Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Computer infected with Metajuan trojan horse.

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Computer infected with Metajuan trojan horse.

Unread postby Bio-Hazard » September 14th, 2009, 5:36 pm

Hello!

How is the computer running?

Is Norton still giving this warning message?
User avatar
Bio-Hazard
MRU Master Emeritus
 
Posts: 4078
Joined: May 10th, 2007, 8:28 am
Location: Cornwall, UK
Advertisement
Register to Remove

Re: Computer infected with Metajuan trojan horse.

Unread postby johnnycolumbia » September 14th, 2009, 8:57 pm

The computer is running the same- still getting the message from Norton.

I've also noticed that uTorrent has disappeared off the computer- the file extension for the desktop link has changed to 'uTorrent.exe.vir' and the folder has gone from the usual location in Program Files as well as the shortcut from the Start menu. Could this be related?
johnnycolumbia
Regular Member
 
Posts: 18
Joined: August 18th, 2009, 7:21 pm

Re: Computer infected with Metajuan trojan horse.

Unread postby Bio-Hazard » September 15th, 2009, 2:45 pm

Hello!

Does Norton provide you with a proper log i could look at?
User avatar
Bio-Hazard
MRU Master Emeritus
 
Posts: 4078
Joined: May 10th, 2007, 8:28 am
Location: Cornwall, UK

Re: Computer infected with Metajuan trojan horse.

Unread postby johnnycolumbia » September 15th, 2009, 6:02 pm

I just ran Norton again to try to find a log. As I did the security warning pooped up for the metajuan.trojan which, as usual, had a button on to click in order to attempt to remove the infection. Every time I've clicked on this it's simply said 'remove failed' which is why I've stopped even trying it since we started on here.

I decided to try it- just for the hell of it- just now and it appears to have worked- Norton is now saying this trojan has been successfully removed. I get the impression that maybe it just kept popping up with the warning even though something you've done along the way here managed to get rid of the trojan- Norton just needed to have the 'remove' button clicked to clear the warning.

I've run a system scan and it hasn't found any trace of the metajuan.trojan. It appears you've fixed it- thank you so much (a donation will be forthcoming when I get paid). Can we just keep this topic open for 3 days just to see if the trojan has been successfully removed and the warning doesn't return.
johnnycolumbia
Regular Member
 
Posts: 18
Joined: August 18th, 2009, 7:21 pm

Re: Computer infected with Metajuan trojan horse.

Unread postby Bio-Hazard » September 18th, 2009, 7:13 am

Hello!

How are things going?
User avatar
Bio-Hazard
MRU Master Emeritus
 
Posts: 4078
Joined: May 10th, 2007, 8:28 am
Location: Cornwall, UK

Re: Computer infected with Metajuan trojan horse.

Unread postby johnnycolumbia » September 19th, 2009, 4:02 am

Everything is looking good- no warnings of infection for a while now.

Thanks for all your help.
johnnycolumbia
Regular Member
 
Posts: 18
Joined: August 18th, 2009, 7:21 pm

Re: Computer infected with Metajuan trojan horse.

Unread postby Bio-Hazard » September 20th, 2009, 1:50 am

Your log now appears to be clean. Congratulations!

You can get rid of the tools we used:
  • ATF cleaner - (You can just delete the exe file from your desktop)
  • HostExpert - (You can just delete the exe file from your desktop)
  • Javara - (You can just delete the exe file from your desktop)
  • SysProt - (You can just delete the exe file from your desktop)


    Delete ComboFix and Clean Up
    Click Start > Run > type combofix /u > OK (Note the space between combofix and /u)
    Image
    Please advise if this step is missed for any reason as it performs some important actions.

    OTC

    Download OTC by Old Timer and save it to your Desktop.

    • Double-click OTC.exe
    • Click the CleanUp! button
    • Select Yes when the Begin cleanup Process? Prompt appears
    • If you are prompted to Reboot during the cleanup, select Yes
    • The tool will delete itself once it finishes, if not delete it by yourself

    Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.


    General Security and Computer Health
    Below are some steps to follow in order to dramatically lower the chances of reinfection. You may have already implemented some of the steps below, however you should follow any steps that you have not already implemented.

    • Make sure that you keep your antivirus updated
      New viruses come out every minute, so it is essential that you have the latest signatures for your antivirus program to provide you with the best possible protection from malicious software.
      NOTE: You should only have one antivirus installed at a time. Having more than one antivirus program installed at once is likely to cause conflicts and may well decrease your overall protection as well as impairing the performance of your PC.
    • Security Updates for Windows, Internet Explorer & Microsoft Office
      Whenever a security problem in its software is found, Microsoft will usually create a patch so that after the patch is installed, attackers can't use the vulnerability to install malicious software on your PC. Keeping up with these patches will help to prevent malicious software being installed on your PC. Ensure you are registered for Windows updates via Start > right-click on My Computer > Properties > Automatic Updates tab or visit the Microsoft Update site on a regular basis.
      NOTE: The update process uses ActiveX, so you will need to use internet explorer for it and allow the ActiveX control to install.
    • Update Non-Microsoft Programs
      Microsoft isn't the only company whose products can contain security vulnerabilities. To check whether other programs running on your PC are in need of an update, you can use the Secunia Software Inspector or F-secure Health Check. I suggest that you run one of them at least once a month.


    Recommended Programs

    I would recommend the download and installation of some or all of the following programs (if not already present), and the updating of them on a regular basis.

    • WinPatrol
      As a robust security monitor, WinPatrol will alert you to hijackings, malware attacks and critical changes made to your computer without your permission. WinPatrol takes snapshot of your critical system resources and alerts you to any changes that may occur without your knowledge. For more information, please visit HERE.
    • SpywareBlaster
      SpywareBlaster sets killbits in the registry to prevent known malicious ActiveX controls from installing on your computer. If you don't know what ActiveX controls are, see HERE. You can download SpywareBlaster from HERE.
    • Malwarebytes' Anti-Malware
      Malwarebytes' Anti-Malware is an anti-malware application that can thoroughly remove even the most advanced malware. It includes a number of features, including a built in protection monitor that blocks malicious processes before they even start.You can download Malwarebytes' Anti-Malware from HERE. Here are two tutorials: Malwarebytes' Anti-Malware Setup Guide and Malwarebytes' Anti-Malware Scanning Guide.
    • Hosts File
      For added protection you may also like to add a host file. A simple explanation of what a Hosts file does is HERE and for more information regarding host files read HERE.
    • Use an alternative Internet Browser
      Many of the exploits are directed to users of Internet Explorer. Try using a different browser instead: Firefox or Opera or Google Chrome

Here is a great article by miekiemoes How to prevent Malware.

Finally I am trying to make one point very clear. It is ABSOLUTELY ESSENTIAL to keep all of your security programs up to date.


Please take the time to tell us what you would like to be done about the people who are behind all the problems you have had. We can only get something done about this if the people that we help, like you, are prepared to complain. We have a dedicated forum for collecting these complaints Malware Complaints. You need to be registered to post as, unfortunately, we were hit with too many spam posts to allow guest posting to continue. Just find your country room and register your complaint.


I'd be grateful if you could reply to this post so that I know you have read it and, if you've no other questions, the thread can be closed.

Happy surfing and stay clean!

Bio-Hazard
User avatar
Bio-Hazard
MRU Master Emeritus
 
Posts: 4078
Joined: May 10th, 2007, 8:28 am
Location: Cornwall, UK

Re: Computer infected with Metajuan trojan horse.

Unread postby NonSuch » September 23rd, 2009, 3:49 pm

As this issue appears to be resolved, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 27305
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove

Previous

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 56 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware