Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Windrv.exe


  • Please log in to reply
7 replies to this topic

#1 timedecay

timedecay

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:41 AM

Posted 17 December 2006 - 10:07 AM

:Hi, I was infected with Windrv.exe and I tried to clean it with Ad-Aware, it seems that it cleaned the problem, but I would like to know how to check if I am on the safe side to start using my computer for everything.

Ad-Aware says there is nothing and Ewido says it found nothing should I submit a hijack this file just to be sure? :thumbsup:

Thanks.

BC AdBot (Login to Remove)

 


#2 fozzie

fozzie

    aut viam inveniam aut faciam


  • Members
  • 3,516 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ossendrecht/The Netherlands
  • Local time:09:41 AM

Posted 17 December 2006 - 10:13 AM

Welcome to BC timedecay. You might want to consider Panda online scan to be sure. If you are still using Ewido as an AV please update to AVG.

#3 timedecay

timedecay
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:41 AM

Posted 17 December 2006 - 10:18 AM

Should I download panda or just do the online search?

#4 buddy215

buddy215

  • Moderator
  • 13,204 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:41 AM

Posted 17 December 2006 - 10:33 AM

WINDRV.EXE Description: Added by the IRCINTER.A TROJAN!
--------------------------------------------------------------------------------


What may still be on your computer:
http://www.bleepingcomputer.com/startups/W...V.EXE-2277.html

--------------------------------------------------------------------------------

Instructions for removing:
http://www.trendmicro.com/vinfo/virusencyc...EA&VSect=Sn
“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”

#5 timedecay

timedecay
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:41 AM

Posted 17 December 2006 - 11:03 AM

Panda did find some spyware and some hacking tools and rootkits, what should be my next step? :thumbsup:

#6 fozzie

fozzie

    aut viam inveniam aut faciam


  • Members
  • 3,516 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ossendrecht/The Netherlands
  • Local time:09:41 AM

Posted 17 December 2006 - 11:11 AM

follow the removal instructions as posted by buddy and after that do another online scan with www.ewido.net

#7 timedecay

timedecay
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:02:41 AM

Posted 17 December 2006 - 11:54 AM

I followed buddy's instructions but didnt find anything in the registry, what should I do next?

#8 buddy215

buddy215

  • Moderator
  • 13,204 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:West Tennessee
  • Local time:03:41 AM

Posted 17 December 2006 - 12:37 PM

Install and run AVG 7.5 free antispyware
http://free.grisoft.com/doc/20/lng/us/tpl/v5
--------------------------------------------------------------------------------


Post a Hijack This log by following the instructions in the link below:
http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/

Once the log is posted, do not bump it. Wait for the Hijack This expert to review and post his instructions.
“Every atom in your body came from a star that exploded and the atoms in your left hand probably came from a different star than your right hand. It really is the most poetic thing I know about physics...you are all stardust.”Lawrence M. Krauss
A 1792 U.S. penny, designed in part by Thomas Jefferson and George Washington, reads “Liberty Parent of Science & Industry.”




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users