Trojan Win32@mx
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Plusnet Community
- :
- Forum
- :
- Other forums
- :
- Tech Help - Software/Hardware etc
- :
- Re: Trojan Win32@mx
Trojan Win32@mx
01-09-2008 9:40 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
How can I get rid of this trojan if I haven't got internet access? I dont want to reformat his hard drive because we dont want to lose his data files (photos, music, etc).
We both have XP. He hasn't kept his AVG, Spybot or Adaware up-to-date - I know
Thanks in advance
Re: Trojan Win32@mx
01-09-2008 9:52 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Hope it works !
Re: Trojan Win32@mx
01-09-2008 10:58 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Trojan Win32@mx
01-09-2008 11:58 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Trojan Win32@mx
02-09-2008 11:53 AM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Get a USB Stick or something so you can put some tools on the Machine to sort it out.
- Security Task Manager - Free Version will do what we need
- Dr Delete - Boot Time Scheduled File Remover
- RegEdit - Possibly
- Google
First, identify where the problem is coming from...
Open up Security Task Manager and start Googling the Filename of anything Suspicious.
There will be many which are identifiable with Hardware and Services for the Machine to Operate.
The Rating Column is a minor indicator, but check absolutely everything...
but do not take face value of a low rating for a suspicious file if you have identified it with the symptoms.
Once you've found all the Files shown, you then go and check the Directories.
(Example: C:\Program Files\SuspiciousDirectory\Viri.ext ,then look at the whole directory to check what else is there)
Then all you need to do is use Dr Delete, to Delete the files which are currently loaded/active in Memory and cannot be Deleted by Windows Directly.
Anything else that you can delete, which is in an associated Folder which tallies with the suspiciousness... Delete it if possible from Explorer.
If you can, get your Anti Virus Program to do a Scheduled Boot-time Scan - Pre-OS Load and restart once you've
If you copy down all the file names you encounter which are suspicious, you can check your Registry with RegEdit (Start -> Run -> "regedit"; CTRL + F "Viri.ext").
You might be able to remove any associative entries which would otherwise be used to execute the files.
This would then mean, if it replicates then you'll know because the entries either reappear or reappear under a different name.
It's best to do this once you've removed what you can...
Hope that helps.
Jim,
Re: Trojan Win32@mx
02-09-2008 12:02 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Trojan Win32@mx
02-09-2008 12:09 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Just because some applications like to append a dot and several characters to the end of a file name doesn't mean anything.
This is a hangover from the 8.3 file name format from the days of DOS.
"In The Beginning Was The Word, And The Word Was Aardvark."
Re: Trojan Win32@mx
02-09-2008 12:23 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Trojan Win32@mx
02-09-2008 10:46 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Anyway, back to this problem of the Trojan. I am looking at the various replies (thankyou to all) and will try to use them tomorrow evening after work. Things are a bit hectic at the moment, what with a new baby grandson and things, so it may be a day or two before I can report back to let you know how I am progressing.
Thanks to all. Will get back to you as soon as I can.
Re: Trojan Win32@mx
04-09-2008 5:35 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I got rid of the trojan by using a memory stick to load AVG8 from another pc (and installing/running it of course). I then found that although Internet Explorer didn't change its home web-site from Google (which i wanted) to a site I didnt want, I still couldnt access Google. That problem turned out to be a "funny" in how Zone Alarm was set up. I used the memory stick to load the latest Zone Alarm and did a clean install, and now I can get through to the web - I'm writing this from the problem pc.
My thanks to all for your help and suggestions.
Best regards
Re: Trojan Win32@mx
04-09-2008 5:42 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Re: Trojan Win32@mx
05-09-2008 6:06 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
Again thanks to all
Re: Trojan Win32@mx
06-09-2008 1:30 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
I have another pc linked by wireless to the same switch/router (Netgear DG834G v2) that this pc is connecting to, and that link runs at 54M, so I know the problem isn't anywhere other than the link to one particular pc. Trouble is, I cannot find any instructions on how to change the link to 802.11g.
My son, who owns this particular pc, has lost the installation disk for the USB thingy, so I am unable to do a re-install.
Any suggestions anyone, please
TIA
Re: Trojan Win32@mx
06-09-2008 1:51 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
You may be suffering from a low signal strength.
Try moving the PC and router within clear sight of each other (it's OK to unplug the telephone cable, after shutting the router down) - probably easier to move the router!
If 802.11g is available, your son's PC should re-negotiate a better speed.
If this helps, consider using a high-gain aerial (antennae) - preferably with a metre or so of cable on it to allow for optimum positioning.
Ebay is a good place to look.
"In The Beginning Was The Word, And The Word Was Aardvark."
Re: Trojan Win32@mx
06-09-2008 2:30 PM
- Mark as New
- Bookmark
- Subscribe
- Subscribe to RSS Feed
- Highlight
- Report to Moderator
The troublesome pc is only about 4 feet away from the router, with nothing but a wooden desk with the router and my main pc on, to obstruct the path.
I do have the Belkin unit plugged directly into its pc USB port, not connected via a cable. Would that affect it?
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page