Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Mcaffe Scann Messages


  • Please log in to reply
1 reply to this topic

#1 Sneakycyber

Sneakycyber

    Network Engineer


  • BC Advisor
  • 6,135 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Ohio
  • Local time:09:22 AM

Posted 26 January 2007 - 01:53 PM

First thanks for all the information you have already provided in removing the viruses and trojan horses on my computer. So far the steps I haven taken are checking MSconfig and locating running viruses using your start up list, Using autoruns.exe in safe mode to delete any traces of found viruses (I thought I got them all). I rebooted and checked MSconfig again and no running viruses were found. I ran Adaware Se personal and deleted all traces of spyware. I ran Mcafee virus scan and it finds one DLL file adir.dll and game.exe says it removes them and then an hour or so later it finds them again.. here is a log file from Mcaffe on acess scanner.
1/26/2007 12:28:18 AM Deleted NT AUTHORITY\SYSTEM game.exe F:\WINDOWS\system32\adir.dll Downloader-ZQ (Trojan)
1/26/2007 12:28:20 AM Moved (Clean failed because the file isn't cleanable) NT AUTHORITY\SYSTEM game.exe F:\WINDOWS\system32\taskdir.exe New Malware.j (Trojan)
1/26/2007 12:28:20 AM User defined detection : Move Failed (Delete Failed) NT AUTHORITY\SYSTEM game.exe F:\WINDOWS\system32\taskdir.exe User defined detection: (Potentially Unwanted Program)
1/26/2007 1:29:07 AM Deleted NT AUTHORITY\SYSTEM game.exe F:\WINDOWS\system32\adir.dll Downloader-ZQ (Trojan)
:thumbsup:
Chad Mockensturm 
Network Engineer
Certified CompTia Network +, A +

BC AdBot (Login to Remove)

 


#2 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 37,049 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:09:22 AM

Posted 28 January 2007 - 03:35 PM

Welcome to BC :thumbsup:

I suggest you follow the directions in this guide. Then create an HJT log, you will find the directions in the guide.

Create a new topic in this forum, not here and give it a good descriptive title. Briefly summarize what the problems are, what you have done to try to solve it, and what worked and didn't work and paste in your HJT log. You may wish to include a link to this thread as well.

After you post your log, DO NOT make any further changes to your computer: deleting files, editing the registry, using special fix tools, installing or uninstalling software etc. as this will make it more difficult for the HJT team to help you.

Please be patient as the HJT team is very busy. DO NOT bump your log as the team may think that someone is already helping you. If you have not had a response in five days, add a response to the five days no response topic and paste in the link to your thread.

Orange Blossom :flowers:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Internet Security, NoScript Firefox ext.


animinionsmalltext.gif




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users