I have found a Trogan horse Generic4.RNR .....What is this and how can I remove it?

Answer 1

It's a virus and you can remove it with your virus protection software.

Answer 2

If you have an antivirus program, run the scanner and the program will find and kill the virus. If you don't have one, here is an excellent free antivirus program from AOL, Active Virus Shield powered by Kaspersky of Russia. Rated # 1 in the world for virus detections.

http://www.activevirusshield.com/antivirus/freeav/index.adp

You will get auto updates every hour on the hour and excellent background scanner. AOL, will only ask you for your email address so they can send you your free key good for one year. After one year just request a new key.

Install, and perform a complete scan of your system. Good idea to reboot after the virus is found.

Use your search engine, type the the trojan name and it will tell you indepth the kind of trojan that you have.

Minddoctor, France

Answer 3

download an antivirus

http://www.download.com/AVG-Anti-Virus-Free-Edition/3000-2239_4-10320142.html?tag=hed

Answer 4

First, you will need to get some software programs to help you. The following programs are what I use personally. Not only do I trust them, but they are also free for personal use.

Anti-Spyware Software

• CWShredder - You can find it at [www.trendmicro.com]
• Lavasoft's Ad-Aware - You can find it at [www.lavasoftusa.com]
• Spybot S&D - You can find it at [www.spybot.info]

• AVG AntiSpyware - You can find it at [free.grisoft.com] / [www.ewido.net]
Anti-Virus Software


First you will want to download each of the above programs and then install them. After you install them, you MUST update them so you will have the latest protection. There is one small exception: CWShredder is a stand-alone program that doesn't need to be installed, but you do need to have it check for an update to ensure that you have the latest version. If you don't update these programs and you are infected with the latest parasites, you will not be able to effectively detect and clean them from your computer, so remember to update, update, update.

Since spyware is a bigger problem today than viruses, and spyware is typically harder to find and get rid of, I suggest to start looking for spyware first. I also use the different AS software packages in a specific order so that I go after the tougher problems first and the easiest ones last. What follows is fairly lengthy, but it will take care of just about anything.

1) Turn off System Restore

• WinXP has a cool feature called System Restore. It is used to restore your computer to an earlier configuration in case of a problem. The only problem is that it wasn't made with parasites in mind, and often it can't tell the difference between an infected file and a good file, so it might automatically restore an infected file also if it had been in a protected area, effectively re-infecting your computer. Because of this, it is recommended to turn off System Restore before you test, and when you're done, turn it back on so you are still protected from standard computer problems.


Click Start.
Right-click the My Computer icon, and then click Properties.
Click the System Restore tab.
Check "Turn off System Restore" or "Turn off System Restore on all drives."
Click Apply.
When turning off System Restore, the existing restore points will be deleted. Click Yes to do this.
Click OK.

2) Carefully Look at Windows Add/Remove programs for suspicious programs

• Many of the spyware threats actually install into your system like a program. Many appear to be utilities that you may think are helpful but in reality aren't. Look for add-an toolbars, while toolbars like those provided by Google, MSN, Yahoo and other are great utils, there are many more that aren't and if in doubt check it out to see if ones you have are parasitic. Another common exploit are the Search helpers, WinTools, Gator products, IE Helper, Comet Cursor and many others just to name a very few. Peer-to-Peer (P2P) programs are another common source for these and even the ones that doen't come with spyware themselves are a security risk that may lead to your system being infected or to spread infections like these. Remove all suspicious programs, if you are wrong, you may always re-install them later.

3) Run Disk Clean-Up

• This actually comes with Windows and has been installed by default since Windows 98. You can find it by clicking the Start Button and then going to Programs / Accessories / System Tools / Disk Clean-up. I recommend selecting all of its options except the ones for Office Setup Files and Compress Old Files if you have them. While you may select those if you wish, they aren't as important. This will clean up all of the temporary files so your testing will go faster, and may also delete any spyware that may hiding there if the spyware isn't already running. To clear systems that have System Restore you will need to select the second tab and click the button for clearing this.

4) Empty your Internet Explorer cache

• Open Internet Explorer and go to Tools..Internet Options… and under the General tab, in the Browsing History section, click Delete… and then select Temporary Internet Files. This probably won’t eliminate any viruses but will make the scanning go faster.

5) Run CWShredder

• This is made for detecting and cleaning of the infamous CoolWebSearch exploits. Currently there are about 40 types of these, each with up to 4 variants and growing. These are some of the toughest ones to get rid of.

6) Run Ad-Aware next

• This handles the next toughest types the best. When it finally presents you with the list of parasites it has found, put a check mark in the box next to the ones you want to get rid of, I suggest checking them all. If you want to select all, just right-click your mouse on the boxes to get the options menu, and left-click on Select All. If it says it can't get rid of a problem right now, it will ask if you want to run it again after you restart your computer, answer yes and restart your computer so it may test again.

7) Run Spybot next

• When you run it, it will automatically select all the spyware that it finds, if there is something you don't want to get rid of for some reason, deselect it and then let Spybot fix all of the rest of the problems that it finds. This program also will ask to restart your computer so it can test again if it has problems removing something, so let it.

If you had Windows 2000 or Windows XP ( not the 64bit version ) you also have this option...


8) Now Run The AVG Program

• Run the “Complete system scan” option. AVG will scan all of the files when you scan your computer; it will likely take . a long time to complete.

• If you found any parasites, you need to restart your computer so you can test everything again. There are times that after cleaning certain parasites you will need to test again because something may have been hidden earlier by the infection. So repeat this process of testing and restarting until you find no more parasites.

• Run the scans again in Safe Mode. This will keep many of the parasites from loading and being able to hide from your protection software. To access Safe Mode on most versions of Windows, start tapping the [F8] key after you first start or restart your system, start tapping it before you ever see a Windows Splash Screen and continue until you get the Menu where you may select it from the list. On WinNT, this is called VGA mode and on Win2k you actually start tapping just after the first splash screen shows. For Detailed instructions see Restarting Your Computer in Safe Mode

These procedures should have cleaned most cases of infection that you will find. Yes I said MOST because there are some infections that are very hard to detect and remove. Generally, if you have one of these, you will need the assistance of an expert to help you get rid of it.

When you believe you are finished, remember to turn System Restore back on if you had turned it off.

I recommend testing for parasites as often as you can, probably at least once a month if not more. The sooner you catch them, the less damage they can do to your computer, and the less chance of a hacker finding your sensitive information such as checking account info, passwords, etc.


9) Reboot your computer normally.
• If you're still having problems, continue with the following:

10) Go to
http://www.spywareinfo.com/~merijn/progr...
• and download HiJackThis. Run the program, which will create a log file. Go to

http://forums.spywareinfo.com/

• and post your HiJackThis log. You will get an extremely rapid, very precise answer as to whether or not you still have any infections and, if so, exactly what to do.

11) After everything is all cleaned up
• I recommend installing

SpywareTerminator (free):

http://www.spywareterminator.com/
Good luck!

Answer 5

99% of all internet problems can be attributed to the wrong set of Web browser and Email clients in coordination of the
AV/ Spyware / Firewall software.


Get the following, all are free for a safe surfing experience, with proven track records and do not take up
system resources like Norton or McAffee.
install in SAFE mode with networking ( hit F-8 at boot time ), run them all in SAFE mode
with networking as you'll need it for the updates all the programs below will need.
Turn off RESTORE and the RECYLE BIN temporarily as virii can regenerate / reinfect even if you delete
them with both services on. After all the scanning and cleaning after a 2nd reboot and one last
scan do you turn both of them back on.

ANTI VIRAL

AVG (free) http://free.grisoft.com/


FIREWALL

ZoneAlarm http://www.zonelabs.com/store/content/company/products/znalm/freeDownload.jsp

WEB BROWSER - http://www.mozilla.org/products/firefox

EMAIL use thunderbird. It has a good built in spam filter and learns when you teach it. http://www.mozilla.org/products/thunderbird

SPYWARE

http://www.lavasoftusa.com/software/adaware/

http://www.safer-networking.org/en/index.html

Once you set it all up create 3 email accounts..

a hotmail or yahoo account for web "verification", this account you will not care if it get spammed

a sub account ( from the master account )to your ISP that you use for logons, this is the one you use for personal
emails only to trusted people and banking, ebay and paypal. Never use the account for anything else than that,
you find spam is low to non existant if you follow this rule, and even if it does become spam laden, then you
can delete the account and create a new sub account and do all the email updates to ebay, paypal, banks and your
freinds.

finally your master account from your ISP, this one you NEVER use, it's only kept for creating sub accounts since
changing the master account is a real pain.


and if you have a wireless router follow these tips,


1. Use WPA encryption (WPA-PSK) it's less crackable then WEP.

2. Make a passphrase that is upper & lower case and has some numbers thrown in there as well, again harder to crack.
some like mAkE1t5eCurE0rel53 and as long as possible.

3. Use MAC access control so only you or authorized PC's can connect (even if you do have encryption turned on)

4. Turn off DHCP use static addresses.

5. Turn off SSID (and change it) unless your card really needs it (some do)

6. Change username/password of access unit front end

7. Ensure you have the usual firewall enabled on your PC.

8. Paranoia rules, turn WLAN off if your not using it :)


one last tip
control panel---administrator tools--services--messenger

right clik on it
stop the service
then disable it
save changes


********** sidebar ****************

You've seen the Internet ads: Click here to get your free laptop computer, iPod, trip to Bermuda . . .

Ever wondered what would happen if you tried to claim the freebie?

Generally, you'd end up earning the reward by answering surveys, completing product offers or referring friends.


The free iPod that costs you

you respond to a free iPod ad. After several requests to sign up for various services, you'll realize that the free iPod was not free at all. The killing part is, you end up actually committing to a few services and will be billed for them, but because you get caught in a loop of pop-up windows and surveys, you then become frustrated and will not follow through to get the free iPod.


Free cell phone! What free cell phone?

After going through 11 questionnaires and saying no to all, you finally get to the last, and they say you must at least pick two items in order to be able to get whatever they are giving away.
For instance, If you answer a free cell phone ad and go through 11-12 questionnaires and at first it says no obligation to buy anything, but when you get to the last , it will say you must at least try magazines for 30 days and they're hoping you'll will forget to cancel before the 30 days. And the kicker was once you agree to the free trial of magazines, they never ever mentioned the free cell phone again, and then you will be watching and waiting to see what they do to your credit card and if I get the phone. By the way, once you give one company your credit card number you get charged $1 to $4.95 on your card, for other items you never heard of before and have to take the time to call them and get them to remove it.


Free spam! Act now!

Yes, they are all scams. There is always a 'short' questionnaire. You always have to answer many, many questions if you want this or that. You always have to give your e-mail address and other information. You always have to check 'yes' for at least one in order to qualify and continue. If you ever get to the end after 45 minutes or so -- yeah, short -- you end up having to buy or sign up for something or your name is put into a lottery for a chance to win. I, in my stupidity, have done this several times. Always thinking maybe this one is legit. Not! You'll have never get the free product or the free gift card, groceries, movie tickets, etc. Then your e-mail is bombarded with hundreds of advertisements that you can never seem to stop unless you change your e-mail address. What a deal. Moral of this story is: Nothing is free.



If you filled out the questionnaire online for a $50 gift certificate for dinner at a well-known restaurant chain. They ask for your name and the rest of your personal information and e-mail address. Then the questionnaire opens up a new page and asks you if you would be interested in e-mails for specials on items that you could use in your life. You fill that page out then here comes another page with more questions. After about five pages I gave up. It just wouldn't quit. It was like a stupid carrot that they had hanging out there that you could never reach. I turned my computer off and said, 'Forget that!' After that you'll check your e-mail for about a week and when you do you'll had over 200 spam messages, even sex ones. You'll never get a dinner certificate. You'll end up had to closing that e-mail account because the spam garbage will not quit. Moral of the story: There is no free lunch on the Internet.



After you give your e-mail address and answered all the questions, you'll be informed that you have to order (buy) one item from several areas in order to receive the freebie. So you end canceling the 'adventure' and then you'll be inundated with junk mail ever since. Never again. Big scam for addresses to sell, etc.

Complete the never-ending survey

If you try to win a few of those free products, butsoon you'll be convinced they are the biggest fraud out there. For example, you'll spend three hours filling out questionnaires only to find out they never end, and the couple of times you'll get to the end , and they will want you to buy something and you know what that means: They are asking for your credit card information.


Free (with shipping and handling)

If you purchase some software from a company that advertises if you pay for shipping you get four software titles for free.
A few weeks later you'll get a $49 charge to your account. If you look up the company on the Web and none of the links you'll find will go to the company. If you try the phone number that showed up on your statement and they simply tell you they are not available and to try back later before they hang up on you. So you'll be dissatisfied, and searched the Internet a little more only to find you're were not the only one to be scammed. Turns out that they never tell you that you are signing up for a subscription but send you software and you have a short time frame to return it or be charged. Total scam.
Free (with Social Security and credit card numbers)


Free (with purchase)

"If Your dumb enough you'll answer ads for 'free' products." Please note the quote marks -- they're intentional. Many of the Internet freebies have extremely long forms to fill out, complete with a host of ads you need to reply 'not interested' to or else you'll receive hundreds of solicitations from various companies.
The 'gift certificates' offered for sometimes hundreds of dollars almost always involve purchasing something, somewhere along the line or becoming a trial member of something. At which point you need to pay for your subscription or membership upfront, with the caveat it's 'fully refundable' within strict parameters. As the saying goes, there's no such thing as a free lunch!

Answer 6

Generic 4. Rnr is a back door Trojan which has got Remote Call Helper accesebility, Not good.......
Follow these steps and it will remove almost all viruses and malware/spyware from your computer. It will also make your computer run faster.All are free to download from file hippo.com and download.com
.
•I know this procedure looks long, but much of this is explanatory text to help less experienced people.
•Please do not cheat by skipping any steps. You are only hurting yourself if you do. And you will waste more time. The goal is to get your PC fixed. Completing the steps in this generic guide may or may not resolve all of your malware problems, but in all cases it gets your PC into a known state to help make it easier for me to fix your problems. After completing all steps, if you still need help, please send a new question. You may have a problem trying to run steps in safe mode on user accounts that have limited priviledges. This will only be on Windows 2K, XP, & 2003 systems. Limited user accounts will not show when you boot into safe mode. You have two options, run the steps in normal boot mode which may not work to remove malware, or you can temporarily change the user account to an admin account and then complete the steps.
•0: Preliminary House Cleaning & Setup

Unistall Malware thru your computers Add?Remove program.
You MUST be sure that MSconfig is not being used to control Startups. Note: That some Window's OSs (like Win 2K) do not have MSconfig!
•MSConfig Startup Mode
Please go to Start > Run > type msconfig and click OK!
Select the General tab and select Normal Startup.
Thenclick Apply and OK and reboot PC before continuing.
Remain in this Normal Startup mode while your PC is being cleaned of malware.
1: Secondary House Cleaning

This second step of house cleaning may save a load of time later .
•Empty any quarantine folders for antivirus and antispyware applications. Make sure you do this. Logs could be huge otherwise. If you are a Symantec/Norton user make sure you empty their Norton Nprotect folder guarding the Recycle Bin. Empty your Recycle Bin
•Download and install CCCleaner
•MAKE SURE you download and avoid getting the Yahoo Toolbar version. I do not want you to install any unnecessary baggage.
•Also it is recommeded to login to all other User Accounts on the PC including the Administrator account which will only show when you boot in safe mode. Run CCleaner on each account. This can greatly reduce scan time and log sizes from the later scanning you will do below.
2: Enable viewing of hidden files, system files and file extensions

Some programs hide themselves by making their files invisible in normal Windows settings. Not doing this would allow file extensions commonly used by trojans and spyware to be hidden, for example a file ending in .exe or dll making manually finding it, if needed, difficult to impossible.


3: Do not use Multiple Antivirus Applications or Software Firewalls
•Antivirus: If you have multiple antivirus applications installed on your PC, please choose the one you prefer and uninstall all others. Do this now before continuing because you will only be asked to do it later if not done now. This does not mean online scanners. It is only referring to full antivirus applications like McAfee, Symantec, AVG, Avast, AntiVir, Kaspersky, etc.
•Firewall: Only use one software firewall. Running multiple software firewalls is unnecessary and using more than one software firewall on the same connection could cause issues with connectivity to the Internet or other unexpected behavior including excessive use of system resources which will slow down overall PC performance.
4: Downloading Tools

Download the following tools and save in your favorite download folder or create one, for example C:\Spyware Tools or C:\Downloads. ( It is not a good idea to download them to any folder within C:\Documents and Settings.) And then install, update, and configure as indicated below. Do not run the scans until later when indicated. Also DO NOT confuse the word download with the actual installation of the program. You should install all programs to their recommended (by the install program). default installation folders. First you download the files and then you install (if the program requires installation) the program. It is also a bad idea to download and save anything you need into any kind of Temp folder. Malware hides in Temp folders and standard cleaning practices will delete everything from Temp folders.

Download GetRunKey.Zip and ShowNew.Zip from the below links and extract all files from both ZIP files into a folder of their own. You can extract both ZIP files into the same folder. Like C:\MGTools While these tools will run from your Desktop, i strongly recommend that you DO NOT extract them to your Desktop. Please install them where recommended. Do not run the scans yet!!!


SpyBot - Search & Destroy
•PLEASE leave all settings at default!!!! Install, do the search for updates now and get any updates, then fix the below problem with Spybot default products. If you get an error message about "bad checksum" when trying to update, just choose a different server location. Also look for the Immunize feature in Spybot and use it. Do not use the Teatimer function. It can be a resource hog and also makes removal of certain problems more difficult. Make sure you leave the SDhelper ( IE bad download blocker) checked to install (this is the default).
•Fixing SpyBot's Ignore Products Bug: Please run SpyBot and get into the Advanced mode by selecting Mode and then Advanced mode. Then select Settings and the in the left column select Ignore Products. In the right window pane make sure the All products tab is selected. Then in that window, right click your mouse and choose "Deselect all". Now exit Spybot. We will run a scan later.
Now if running Windows XP, 2K or NT do the below. If you have Windows 95, 98, or ME skip to Downloads for Older Windows OS below. CounterSpy and AVG Antispyware will no longer run on the older Windows's OS.

CounterSpy

•If you had previously used a CounterSpy trial, you may not be able to run it again. If this is the case, then run the below AVG Antispyware Removal procedure and attach the log later.
AVG Anti-Spyware
•Only run the AVG Anti-Spyware procedure if you could not run CounterSpy. You do not need to run both of these.
Note: If you are using an older Windows OS you may not be able to run some of the above tools! So if you are running Windows 95, 98, or ME run SUPERAntiSpyware and save a log from it so you can attach it. This step is not required if you are running Windows XP, 2K or NT) HOWEVER, no matter what OS you are running, if you could not run CounterSpy or AVG Antispyware then run SuperAntiSpyware.


5: Cleaning Malware


Important Note Before continuing with the below scans:

The best method to remove malware is to do it after booting in Safe Mode with no connection to the internet possible and no browsers running. Booting in safe mode is important because best results are achieved since safe mode disables most drivers and running programs. If you cannot boot in safe mode due to the malware problem then run the scans in normal boot mode but make sure you tell us later in any messages you post.

Thus you will need to print or save these instructons locally in a text file so you can refer to them while offline. Do this before continuing!
•Reboot into safe mode
•Physically unplug your cable to the internet (even if you have dial-up, unplug modem)
•Shut down ALL unrequired applications including browsers
•Run Ccleaner with the default options to clean out temporary files. Only use the Default Scan on the Windows Tab and select Run Cleaner. Do not run any other options from other tabs.
•Run Spybot Search & Destroy and allow it to fix all that it finds. Make sure you use the Immunize feature and use the SDHelper function but do not use Teatimer.
•For Windows XP, 2K and NT users
•Run CounterSpy - Make sure you have it Quarantine all detections! Also attach the log from CounterSpy later if you still have problems. To get the log after scanning. Click View -> Spyware Scan -> View Spyware Scan History. Next click on the scan you want to view, then click view full details of scan. Right-click anywhere in the window that just opened, click on Select All, right-click again select Copy. Now open notepad and right-click anywhere in notepad and select Paste. Now Save As CounterSpy.txt. If you could not run CounterSpy for any reason, run the steps in the following link for AVG Antispyware Running AVG Anti-Spyware and allow it to fix all that it finds. Save the log as requested and attach it later if you still have problems and have to post a message requesting support.
•For Windows 95, 98 and ME users
•you should now run SuperAntiSpyware
6A: Online Virus And Trojan Scanning

Please run the below two online scanning tools and make sure you save and attach the logs later to any request for help that you post. From step 5 you should already be in safe mode but you will need to reconnect your cable now and possibly reboot and choose Safe Mode with Networking Support. If you cannot connect in safe mode for any reason (like dial-up users), run the online scanners in normal boot mode. You will need to use Internet Explorer to run these online scans. Also MAKE SURE YOU HAVE THE LATEST SUN JAVA Version installed by checking against the below link which normally has the most current version. This may help prevent some problems in trying to get these online scanners to run. Before installing the current version, you should uninstall all previous versions first!!!!


*** MAKE SURE YOU RUN BITDEFENDER BEFORE PANDA ACTIVE SCAN ***
*** But if Bitdefender cannot be run then run PandaActiveScan anyway ***


Bitdefender agree to the license and then select Scan. DO NOT CHANGE THE OPTIONS TO SHOW ALL FILES SCANNED. Once Bitdefender completes the scan:

Click-on the Detected Problems tab. When the window comes up to save the report, change the Save as type: box to Text (Tab Delimited) (*.txt) and then in the File name box enter change to bdscan then click save. This will save a file named bdscan.txt in whatever folder you are currently in when you save the file (take notice of where you are at so you can find it later). This bdcan.txt file will actually contain HTML code that i can easily view later while reviewing your log. All i have to do is rename the file to bdscan.html.

If you do not follow these step, you will have an incorrect log or worse a log summary which is useless to me.

Panda ActiveScan It will only fix certain viruses and trojans. Most items found will not be fixed. When it finishes the scan click on See Report . Then in the next window click Save Report. The default report name is Activescan.txt. Just save it where you can find it so you can attach to your message when you begin a thread with a request for help. If you have any problems trying to get a PandaActiveScan log,If you use Avast antivirus and it gives you and error like below when trying to use Panda, just disable Avast while your run the scan. The error is a false positive.
Do the following and see what happens......