GlockTalk.com
Home Forums Classifieds Blogs Today's Posts Search Social Groups



  
SIGN-UP
Notices

Glock Talk
Welcome To The Glock Talk Forums.

 
  
Reply
 
Thread Tools Display Modes
Old 10-21-2004, 04:32   #1
G26AZ
Senior Member
 
Join Date: Aug 2001
Location: Arizona
Posts: 578
"Backdoor.Trojan" HELP!!!

Help! My kids have been using my laptop,and now it's infected with a virus called the "Backddor.trojan." I have Norton AV program which identifies what it is, but is unable to delete it. I've delelted everything I can find (some of the things won't let you delete them...) but when I re-start the computer and go to IE, it's all back again with pop-ups, porno ads, etc.
Any and all help or suggestions would be appreciated!
Thank you in advance!
G26AZ is offline   Reply With Quote
Old 10-21-2004, 04:45   #2
HerrGlock
CLM Number 2
Scouts Out
 
HerrGlock's Avatar
 
Join Date: Dec 2000
Posts: 64,487


Cleaning infected machines without an installed antivirus software
1. Download the Sysclean Package from a clean or uninfected machine.

2. Create a temporary folder (e.g., c:\temp) and copy SYSCLEAN.COM into this folder. This temporary folder should be on a local or mapped drive.

3. Download the latest pattern file. Extract the downloaded ZIP pattern file into the created folder.

4. Extract the pattern file into the same folder.

5. Run the SYSCLEAN.COM executable file.

Note: This fix tool generates the SYSCLEAN.LOG log file, in its current folder. This tool will also take care of memory resident viruses and clean all the viruses remaining such as registry entries, dropped files, and processes utilized by the malware.

If you are not a Trend Micro customer please download the following file.

Sysclean Package 2.1MB
http://www.trendmicro.com/ftp/products/tsc/sysclean.com

MD5 checksum: 63649AEBAC673CB2B3BE5A7E8A7F8111

NOTE:
For instructions on how to use this package, consult the "How to Use" section of the readme file, readme_sysclean.txt. This file also contains the description and the different features of this package.

Note that for the Trend Micro Sysclean Package to be effective, you must download and place the latest pattern file in the same folder as the Trend Micro Sysclean Package.

Read this (print it out so you can read while putzing with your computer)
http://www.trendmicro.com/ftp/products/tsc/readme.txt
__________________
Sent from my rotary phone
"The way I see it as soon as a baby is born, he should be issued a banjo!"- Linus Van Pelt
UNIX - Not just for Vestal Virgins any more
HerrGlock is offline   Reply With Quote
Old 10-27-2004, 11:36   #3
Generalcarry
NRA Member
 
Generalcarry's Avatar
 
Join Date: Apr 2004
Location: Michigan
Posts: 4,417
Go to www.snopes.com
Do a search for backdoor virus
Follow instructions.
__________________
"I find the harder I work, the more luck I seem to have"....Thomas Jefferson
Generalcarry is offline   Reply With Quote
Old 10-27-2004, 11:47   #4
David_G17
/\/\/\/\/\/\/\/
 
David_G17's Avatar
 
Join Date: Oct 2002
Posts: 7,678
i got that same virus this morning!!!

turns out, its a trojan designed to allow a hacker to install more trojans. so, you may have more than you think.

have you updated norton? i think it killed mine.
__________________
"One handgun a month is too much."
"If you ask me, 12 handguns/year is too much."
"I'd be OK with one gun a year."
"We need the strong gun regs and enforcement Europe has."
-DU debates America's future 10/23/2005
David_G17 is offline   Reply With Quote
Old 10-27-2004, 17:03   #5
MikeG22
CLM Number 11
Charter Lifetime Member
 
MikeG22's Avatar
 
Join Date: Jun 2002
Location: San Diego
Posts: 4,748
Send a message via AIM to MikeG22
Download this:
http://www.emsisoft.com/en/software/free/

It's a free trojan and worm scanner that does a great job of finding and removing what norton misses. If you upgrade to the personal it can run in the background to prevent infections but just using the scan will get rid of them.
MikeG22 is offline   Reply With Quote
Old 10-28-2004, 02:29   #6
srhoades
Senior Member
 
srhoades's Avatar
 
Join Date: Jul 2000
Posts: 4,576
If you boot into safe mode you will be able to delete the infected files. Make the necessary registry changes (if applicable) and your done.
srhoades is offline   Reply With Quote
Old 10-31-2004, 12:36   #7
G26AZ
Senior Member
 
Join Date: Aug 2001
Location: Arizona
Posts: 578
Thanks to everyone for their help. Between adding Windows SP2, upgrading Norton, running Spybot several times, etc., I think it's taken care of. Thanks again.
G26AZ is offline   Reply With Quote

 
  
Reply

« slow yahoo | Avg »
Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump




All times are GMT -6. The time now is 21:31.




Homepage
FAQ
Forums
Calendar
Advertise
Gallery
GT Wiki
GT Blogs
Social Groups
Classifieds


Users Currently Online: 1,304
336 Members
968 Guests

Most users ever online: 2,244
Nov 11, 2013 at 16:42