Author Topic: Don't want to reformat Win32.Generic!BT , Win32:Bamital-X , and VBS.ExeDropper-g  (Read 1523 times)

Offline fireinthesky

  • Newbie
  • *
  • Posts: 2
    • Personal Message (Offline)
Hi i have a gateway 310s. It was infected with Win32.Generic!BT , Win32:Bamital-X , and VBS.ExeDropper-gen[Trj].

I have tried various software products to remove these files etc including spyware terminator, AVG, Avast etc.

I have tried safe mode that worked for a while but now doesn't . I've tried using chkdsk /p /r, fixmbr.

I would like to access the affected hard drives (2) to recover files before reformatting.

I'm thinking of putting the afflicted drives into another pc one at a time to get at the files I want to save. Is this possible without infecting another pc?

I'm open to ideas (aside from burning it in the yard or buying a mac)
Paul :(

Offline CharleyO

  • avast! Evangelist
  • Starting Graphoman
  • ***
  • Posts: 7102
  • Gender: Male
  • Be alert for error code - ID 10T
    • Personal Message (Offline)
***

Welcome to the forums, fireinthesky   :)

Try malwarebytes antimalware free version.

Download it, install it, update it, and then run a quick scan.

Post the results. You can get MBAM at the link below.

http://www.malwarebytes.org/mbam.php


***
Self-built desktop (8 years old) - AMD64 3200+_Gigabyte GA-K8NS Ultra-939_4 gb RAM_GeForceFX 5800w/256 ram_XP/SP3_Avast 7_MBAM_ZA Free __and__ Toshiba Satellite Laptop_W7-64bit_ 4 gb Ram_Avast 8_MBAM

Offline Glitch

  • Newbie
  • *
  • Posts: 14
    • Personal Message (Offline)
"I'm thinking of putting the afflicted drives into another pc one at a time to get at the files I want to save. Is this possible without infecting another pc?"

Yes, but It depends.

If you are slaving the drives and not booting from them (Infected ones),
No harm can come of this unless you are running infected files on the computer you are moving em to that is clean.

What OS isn't bootable?
It wont boot at all?




Offline superhacker

  • avast! Evangelist
  • Advanced Poster
  • ***
  • Posts: 979
  • Gender: Male
  • superhacker != super mario
    • Shift Style
    • Personal Message (Offline)
Are you open to the idea of helping you ;),
Lets do it:
1.clear your temp files:http://www.piriform.com/ccleaner
2.do a dr.web cure it scan:http://www.freedrweb.com/cureit/?lng=en
3.scan with mbam:http://www.malwarebytes.org/mbam.php
4.post a Hijack Hunter log in this topic:http://www.novirusthanks.org/products/hijack-hunter/
5.we will provide a cleaning script,you should run it with Threat Killer
"I'm not afraid to take a stand
Everybody come take my hand
We'll walk this road together, through the storm
Whatever weather, cold or warm
Just let you know that, you're not alone
Holla if you feel that you've been down the same road",Eminem.

 

Google Chrome

AVAST recommends using the FREE Google Chrome™ browser.

Download Google Chrome Now