Bullguard Antivirus Forum Download A Free Copy Of Bullguard Antivirus Software
Free Antivirus Forum - Learn about antivirus, firewalls and personal security Free Antivirus Forum - Learn about antivirus, firewalls and personal security
 HomeLog InRegisterCommunity CalendarSearch the ForumView The Member ListHelp
trojan horse!!!!!!!!!1
   
BullGuard Antivirus Forum > Virus Removal > Removal Tools > trojan horse!!!!!!!!!1  
Forum Quick Jump
 
New Topic Post reply to : trojan horse!!!!!!!!!1 Printable version of : trojan horse!!!!!!!!!1
[ << Previous Thread | Next Thread >> ]

mat
New Member


Date Joined Sep 2004
Total Posts : 1
  		   Posted 9-12-2004 11:21 (GMT +1)    Quote: trojan horse!!!!!!!!!1Alert an admin about: trojan horse!!!!!!!!!1
norton antivirus 2002 has found trojan horse in my pc... and i found two files in "system32" that are infected by trojan but i can't delete them!!!! i did a full sistem scan in vga mode and i deleted the registry keys which were infected but not the two files ...!!!!!!!!! help me!!!!!!!!!!! how can i delete these files? please reply me
Back to Top
 

Victor
New Member


Date Joined Sep 2004
Total Posts : 1
  		   Posted 9-25-2004 5:01 (GMT +1)    Quote: trojan horse!!!!!!!!!1Alert an admin about: trojan horse!!!!!!!!!1
mat
 
The following worked for me:
 
The Trojan had installed itself into mtwirl.dll in the windows/system32 folder. NAV can't touch it, because it's already in use when the PC is running.
 
1. Identify the location infected file with an anti-viral.
2. Disable System Restore (important).
3. Re-boot in safe mode.
4. Drag the infected file to the desktop.
5. Delete and emtpy rubbish bin.
6. Normal re-boot.
That kills the virus, but then you have to fix the damage it did. It leaves several registry keys and values affected, which continue to screw up Internet Explorer. I manually fixed some (see Symantec's instructions for removing Trojan.startpage, only to find out that the Trojan had also installed a hijack over IE by redirecting my searches. To fix that, I suggest downloading Ad-Aware (available widely and freely) and run it. Then CWShredder (also available widley and freely), just to make sure. The hijack is clever in that it blocks access to CWShredder, but it didn't block access to Ad-Aware, so I downloaded and ran that first, which isolated the remaining hijack registry entries.
After you've done all the cleaning, go back to IE and delete cookies, temporary files, and history, and re-set your home page.
Finally, don't forget to re-enable System Restore.
Back to Top
 

Larry
New Member


Date Joined Oct 2004
Total Posts : 2
  		   Posted 10-4-2004 3:39 (GMT +1)    Quote: trojan horse!!!!!!!!!1Alert an admin about: trojan horse!!!!!!!!!1
Get AVG Free at www.grisoft.com
then run msconfig and turn off all services and startup programs
run AVG it will clean up your computer, then turn off system restore, restart then turn it back on. Then re-enable services and startup
Donecool


Back to Top
 
New Topic Post reply to : trojan horse!!!!!!!!!1 Printable version of : trojan horse!!!!!!!!!1
 
Forum Information
Currently it is Saturday, November 22, 2008 12:53 PM (GMT +1)
There are a total of 64.045 posts in 15.836 threads.
In the last 3 days there were 26 new threads and 154 reply posts. View Active Threads
Who's Online
This forum has 27195 registered members. Please welcome our newest member, lein83.
43 Guest(s), 1 Registered Member(s) are currently online.  Details
thegascomp
5 Latest Threads
Redirecting virus? (5)22-11-2008 10:29:08 (r1ch1e)
Help please!!! (15)22-11-2008 10:05:45 (Touch)
HELP I AM GOING MAD (5)22-11-2008 06:51:49 (Touch)
Generic.PWS.WoW.B7078E0 (15)22-11-2008 05:31:04 (Touch)
Win 32-trojan-gen (17)22-11-2008 05:29:27 (Touch)


Need Support? Write to: | Forum Help Manual

Download free trial version of Bullguard