|
Tech Support Have a problem? Maybe we can help! |
|
Thread Tools | Search this Thread | Display Modes |
#21
|
|||
|
Trilogy
Download newer Hijackthis: http://danborg.org/spy/HJT/hijackthis.exe you will need it so they can see what is really going on inside your system or you can use SpyBot Log file to if you like ether one will do. post the info up here as hijackthis.txt to attachment it in the registier it being restarted and we need to delete the registier enter on this virus there are tech-heads at this site that work on downloader viruses to get them remove: http://www.bullguard.com/forum/ ??????????you have not said the name of it at all????????? its a virus (you don't know the name of it) that is a downloader type viruses means it update live online (internet) there are many type viruse by name that are downloader viruse we need to know what one it is by name. 1.) Sophos virus analysis: Troj/Downloader 2.) Trojan horse downloader agent.5.K 3.) Win: 32RAHack, Virus downloader (new 12/24/2004) Quote:
========================================= listing of downloader viruses: http://vil.mcafee.com/newVirus.asp Generic Downloader.h 01/05/2005 Trojan Win32 4400 Low Low Generic Downloader.c 01/05/2005 Trojan Win32 4317 Low Low Generic Downloader.b 01/05/2005 Trojan Win32 4298 Low Low Generic Downloader.f 12/29/2004 Trojan Win32 4397 Low Low Downloader-TO 12/28/2004 Trojan Downloader 4417 Low Low there are more too.
__________________
* altnews sources [getmo & others news] not found main FNN: realrawnews.com *Discord: Unknown77#7121 Playing now days: EA Games> swtor [star wars old republic] Last edited by Hellfighter; 01-10-2005 at 05:30 PM. |
#22
|
||||
|
chief bro i truthfully dont know the name of the virus
__________________
Click here for the official member status images! Quote:
Quote:
|
#23
|
||
|
Well i would say some viruses can screw you so bad you have to use system restore or wipe your hardrive the nrestore if you have backups you will be in good shape!!!!!Sorry about the bad news there it has happened to me before!!!!!!!!!!!
__________________
ÐÅR€Ð€V¡£=CP= <=CP=> Forums www.phpbbplanet.com/camouflagedp Free PHPBB Forums www.phpbbplanet.com <=CP=> Teamspeak IP 209.190.31.155:5001 Free Teamspeak Server http://www.going-live.com/vb/index.php? |
#24
|
||
|
online virus scan: free and they do remove them all;
[Norton Online Virus scan] [TrendMicro online virus scan] ========================================== general Intel: Symantec Security Response - "Download.Trojan" Download.Trojan connects to the Internet and downloads other Trojan horses or components. http://securityresponse.symantec.com...ter/venc/data/ download.trojan.html - 25.7KB - United States 76% Find Similar -------------------------------------------------------------------------------- Symantec Security Response - Download.Trojan.B Download.Trojan.B is a Trojan Horse that downloads and executes Backdoor.Sdbot.M. The original filename may be update0932.exe. It is written in the Borland ... http://securityresponse.symantec.com...ter/venc/data/ download.trojan.b.html - 25.7KB - United States 76% Find Similar -------------------------------------------------------------------------------- Symantec Security Response - "Download.Trojan.PSK Downloader.Trojan.PSK is a program that downloads the Trojan, Backdoor.IRC.PSK, from a remote Internet site and executes it on the local system. http://securityresponse.symantec.com...ter/venc/data/ download.trojan.psk.html - 22.1KB - United States =========================================== you will need to try to get the name of it so try to do another scan see if you can get the name of it ok, my heart is out for you guy. not all virus are the same you need to edited the registry key's and delete the file that has the virus there maybe a application.exe too. this is one bad virus it gets updates thats why they call it a downloader virus =========================================== Windows prevents outside programs, including antivirus programs, from modifying System Restore. Therefore, antivirus programs or tools cannot remove threats in the System Restore folder. As a result, System Restore has the potential of restoring an infected file on your computer, even after you have cleaned the infected files from all the other locations. so you need to disable it then system restore will delete every thing inside System Restore folder, after system reboot back to desktop then folder is clean, do a full virus scan if it clear of viruse's enable system restore. did look for this item "r1mya.dll" thats has to do with one virus i do mean i really look around sorry found nothen listed with any info on it. not letting you go i going to keep looking for info on this one for you if it take me all night ok. your my home boy not letting you go bud. last take a look here may help you give it a try: http://www.trendmicro.com/vinfo/viru...me=TROJ_BROK.A
__________________
* altnews sources [getmo & others news] not found main FNN: realrawnews.com *Discord: Unknown77#7121 Playing now days: EA Games> swtor [star wars old republic] Last edited by Hellfighter; 01-10-2005 at 10:33 PM. |
#25
|
||
|
will Trilogy
i got one now? bugger "to read it click-on image above" basic it call: Trojan-Downloader-Delf file name: srchcommon[1].enc it was deleted but there is a draw back this type can downloaded even more crap, so now going to update my 2 anti-virus programs and do a deep scan and a bootscan to see if there is more. i got it from a url site some place don't know this morning some time.
__________________
* altnews sources [getmo & others news] not found main FNN: realrawnews.com *Discord: Unknown77#7121 Playing now days: EA Games> swtor [star wars old republic] |
#26
|
||
|
update seem spysweeper was the only one to seen it? Spybot S&D, Avast!,Fix-it5, Lavasoft:adware SE, none of them seen it at all. Spysweeper seen it and remove it. i did a scan using all of them above to see if there was anything new using all the tools i had. glade to say it no more and no other virus got loaded in.
www.webroot.com has the spysweeper think they have a demo or a one last so many days. yes they do i check: http://www.webroot.com/downloads/?WR...d80de2d2f64dd7
__________________
* altnews sources [getmo & others news] not found main FNN: realrawnews.com *Discord: Unknown77#7121 Playing now days: EA Games> swtor [star wars old republic] |
#27
|
||
|
If you have Spybot, try looking in the TOOLS - SYSTEM STARTUP section.
See if there are any programs you don't recognise running. |
#28
|
||
|
Get Mcafee never has missed a problem with it and It provides extra Protection and scans everything befor it downloads it Well atleast for me
|
#29
|
|||
|
Quote:
ok i check that everything is in this area that should be no then out of place, for me it is totally gone. spysweeper did the job on removing it. i all so disable the system restore, after i restarted the system got to desktop (restore folder clean out of all files type) then re-enable it after. still clean.
__________________
* altnews sources [getmo & others news] not found main FNN: realrawnews.com *Discord: Unknown77#7121 Playing now days: EA Games> swtor [star wars old republic] |
#30
|
||
|
should be able to just hit run>and type msconfig, then disable all startup options>restart and delete the file>then hit run>type msconfig again and enable your start ups again..........I would say if that dont work, you really need to get SPysweeper cuz i got that too, and it works GReaaat!!
hope that helps a lil.
__________________
|
#31
|
||
|
msconfig? Isnt that Mouse Configruaration!!!!!!
__________________
ÐÅR€Ð€V¡£=CP= <=CP=> Forums www.phpbbplanet.com/camouflagedp Free PHPBB Forums www.phpbbplanet.com <=CP=> Teamspeak IP 209.190.31.155:5001 Free Teamspeak Server http://www.going-live.com/vb/index.php? |
#32
|
||||
|
microsoft?
__________________
Click here for the official member status images! Quote:
Quote:
|
#33
|
||
|
you cant go into dos and delete it like earlier windows OS's can you?
|
#34
|
|||
|
Quote:
when u hit start>Run>type msconfig and you will get some options, goto the tab that says start up and uncheck everything then restart
__________________
|
#35
|
||
|
msconfig means: Microsoft configuration
use for setting for start up and more options you can use one should be very carefull on what you disable in here this has system files some do need to be enable only disable items that has no then to do with system setting if you do disable these items you may find windows not working at all.
__________________
* altnews sources [getmo & others news] not found main FNN: realrawnews.com *Discord: Unknown77#7121 Playing now days: EA Games> swtor [star wars old republic] |
#36
|
||
|
not if u have windows xp, u can disable all in xp, just not on older versions of windows, but xp dont have any system files on the start up tab just programs
__________________
|
#37
|
||
|
you got all the windows updates? there security stuff really helps...
__________________
|
#38
|
|||||
|
Quote:
__________________
Click here for the official member status images! Quote:
Quote:
|
#39
|
||
|
Did you try that Mcaffee avert stinger scanner?
__________________
|
#40
|
||
|
boot from nortons, if you have nortons, go into your bois and change your boot squance to your cd drive first, make surey you have your nortons disk in the drive, save your bois and restart, you should then boot straight into nortons without loading anything from windows, of course you need a bootable cd drive, most new ones are. or you could hook your hd up to another computer and make it slave, bootup to that comps normal os and then access the drive and delete the files that way
|
Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Virus Removal Help!!! | .DareDevil. | Tech Support | 21 | 03-23-2005 02:11 AM |
Virus? | KU43 | General Chat | 15 | 02-23-2005 09:33 AM |
Virus or? | Muninn | Tech Support | 9 | 08-13-2002 10:39 PM |
heatsink and fan removal | Steve | Tech Support | 5 | 01-12-2002 04:39 AM |
no more virus | ~¥§~ LøÑ£wØLƒ²³ | General Chat | 2 | 12-16-2001 10:43 AM |