Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Norton Found The Wimad Trojan Horse, Need Help


  • Please log in to reply
5 replies to this topic

#1 atapp21

atapp21

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 23 July 2006 - 10:44 PM

Norton Corporate edition has found the wimad trojan horse on my computer. The problem is Norton can't do anything with it (sucks). So I downloaded Trojan Remover 6.5.0 to help resolve the problem but I'm not sure if it did or not. I run the scan and there is one particular file " C:\windows\system32\??od32.exe" that it can't do anything with. Now I don't know if this is something needed or not. I need help guys or gals.

Now I have Windows XP service pack 2, and I use spyware blaster, Ad-aware SE Personal, Spyware blaster, spybot search and destroy, Trojan Remover and finally Norton antivirus Corporate edition (sucks) :thumbsup: .

Any help is appreciated.
Yours Truly,
Tapdiggity

BC AdBot (Login to Remove)

 


#2 rookie147

rookie147

  • Members
  • 5,321 posts
  • OFFLINE
  •  
  • Local time:04:54 PM

Posted 24 July 2006 - 03:36 AM

Hello atapp21,
Try the following..

Please download Ewido anti-spyware 4; it is a 30 day trial version of the program.
  • Install ewido security suite
  • Ewido will automatically run at the end.
  • The program will now open to the main screen.
  • When you run ewido for the first time, you may get a warning "Database could not be found!". Click OK. We will fix this in a moment.
  • You will need to update ewido to the latest definition files.
    • On the top row of the main screen click update.
    • Then click on "Start Update".
  • The update will start and a progress bar will show the updates being installed.
    (the status bar at the top will display ("Update successful")
If you are having problems with the updater, you can use this link to manually update ewido.
ewido manual updates
Don't run it yet.

Reboot into SAFE MODE
By pressing the F8 key right when Windows starts, usually right after you hear your computer
beep when you reboot it (some versions of windows will display 'Starting Windows' with a grey progress bar)
you will be brought to a menu where you can choose to boot into safe mode.

Open Ewido anti-malware
Click on the scanner button in the top row.
  • Click Complete System Scan and the scan will begin.
  • If you have any infections you will prompted, then select "Apply all actions"
  • Next select the "Reports" icon at the top.
  • Select the "Save report as" button in the lower left hand of the screen.
  • Save the report to your desktop.
  • Close Ewido
Please reboot back to normal mode and the ewido log you previously save to your desktop.

Once you have done this, follow the Preparation Guide Before Posting A HijackThis Log, before posting your log, along with the Ewido log in new topic in our HijackThis Logs and Analysis Forum.

Hope this heps,
Charles

Edited by rookie147, 24 July 2006 - 03:47 AM.

If you are pleased with the service I have offered, you may like to consider making a donation. Posted Image
Posted Image


#3 atapp21

atapp21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 25 July 2006 - 09:18 PM

Thanks Charles, I will definitely give this a try. java script:emoticon(':thumbsup:', 'smid_3')
:flowers:
Yours Truly,
Tapdiggity

#4 atapp21

atapp21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 26 July 2006 - 11:32 PM

One more question Rookie 147, Should I delete my current antivirus software and trojan horse remover before applying your remedy?
Yours Truly,
Tapdiggity

#5 rookie147

rookie147

  • Members
  • 5,321 posts
  • OFFLINE
  •  
  • Local time:04:54 PM

Posted 27 July 2006 - 03:34 AM

No, you don't have to get rid of Norton; it is a perfectly good antivirus software. I assume you don't like it though, as you said it "sucked" in your first post, so I can recommend you some more, free ones that are very competant. Please visit this link for a list of them:

Freeware Replacements For Common Commercial Applications

(Just in case you wanted to know, my personal favourite is AVG Free Edition, which I have used for many years without a problem)

However, you probably won't need the Trojan Remover in the future so you can safely delete that, unless you really want to keep it- hopefully you wont get re-infected in the future :thumbsup:

Hope this helps, and good luck!
Charles

If you are pleased with the service I have offered, you may like to consider making a donation. Posted Image
Posted Image


#6 atapp21

atapp21
  • Topic Starter

  • Members
  • 60 posts
  • OFFLINE
  •  
  • Local time:10:54 AM

Posted 28 July 2006 - 09:47 PM

Thanks for the instructions :thumbsup:
Yours Truly,
Tapdiggity




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users