    you may be a victim of hacker attacks via your network. Do you use any firewall?
     
  3. alex11111

    alex11111 Registered Member

    Joined:
    Jun 14, 2007
    Posts:
    13
    Uses windows firewall. The hacker uses the static ip add to hack into the system with no trojan on the system? Pls explain and how to get rid of the hacker. Tks.
     
  4. alex11111

    alex11111 Registered Member

    Joined:
    Jun 14, 2007
    Posts:
    13
    The hacker change the active protect from active to inactive...

    Uses all type of tools but found non.

    Pls advise how to to prevent the hacking...
     
  5. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,696
    Hello,

    Before you assume that you are hacked, how about:

    Tell us how you did the install of Windows and what did you do alongside it, what programs did you install etc? What Windows? Maybe some software is not correctly configured. Maybe the Windows is corrupt. Maybe you have faulty hardware.

    Did you try running your machine without Internet, to see if the mysterious things happen then?

    Mrk
     
  6. alex11111

    alex11111 Registered Member

    Joined:
    Jun 14, 2007
    Posts:
    13
    Format the drive. Have sygate firewall, avg antispy, counterspy install. Use the com with internet on.

    1) Wile surfing the net, the cable display unplug despite the cable is there. Reolve by reinstall the driver (Think the hacker uninstall the driver)

    2) Antispy active shield made inactive while surfing the net and also counterspy

    3) Type a url (eg wildsecurity) on the bar and return "refer to a location not on the drive or internet"

    4) Sygate firewall made inactive while surfing net and before give warning that IE is trying to connect to remote computer

    5) Setting of counterspy (Active shield) make inactive

    6) Before formatting some movies files are missing which didn't deleted

    Pls anyone knows how to prevent the hacker from hacking... Try nearly all usefull application to counter and also format but not solving the problem...
     
  7. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,696
    Hello,

    Did you unplug the computer from the net to see if this happens when you are disconnected as well? Do you use legit software sources to install your software? Even if your install is clean and gets rid of the trojan, you can easily reinfect yourself over and over again with bad installer.

    Anyhow, if the symptoms do not reoccur when you are not connected, you should:

    Insert Window CD.
    Delete all existing partitions.
    Create new partitions.
    Format.
    Install.

    Use firewall BEFORE you connect.

    Reinstall software - be careful you use legit installers.

    Think carefully what your habits are and how and why do you get infected.

    Do not use IE.

    Mrk
     
  8. alex11111

    alex11111 Registered Member

    Joined:
    Jun 14, 2007
    Posts:
    13
    Sygate firewall is hack by the person and now the firewall is not active even when double click on the .exe file.

    The sygate has a password setting which return old password not match despite no password is being set before.

    Why is that format the drive after which still has the hacker kept coming back to hack? Is due to static IP add?
     
  9. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,696
    If you want help, then perhaps you should listen to people trying to help you and do what they say? Otherwise, very little progress will be achieved.
    Mrk
     
  10. alex11111

    alex11111 Registered Member

    Joined:
    Jun 14, 2007
    Posts:
    13
    Did a format and deleted all partition as suggested and reinstall windows with no connection to the internet. However without internet connection and fresh formatting, funny things are there : the icon of outlook express has been changed and no usual prompt for account setup.

    Created two partition during windows installation and despite D drive has no files, the size on properties is 1 GB used. With display hidden files no files are display.

    Despite formatting delete partition and reformatting and no internet connection, the problem is not retify. Does virus or torjan reside in other places beside the drive? Ram, Main board, Cmos, dvd drive or even processor?

    Formatting does not seems to get rid of the unwanted files.

    Any expert in these areas pls advise?

    Think of changing the drive but what if the virus or trojan is at the board, ram or other area, the changing of drive does not solve the problem...?
     
  11. Mrkvonic

    Mrkvonic Linux Systems Expert

    Joined:
    May 9, 2005
    Posts:
    8,696
    Hello,
    Are you using a legit Windows CD?
    Mrk
     
  12. yankinNcrankin

    yankinNcrankin Registered Member

    Joined:
    May 6, 2006
    Posts:
    406
    Unplug everything from your tower be sure power is off, wait about a min, Open the Tower case, ground yourself touch metal, locate cmos switch or battery and remove or press, wait a few seconds and put back the battery or release. Put everything back and use the tool below.
    http://www.killdisk.com/downloadfree.htm Do a low level single pass with this tool , then insert your legal Windows CD, create only 1 partition for now and install Windows again, you can create other partition(s) later on.

    What kind of mother board and PCI devices ? Do you have to reinstall drivers for ethernet, video, CPU ? or are they recognized by Windows after boot? As Mrkvonic said earlier you may be reinfecting yourself with infected program installations. Hope you not a victim of pirated cracked software or hardware parts.
     
Loading...
Thread Status:
Not open for further replies.