trojan has killed everything

[Walks_In_Shadows]

I'm using avast! Internet Security on my computer (having to use a different computer to avoid any data loss/theft). Anyways, after doing my weekly virus scan Avast picked up 3 trojans and was only able to clean 2 of the three.......I was asked to do a boot time scan and agreed. after the scan stopped and my system restarted, my Avast! was disabled as well as my Firefox and IE...I'm only able to run on IE 64-bit and any downloads are completely blocked by this Trojan. The trojan is completely hidden and I'm not able to remember the name of it.
OS: windows 7

[emantoyaks]

have you tried to scan using this one?:

http://www.malwarebytes.org/

kindly try and please post the log file for analysis...

[magna86]

@Walks_In_Shadows

If you still need assistance follow this:
http://forum.avast.com/index.php?topic=53253.0

[Walks_In_Shadows]

Neither of those will run. The virus locks all downloads from running.

[magna86]

Neither of those will run. The virus locks all downloads from running.

Try this one
Download DDS and save it to your Desktop from here:
http://download.bleepingcomputer.com/sUBs/dds.scr

Double click dds to run the tool.

    * When done, DDS will open two (2) logs:
         1. DDS.txt
         2. Attach.txt

Save both reports to your desktop. Attach DDS.txt back to topic.

[Walks_In_Shadows]

Tried both DDS and GMER from the advice of techsupportforum.com, and they will not work either. -_-

[magna86]

Tried both DDS and GMER from the advice of techsupportforum.com, and they will not work either. -_-

Please download OTH to your desktop
oldtimer.geekstogo.com/OTH.scr

Please download fresh OTL to your desktop

Double click the OTH file to run it and click Kill All Processes, your desktop will go blank.
Then select Start OTL. OTL shud now run

    Click the Quick Scan button.  Attach here OTL log

[Walks_In_Shadows]

The UAC message comes up for me to allow it to run but when I click yes it does nothing like everything else I try to download.

[magna86]

I'm tired so I cannot think. 

You try this one.

1.  Please download exeHelper to your desktop.
Double-click on exeHelper.com to run the fix.
A black window should pop up, press any key to close once the fix is completed.
Post the contents of exehelperlog.txt (Will be created in the directory where you ran exeHelper.com, and should open at the end of the scan)

2.  Try to run OTL again bat before rename it in:
winlogon.com or iexplore.exe .

Try to run in safe mode. If all fail...try this one.

Korak 1.

Download AVZ Antiviral Toolkit

http://devbuilds.kaspersky-labs.com/devbuilds/AVZ/avz4.zip

extract archive

• Run AVZ[/color] (dobleclick on icon);
  
  
• Choose File > Standard Scripts;
  
  
• Windows will pop-up. Chose option No.  2 and click on Execute Selected Scripts;
  
  
• Click Yes;
  
  
• When scan is finish you will get a note Script Executed;
  
  
• close the program

Upload file  virusinfo_syscheck.zip on forum. You will find file on avz\log folder.


If this does not manage to run, we will think a something tomorrow

[Walks_In_Shadows]

sorry for the late reply. I've gotten the virus straightened out, I had to use windows restore and do a crap load of other stuff that's almost fried my brain. The virus is Win32:Cycbot-ki, which looking at some of the topics avast is having trouble with this one.

[magna86]

Have you tried to run tools as I wrote above?
exeHelper? OTL or AVZ ? Run them in safe mode?

Maybe you are under DDoS attack. ( Distributed Denial of Service )
That's why we have problems with diagnosis, and without it we can start any Fix.

Info:: abaut malware and some malicious entries.
http://www.microsoft.com/security/portal/Threat/Encyclopedia/Entry.aspx?Name=Win32%2fCycbot



Try to run tools above in safe mode. If fails then we have to work outside of Windows.

• Download OTLPENet.exe to your desktop
  
• Ensure that you have a blank CD in the drive
• Double click OTLPENet.exe and this will then open imgburn  to burn the file to CD
  
• Reboot your system using the boot CD you just created.Note : If you do not know how to set your computer to boot from CD follow the steps here
  
• As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads  :)
• Your system should now display a Reatogo desktop.Note : as you are running from CD it is not exactly speedy
• Double-click on the OTLPE icon.
• Select the Windows folder of the infected drive if it asks for a location
• When asked "Do you wish to load the remote registry", select Yes
• When asked "Do you wish to load remote user profile(s) for scanning", select Yes
  
• Ensure the box "Automatically Load All Remaining Users" is checked and press OK
  
• OTL should now start
• Drag and drop this attached scan.txt into the Custom scans and fixes box, or double click the scan box
  
• Press Run Scan to start the scan.
  
• When finished, the file will be saved  in drive C:\OTL.txt
  
• Copy this file to your USB drive if you do not have internet connection on this system
• Right click the file and select send to : select the USB drive.  
• Confirm that it has copied to the USB drive by selecting it
• You can backup any files that you wish from this OS
• Please post the contents of the C:\OTL.txt file in your reply.