Author Topic: Beagle, Bagle and many others - Safe Mode doesnt work - How to proceed?  (Read 5668 times)

0 Members and 1 Guest are viewing this topic.

ZStorm

  • Guest
Hiya

My pc went crazy almost a week ago. At first I thought it was a Windows issue but things went ugly here and so far I found out the following malware:

- Trojan.Downloader.Bagle.fg.2
- Trojan.Toosrrr.SRR
- Win32:Adloader_MT [trj]
- Win32:Banload-DRE [trj]
- Win32:Trat-D [Drp]
- Win32:Rootkit-gen [Rtk]
- Win32:Beagle-AWW [trj]
- Win32:Adware-gen [Adw]

Details of how all happened and tools/tasks used and perfomed as well as the logs are on my thread:

http://forum.avast.com/index.php?topic=34581.0

From all I heard and read, I should perform scans and tools on SAFE MODE. Thing is... SAFE MODE IS NOT FUNCTIONAL. Last attempt on changing settings on MSCONFIG resulted in system to not start up at any mode. I had to perfom manual set up on DOS to get boot back running on normal.

Can you please please please tell me what to do?  ??? ??? ???

I dunno which tools more I can or should run, if I should have System Restore on or off, if Im compromising even more my pc for using internet to post here, search for information, download tools etc. In addition, I have no idea if sensitive data would be compromised as I use home banking too.  :'(

Tks a bunch for any help.

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67212
Beagle virus disable and destroys avast files...
You need to install the latest 4.8 version (or better the latest beta).

I also suggest:

1. Disable System Restore and reenable it after step 3.
2. Clean your temporary files.
3. Schedule a boot time scanning with avast with archive scanning turned on.
4. Use SUPERantispyware and/or Spyware Terminator to scan for spywares and trojans. If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.
5. Test your machine with anti-rootkit applications. I suggest avast! antirootkit or Trend Micro RootkitBuster.
6. Make a HijackThis log to post here or, better, submit the RunScanner log to to on-line analysis.
7. Immunize your system with SpywareBlaster or Windows Advanced Care.
8. Check if you have insecure applications with Secunia Software Inspector.
The best things in life are free.

Offline DavidR

  • Avast √úberevangelist
  • Certainly Bot
  • *****
  • Posts: 87438
  • No support PMs thanks
Please stick with your original topic (http://forum.avast.com/index.php?topic=34581.0) as surely these are all related and you were given info on the restoration of safe mode. Not to mention oldman has put a lot of time into helping you in that topic and all this does is duplicate effort for those trying to help.
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 23.1.6049 (build 23.1.7883.774) UI 1.0.746/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

ZStorm

  • Guest
I got to run in safe mode, I managed to install Avast 4.8 days before and has been running it updated and Im following Techs instructions since I got them from him on here yesterday. Ive performed steps 1 to 3 by now. Thanks a lot for your suggestions, Tech.

Please stick with your original topic (http://forum.avast.com/index.php?topic=34581.0) as surely these are all related and you were given info on the restoration of safe mode. Not to mention oldman has put a lot of time into helping you in that topic and all this does is duplicate effort for those trying to help.

Im gonna stick with my original thread as you suggest David but Id like to clear up I only created this post when I didnt have managed yet to recover safe mode (you posted me the links for fixing tools on original thread hours after this thread here was created) and in addition from having had information from before I was dealing, amongst other threats, with Beagle I had absolutely no idea of what to do next. I was toll stucked and thought as theres a space to deal with only with viruses & worms, it would have a point into getting the matter here. I had no intention to duplicate efforts what so ever. Im terribly sorry if it looked or ended that way.

You said something I guess Im missing... I had no help from oldman (unless he used another profile to post on my original thread), actually he only posted on my thread yesterday confirming your good suggestion for fixing safe mode. I dont wanna sound ungrateful at all or anything like that but maybe you got mistaken or misplaced me for somebody else when you said he had inputed lot of time in helping me.

Anyway, Im back to my original thread and posting there whats new on my end.

Thank you Tech and David for your attention and great help.

Offline oldman

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 4140
  • Some days..... MOS...this bug's for you
Hi. you're right, I only replied yesterday. The first time I saw this post. Honest mistake on DavidR's part, I do seem to get around. I wasn't aware of your problem, I don't get to the home/pro forum much, stuck in the basement so to speak. I'll look in on your other thread now.

ZStorm

  • Guest
Tks a bunch, oldman. Im following you on my original thread.