HELP! - Any advice on trojans removal ?

Hi

Any advice on how best to remove trojans?

BACKGROUND
At the bottom right of my Windows7 screen, the Action Center gave me the following alerts:
- "Remove the W32/Gaobot.worm.genu - Win32/RBot.3eu!Worm virus"
and
- "Remove the Trojan.PWS.Legmir.AD / W32.Ahlem.A@mm virus"

Strangely the anti-virus software that I am running - AVG (Free)(V9-LATEST) - completely failed to find either of these viruses, even though I regularly make sure that it is bang up to date.


STEPS TAKEN SO FAR
I have downloaded SuperAntiSpyware, MalwareBytes, and A-Squared Free(v4.5).
I tried rebooting Windows7 in Safe Mode, by hitting F8 repeatedly during reboot.
However I could not get this to work. The first time I tried all that happened is that Windows7 completely failed to boot! The second and third times simply produced a normal boot.

I then ran MalwareBytes which found some stuff, at which point (very late in the day!) AVG found some stuff too.

So then I tried running msconfig.exe and selected "Diagnostic Startup" and rebooted into a safe mode.

Right now I am running an A-Squared scan and re-running MalwareBytes scan...

...But what is extremely worrying to me, is that I can't get AVG to run a scan right now. if I click on the "Computer Scanner" tab, and then click on "Scan Whole Computer", all that happens is that it says "! There are no active components" at the top of that window. (Is this because I have booted into "Diagnostic Startup" mode?

What should I do?
e.g.
- What else should I use to scan for trojans/viruses?
- How will I know when I have removed all the trojans/viruses?

All advice much appreciated!


Ship

Hi Ship

1. I take it your running Windows 7 32-bit ?

2. Let your Anti Virus / Spyware apps run and remove any infections they may find.

3. Uninstall AVG.

4. Download Spybot SD > http://www.safer-networking.org/index2.html and install.

5. Turn off System Restore on all drives (you can turn it back on later).

6. Run Spybot in Safe Mode and remove (in Spybot its called FIX) any problems.

7. Run Malware Bytes in Safe Mode and remove any problems.

8. Reboot your PC and turn on System Restore.

Veedaz - no, I'm running in 64 bit...

P.S. How do I turn off System Restore?

Also, when you say boot in Safe Mode, how do you do that? (F8 failed to do anything so I did then try "msconfig.exe" and rebooted in the "Diagnoistic Startup" - is that the same thing?

FWIW, I am now running a Microsoft Security Essentials scan.

In msconfig click boot tab > safe boot this will put you in safe mode when you next reboot.

Click Start > Control Panel > System > System Protection > System Properties > System Protection Tab > Configure > Turn off System Protection.

Remember to turn it back on after you have finished.

Veedaz

Thanks, but...

> 5. Turn off System Restore on all drives (you can turn it back on later).

How do I do this?

Ship

Yes you can turn it back on (the reason for turning off SR is because some nasties like to hide in system restore points, turning off SR deletes all restore points, SR can be turned Off /On on each independent drive as seen by your PC)

How to see my last post ^

Spybot works in 64-bit .... i use it.

> Click Start > Control Panel > System > System Protection > System Properties > System Protection Tab > Configure > Turn off System Protection

Sorry I cant get past System (from Control Panel). The only options are: (on the Left)
- Device Manager
- Remote Settings
- Advanced System Settings
- Action Center
On the right:
- Change Settings

Cheers


Ship