Posted 16 March 2010 - 02:31 PM
I have a Dell 1520 laptop with Windows Vista Home Premium. I've been using this for some 2.5 years now.
A few days ago, completely out of the blue the BitDefender anti-virus that I use started detecting mutliple trojans one after the other. These included Trojan.IA.Inject and the rootkit - Gen:Rootkit.
I have another machine, which I used to google around and came to Bleeping Computer. I followed the instructions in the Virus, Trojan, Spyware, and Malware Removal Logs. And managed to download the Defogger, DDS and GMER on the infected machine.
However, the situation then got so bad that the moment I connected to the net, the virus detections would increase with every second and windows would stop working: first Windows Explorer would start working, followed by the Task Scheduler. Windows Explorer would try to detect a solution then would try to restart but would not be able to. The screen would remain blank while the machine is running.
The DDS somehow ran when the machine was disconnected from the net but the file that it produced was filled with illegible characters. And the GMER could not complete the scan. Windows Explorer kept hanging then trying to restart and the whole process would repeat itself.
I figured that re formatting the PC would be the best thing to do. So I formatted C drive and reinstalled vista. I left D drive untouched because i had some un-backed up data on it.
Now 2 days after re formatting, with Vista updated to SP2, an anti virus installed, the whole thing suddenly started again. I am at my wits end since the re format obviously hasnt helped. Its again infected by Gen:Rootkit.Nixoa.1 and Gen:Trojan.Heur.Hype.bq0 and Trojan.IA.Inject
And windows explorer stops working and tries to restart (unsuccesfully). followed by Usernit Logon App stopping and then the Task Schedule Engine stops too.
Should I format the PC again? Will it be safer to format just C first, then try to backup data from D: and then format D?
I have a password protected wireless network at home . The infected laptop connects to it via wireless. The desktop from which im typing this connects to the router with a LAN cable. Do i need to reset the router?
Any help would be appreciated