Please help remove iamfamous.dll trojan

Status
Not open for further replies.

HarlequinPuppet

Posts: 16   +0
I have some trojans on my laptop including the one iamfamous.dll
I'm not really sure how I got it and it's the first major virus I've had so I am very upset by it and would like to get rid of it asap.
I don't know exactly what it does but I know it tampers with my google searches and I'm hoping hasn't stolen my netbanking information.
I have attached the logfiles that are required.
Thanks in advance for any help.
 

Attachments

  • hijackthis.log
    9.9 KB · Views: 5
The fact that you use your system for internet banking means the only safe course of action is to disconnect from the net and reformat the system.

You should also contact you bank and tell then that your system has been compromised.

Doing anything else is dangerous in the extreme and could well lead to your bank details being stolen.

I cannot impress upon you strongly enough the potential seriousness of the situation.
 
Yes, it is possible. However, you need to be made aware of the serious risks involved.

The fact that you do use your computer for internet banking means, your details could already have been stolen. Add to that, no one can guarantee %100, even after cleaning your system, it would be safe to use for such purposes again and that's why I have to recommend a reformat and that your contact your bank immediately.

I personally know of someone who didn't reformat and ended up having over $10,000 stolen from his bank account.

I assure you I am not being dramatic and I believe I'm giving you the best possible advice based on experience.

Of course, If you really want to run the risk and clean your system, then I will help you to do so.
 
I did contact my bank and froze my netbanking as a precaution. I am only a student though and don't have much money anyway.
Also I only got the virus on Tuesday and have not used my computer much because of it. I ran those scans on Thursday night but I don't understand them too well.
Did they already get rid of the virus or does something else need to be done? I would rather not have to reformat.
Thanks again.
 
Ok, let's do the following.

You need to rename HijackThis.exe to Crusty.exe. This is because some malware can hide from HijackThis.exe. Follow these instructions in order to do so.

Go to the C:\Program Files\Trend Micro\HijackThis\HijackThis.exe file and right click on HijackThis.exe. Choose rename. Click in the title box and hit the enter key to clear what`s there.

Now type Crusty.exe into the title box and hit the enter key. Right click on the Crusty.exe file and choose "Send to desktop Create Shortcut".

You can now close the HJT directory.

Please post a fresh HJT log.
 
Your HJT log is clean.

Have HJT fix the following deactivated entries.

Run HJT with no other programmes open(except notepad). Click the scan button. Have HJT fix the following, by placing a tick in the little box next to(if there).


O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.2.8.7.dll/206 (file missing)

Click on the fix checked button.

Close HJT and reboot your system.

Unless you're still having problems, you should be good to go.
 
Status
Not open for further replies.
Back