SysChat

SysChat (http://www.syschat.com/forum.php)
-   Operating Systems (http://www.syschat.com/software-support/operating-systems/)
-   -   Rebooting PC (http://www.syschat.com/rebooting-pc-3157.html)

gdlathey 02-07-2008 10:18 PM

Rebooting PC
 
Hi, new here and need help.

Running W2K and upon boot up, 3 windows pop up, ntvdm.exe, mustafx.exe, and mustafx2.exe...try to close out the windows but computer reboots after a minute or so. Any way a dummy can get rid of these things?

lurkswithin 02-08-2008 12:19 AM

Congratulations....you are one of the first to get a new variant of a trojan
******************
Command: mustafx.exe
Description: Identified as a variant of the Trojan.Virantix.B malware.
File Location: %System%
Startup Type: This startup entry is started automatically from a Run, RunOnce, RunServices, or RunServicesOnce entry in the registry.
**********************
Not funny I know but at this time while there are some lengthy ways to remove this thing ....it is way above what most can do as it requires registry editing and and creating dummy files and some other stuff as well.

Don't try any of your regular anti-virus or spyware programs as this thing shuts them down and will only lock up your system or make it worse....

At this time there IS NO REAL FIX for this issue....People are working on it and working all kinds of trial and error issues.....

System restore will not clear this up!

I for one would do this:

save ONLY the most important files to disc and do a complete format and reinstallation.
As it is the only sure way to clean it up and probably a lot faster than trying to follow step by step registry editing.

This code might stop the rebooting for your computer and you can try it if you can get it to stay on long enough!

Click "Start" > "Run" and type in shutdown -a. note the space between shutdown and the minus sign. click ok

Once you do that you might run Ccleaner and combofix and see if it clears up some of it. But the mustafix.exe has to be located with all the various names it hides under and removed. The problem is that most spyware and virus programs are not updated to this and it will not find it!

I will continue to update this Thread as soon as I get more information for removing this thing!

Warning!!!!!

There are going to be all kinds of programs pop up that will tell you they can find this and remove it from your system...just TRY ME!!! don't bother...the truth is that these people just want you to buy their program. The people that work on finding the answers to this and submit it to the Anti-virus companies have not found a fix....they will have it first before anyone else does...so just don't believe that there is a program out there that will rid it for you!

Wombat 02-08-2008 01:17 AM

Quote:

Originally Posted by lurkswithin (Post 9713)

I for one would do this:

save ONLY the most important files to disc and do a complete format and reinstallation.

As it is the only sure way to clean it up and probably a lot faster than trying to follow step by step registry editing.

I agree with Lurkswithin. From what I have seen from other forums that I go to, this is the best way to get rid of this crap.

Before you install your operating system disconnect your internet connection.

Install your operating system, anti virus & firewall applications. Then reconnect to the net.

Update the AV definitions as soon as possible.

Then get all the security updates from Microsoft.

Have read of this it's about Best Practise, this will help you avoid getting these virus's / malwares in future...


CERT/CC Tech Tip: Before You Connect a New Computer to the Internet

gdlathey 02-08-2008 11:30 AM

I'll give it a try tonight....thanks for the quick response. I'll let you know if I can get the reboot issue handled.

My wife got this computer from work and we don't have the original OS disks. Would this go away if we were to say upgrade to Vista or other OS? I don't want to spend a lot of time or money on this thing as we only paid $100 for it to begin with. Worthwhile to just get rid of the thing and start over?

gdlathey 02-08-2008 11:35 AM

Oh, forgot....this computer was only used for the kids to go on the internet and for kids games. I'm reasonably sure the oldest kid is the culprit on this trojan. "Daddy, I clicked on this box because it said I would win a free ipod, but I didn't win...I had to give them our e-mail addy too..."

ARGH!!!!

So needless to say, there are no real programs or files on this pc that we need to keep...it was only for the kids and we have all the games on disk to reload if need be.

lurkswithin 02-08-2008 04:23 PM

you paid a hundred for the computer. That tells me that it maybe worth spending a like amount to do a new installation of windows XP Home or pro but i wouldn't try Vista....because Vista will not likely support any of the older hardware that is installed in an older computer system. You didn't say what operating system is installed...if it is xp and there is a sticker for the coa then all you need is the installation disc. call the manufaturer and see what they will charge you for a replacement restore disc.

gdlathey 02-08-2008 04:34 PM

It's running W2K right now. When her business replaced their computers, they cleaned them up and gave the employees first pick at them. I would probably be better off just installing a new OS in the thing but don't want to spend a couple hundred for an OS when the trojan still lurkswithin....sorry for the pun...

lurkswithin 02-09-2008 03:38 AM

LOL, It isn't the first time I heard that remark...I am sure it won't be the last either.

XP home OEM...$99 free shipping and I have been using these guys for years in buying computer parts.

Microsoft Windows XP Home Edition OEM at 3B Tech - Buy computer parts, notebooks, desktops, & home electronics

XP Pro OEM 149.00 free shipping!

Microsoft Windows XP Professional OEM at 3B Tech - Buy computer parts, notebooks, desktops, & home electronics
***********************************
little better price with free shipping

xp pro OEM
Newegg.com - Microsoft Windows XP Professional With SP2C - OEM

XP home OEM
Newegg.com - Microsoft Windows XP Home With SP2B 1 Pack - OEM

You might have to purchase some qualifying hardware to get these products.

A new DVD/CD burner would qualify

Good Luck!


All times are GMT -4. The time now is 11:24 PM.


Copyright © 2005-2013 SysChat.com


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54