Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

trojan horse virus


  • Please log in to reply
2 replies to this topic

#1 ashton_r

ashton_r

  • Members
  • 140 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Lakewood, WA
  • Local time:01:53 AM

Posted 21 August 2005 - 12:42 PM

there's a Trojan horse virus on my friend's computer, a windows xp. he got it by looking at bad sites. ne1 know how 2 get rid of it?

BC AdBot (Login to Remove)

 


#2 jgweed

jgweed

  • Members
  • 28,473 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago, Il.
  • Local time:04:53 AM

Posted 21 August 2005 - 03:23 PM

Does he have a resident Anti-virus? If so, have him update its definitions and perform a thorough scan of his hard drive in safe mode. That is always the first step.
If he can determine the NAME of the virus, there is abundant information on the NET from AV sites that often includes removal instructions.
Regards,
John
Whereof one cannot speak, thereof one should be silent.

#3 Enthusiast

Enthusiast

  • Members
  • 5,898 posts
  • OFFLINE
  •  
  • Location:Florida, USA
  • Local time:04:53 AM

Posted 21 August 2005 - 03:43 PM

Below is a list of various anti-virus and anti-malware programs and tools.
I assume you have a working anti-virus program which is updated often, if not I listed a couple of freeware ones for you. Same with the firewall.

You will also see antimalware programs, tools and scans listed. That is what you need to rid your computer of the trojan now.

Freeware AntiSpyware and Security Programs

Software firewalls with freeware versions
Free Zone Alarm SE: http://www.zonelabs.com/store/content/comp...;NONE?lid=ho_za

Sygate: http://www.sygate.com/

Antivirus programs - freeware (you can only use one resident anti-virus program on your computer. More than one will conflict)

AVG: http://www.grisoft.com/us/us_index.php

Avast Anti-virus freeware
http://www.komando.com/bestshareware.asp


Anti-malware freeware (You can run as many of these as you wish. Generally there is no conflict between these and you should always run several)

*AdAware SE: http://www.lavasoftusa.com/software/adaware/

*Spybot S&D: http://www.safer-networking.org/en/index.html

*the two most important to have!

Microsoft Antispyware Beta: http://www.microsoft.com/athome/security/s...re/default.mspx

SpywareBlaster: http://www.javacoolsoftware.com/spywareblaster.html

Microsoft Malicious Software Removal Tool (Win XP and Win 2000):
http://www.microsoft.com/security/malwareremove/default.mspx

A˛ - Free from http://www.majorgeeks.com/download4281.html . Run it, click Search for Updates, then click Scan.


CWShredder
CW Shredder removes some variants of spyware known as the Coolwebsearch Trojan. The Trojan takes advantage of a flaw in a key component of Windows -- Microsoft's version of the Java Virtual Machine -- to install itself via popups often found on porn and illegal software (a.k.a. "warez") sites. Run CWShredder after installing, and have it look for updates. Then click the "Fix" button, and the program will both scan and fix any problems it finds. If your system does not have this kind of spyware, it will give you the good news.
Freeware
http://www.intermute.com/spysubtract/cwshr...r_download.html

Microsoft Baseline Security Analyzer (MBSA)
MBSA is an easy-to-use tool designed for the IT professional that helps small and medium businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance. Improve your security management process by using MBSA to detect common security misconfigurations and missing security updates on your computer systems.
http://www.microsoft.com/technet/security/...s/mbsahome.mspx


online trojan scans here -
http://scan.sygatetech.com/pretrojanscan.html
http://windowsecurity.com/trojanscan
Web based online Antivirus and anti-malware scans: (these can be run regardless of whatever else you are using. You must use Internet Explorer to run these.)

Kaspersky Anti-Virus Web Scanner
http://www.kaspersky.com/service?chapter=161739400#betatest

Windows Security Trojanscan
http://www.windowsecurity.com/trojanscan/trojanscan.asp

Panda Activescan (IE only)
http://www.pandasoftware.com/activescan/co...n_principal.htm

Trend Micro antivirus and malware scan:
http://housecall-beta.trendmicro.com/en/st...orp.asp?id=scan

Etrust Anti-virus web scanner
http://www3.ca.com/securityadvisor/virusinfo/scan.aspx

If all the above fail to remove the trojan, you need to download Hijack This, following the instructions you will find on our webpage explicitly.

DO NOT ATTEMPT TO RUN HIJACK THIS BY YOURSELF WITHOUT EXPERT INSTRUCTION - which you will get here by following the instructions on the links given below.

Hijack This and a variety of other tools for malware and pestware
http://216.180.233.162/~merijn/files/HijackThis.exe or
http://www.spywareinfo.com/~merijn/downloads.html

Unless you are an expert in altering, editing or modifying the registry do not attempt to use “Hijack This” without expert assistance which you can get by following the instructions below:
How to submit a Hijack This log
http://www.bleepingcomputer.com/tutorials/how-to-post-a-hijackthis-log/
http://www.bleepingcomputer.com/forums/How...s_Log-t956.html




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users