well my trend micro have quaratined it but cant remove it permanently wat should i do to get rid of 6 trojan and 4 viruses present in my system?
thanks in advance and i hope u guys will give ur best answer cozz i really need help..
2006-12-07 05:46:12 · 7 answers · asked by enticerman 1 in Computers & Internet ➔ Security
go in to ur quaratine folder right hit on them and hit delete it will go in da bin then empty da bin if it dont want to go then cut ur net off from pc restart pc in safe mode then right hit them files in da quaratine folder restart ur pc then restart ur net up 6 trojans ur need to remove them and also there software that makes them come back try this lot
AD-aware - personal
avg antispyware
spybot search and destory
anitspyware blocker
A-squared
spyware doctor
xoftspy
2006-12-07 05:51:29 · answer #1 · answered by Anonymous · 1⤊ 0⤋
You may need to do a little manual purging of your Files, folders, and Registry. Try the following. Where I have said AOL insert the name of each one of your trojan/virus. You may have to look in the quarantine folder in your Trend Micro for the names. This may take some effort but it should work.
Click on Start > Settings > Control Panel > Add/Remove Programs and remove any AOL programs residing there.
Now click on Start > Search > For Files or Folders > All Files and Folders
type in AOL in the top box and let the computer do a complete search of your hard drive. When it is done, click on Edit at the top of the window and click on Select All
Then click on File and click on Delete. It will ask you if you want to remove them. Click on Yes.
If you want to REALLY finish the job:
NOTE: DON'T DO ANYTHING ELSE IN THE REGISTRY OTHER THAN WHAT I MENTION HERE. If you are not familiar with editing the registry and you do other things you may give yourself some big headaches.
Click on Start > Run >
type in regedit
click once on the very top directory to hilite it.
Hold down Ctrl + F; this will open a search window
type in AOL and then click on Find Next
when it finds an AOL entry, right click on it and select Delete and yes. (Do this if it is a folder in the left hand pane or if it is an entry in the right hand pane)
Hold down Ctrl + F again and repeat the process until you have cleaned your registry of all AOL items. This may be a very tedious process so hang in there.
When you think you have it all out. Go back up to the top directory in the left pane, hilite it, and search for AOL once again just to make sure you didn't miss any.
Once you are completely done. Reboot your PC. This will reset the registry without all the AOL crap. Now you should be able to reset your home page without any problems.
2006-12-07 14:17:58 · answer #2 · answered by Dick 7 · 0⤊ 0⤋
I suggest that you try to carryout system restore to a day previous to the day when there was no virus or any problems. It may be a few weeks or months back. You have to decide the date. Detailed instructions are posted at http://fixit.in/systemrestore.html
The problem is likely to be solved. Then,You insatll a standard antivirus soft ware such as Norton, AVG , Avast ( free antivirus software and Ad-aware, Ewido ( free spyware removers). You can download free softwares at
http://fixit.in/antivirus.html and http://fixit.in/spywareremover.html
2006-12-09 19:03:42 · answer #3 · answered by Anonymous · 0⤊ 0⤋
Multidropper.AXY is a Trojan that drops on the affected computer the Trojan detected as Ranky.DH and the worm detected as Sdbot.BWJ.
Multidropper.AXY is a self-extracting file, that is, a compressed file with an embedded executable to decompress itself.
Multidropper.AXY does not spread automatically using its own means. It needs an attacking user's intervention in order to reach the affected computer. The means of transmission used include, among others, floppy disks, CD-ROMs, email messages with attached files, Internet downloads, FTP, IRC channels, peer-to-peer (P2P) file sharing networks, etc.
Multidropper.AXY is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.
The infected system opens the following port for LISTENING (waiting to be connected).
- random TCP port
When infected, the system can be controlled remotely to take actions such as running programs, deleting data, installing adwares and mailing spams, which are unwanted and unnoticed by the authorized user. By giving an unauthorized user ( the attacker) the access to files and records in the system, it puts the authorized user's privacy as well as classified files and records in danger.
The AVG program listed below is very good a removing Trojans. Use AVG and other AV and AS programs and you should be able to remove your infections.
This procedure works for all Malware. Use any AntiVirus or AntiSpy program you choose.
Download and Update Ewido (now called the AVG Antispyware). Do not run:
http://www.ewido.net/en/download/...
Download AdAware SE and update. Do the setup. Do not run:
http://www.filehippo.com/download_ad-aware/
AdAware SE Setup:
1. Select "use custom scanning options" then select "customize". Make sure the following options are enabled: "scan within archives," "scan active processes," "scan registry," "deep scan registry," "scan my IE favorites for banned URLs," "scan my Hosts file."
2. Select the "tweak" option. Under "scanning engine," make sure "unload recognized processes and modules during scan" is enabled. Enable "scan registry for all users instead of current users."
3. Under "cleaning engine" turn on "always try to unload modulesâ€Â¦," "during removal unload explorer and IE if necessary," "let windows remove files in use at next restart," and "delete quarantined items after restoring."
4. Use the "select drives and folders to scan" option to ensure that your entire hard drive is scanned (if you have more than one hard drive, scan all of them (of course, do not include floppy and CD/DVD).
TEMPORARILY SHOW HIDDEN FILES AND FOLDERS.
1. Click Start, and then click Control Panel.
2. Click Appearance and Themes, and then click Folder Options.
3. On the View tab, under Hidden files and folders, click "Show hidden files and folders", and clear(uncheck) the "Hide protected operating system files" check box.
IMPORTANT: Files are hidden by Windows for a very good reason. It is not wise to experiment with these files. Unfortunately, to successfully remove modern spyware we must turn this protection off temporarily. Please turn the protection back on when you have finished cleaning your system.
EMPTY INTERNET EXPLORER BROWSER CACHE:
1. On the Internet Explorer Tools menu, click Internet Options.
2. On the General tab, in the Temporary Internet Files section, click the Delete Files button. Select the Delete all offline content check box in the confirmation dialogue box that appears, click OK. Click OK again.
RESTART IN SAFE MODE:
To do this you need to hold down or repeatedly tap the F8 key while the computer is booting (when the computer is displaying a black screen with white text). When the boot menu appears, use your keyboard arrows to select "Safe Mode."
Safe Mode can look quite ugly. The color may look bad, and all of your desktop icons will be very large. This is normal.
START THE SCAN WITH YOUR ANTI-VIRUS OR ANTI-SPYWARE PROGRAM.
When the scan and removal are completed REBOOT COMPUTER. This will restart you in normal mode. DON'T FORGET TO RESET HIDDEN FILES AND FOLDERS.
NEW RESTORE POINT.
The RESTORE POINTS may be infected with the Malware and cannot be used.
HERE'S HOW:
1. Click Start, and then click Control Panel.
2. Click Performance and Maintenance, click System, and then click on the System Restore tab.
3. Select the Turn Off System Restore check box, click Apply, then restart your computer.
4. Return to the System Restore Tab and turn System Restore back on.
TO SET A NEW RESTORE POINT:
1. Click the Start button.
2. Point to Programs, then navigate to Accessories, then System Tools, then click System Restore.
3. Choose Create a restore point, and then click Next.
4. In the Restore point description box, type a name for your restore point, and then click Next.
5. Click OK.
NOTE: If you are using Windows XP Service Pack 2 (SP2) and are unable to access the Internet after removing Malware, there is a command that may fix the problem. It works by resetting the winsock catalogue. Click on Start, then Run and type CMD in the box. Click OK. Type "netsh winsock reset" (no quotes)into the DOS window that appears.
ADDITION INFORMATION ABOUT TROJANS:
There are Trojans that fall into the Smitfraud family. These require the use of a specialized program for removal. Here are two sites that specialize in removing these:
http://www.internetinspiration.co.uk/roguefix.htm
http://siri.urz.free.fr/Fix/SmitfraudFix_En.php
2006-12-07 14:15:53 · answer #4 · answered by Anonymous · 0⤊ 1⤋
have you tried the online scan from trendmicro?
www.housecall.trendmicro.com
if you know the location of the infected files that where found you can try to delete them (system restore off)
2006-12-07 14:28:19 · answer #5 · answered by great one 6 · 0⤊ 0⤋
Ad-aware or Spybot SD should do it :).
If not - here are some more:
http://filehippo.com/software/antispyware/
2006-12-07 13:55:48 · answer #6 · answered by Fez 3 · 0⤊ 0⤋
With softwares what babe19 said. But i think the best and secure way reinstalling your system. ( i think you have windows, reinstall it ) . this is my opinion. :) good luck....
2006-12-07 15:07:47 · answer #7 · answered by earthlakesun 1 · 0⤊ 0⤋