Link to home
Create AccountLog in
Avatar of designaire
designaireFlag for United States of America

asked on

Should I delete these virus. I just installed my operating system.

I just reinstalled my operating system. I'm not sure what happened. Before I reinstalled it I had run malware and kept getting messages that I had a virus. I kept deleting it and and eventually my operating system crashed. My software has been reinstalled and I get the same virus in malware. I believe it has something to do with my operating system and it's not a virus but part of the reinstall. I'm not sure I should delete these or not. I have nortons. Shouldn't these pick them up?

Malwarebytes Anti-Malware (Trial) 1.65.1.1000
www.malwarebytes.org

Database version: v2012.11.07.10

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
designaire :: DESIGNAIRE-PC [administrator]

Protection: Enabled

11/8/2012 10:29:27 AM
mbam-log-2012-11-08 (10-32-38).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 223619
Time elapsed: 2 minute(s), 4 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{549B5CA7-4A86-11D7-A4DF-000874180BB3} (Trojan.Agent) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{549B5CA7-4A86-11D7-A4DF-000874180BB3} (Trojan.Agent) -> No action taken.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 2
HKCR\scrfile\shell\open\command| (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE "%1") Good: ("%1" /S) -> No action taken.
HKCR\regfile\shell\open\command| (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE "%1") Good: (regedit.exe "%1") -> No action taken.

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)
ASKER CERTIFIED SOLUTION
Avatar of Kent Dyer
Kent Dyer
Flag of United States of America image

Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Obviously remove the virus however it's interesting that it came back so fast, point it could come back again so you may want to make some notes about what exactly you did.

You installed the OS and applications, did you install any data?

Did you download anything from the web, drivers maybe, were they from a trusted site.
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
I have a question to how are you reinstall the operating system?  Are you using recovery discs? Or is this a full OEM or even retail windows 7 discs? If you received a copy of the discs or download the operating system iso and burned them to a disc, it is possible the the discs themselves could be infected. How about trying to reinstall the operating system with the network cables unplugged. Then install your malware/antivirus application and then plug in the network cable to connect to update your antivirus software. If the virus occurs before you migrate your backed up date to the newly reinstalled operating system then the virus could be on your operating system discs, if it occurs after then your data or applications that you are installing may be infected.
It might be a bootsector virus....

First backup all data on external hard drive then delete all partition and recreate them.

Now try installing windows 7 .



Ded9
Did you reformat during the installation?
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
Delete all partitions and recreate it . Then install windows.
SOLUTION
Link to home
membership
Create an account to see this answer
Signing up is free. No credit card required.
Create Account
best advise...IF U CAN....


format and reload
EXACTLY chubby_informer, key word and as I already mentioned "FORMAT" the drives.

If there's a root kit virus deleting the partitions most likely will not remove it reformating will.
Deleting partitions, then creating new ones, formats the newly created partition with the new file-system.

Just formatting without deleting the partition first, only deletes the file allocation tables, the files themselves are still there.
Avatar of designaire

ASKER

Yes it was from a disk not a download. I did download some code, which is where it came from I assume. It wasn't exactly the same virus. I just thought nortons would get it all.
In my point of view norton IS a virus, whenever I get a PC with a symantec product on it I get the PC owner to use something else. As I mentioned earlier, my favorite currently is Panda.

Apart from that you will never find any antivirus utility that can protect against all malware.