| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 58592 | 2005-06-05 20:15:00 | Serious Trojan Problem ! ! ! Please Help ! | helpplease (7914) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 361382 | 2005-06-05 20:15:00 | hi, today i got a very bad trojan that blcoked me from the internet, there was nothing i could do apart from try to delete it each time with my anit-virus, but everytime i dleted it and re-started my computer, it kept coming back & back. So i formatted my harddrive ( full format), re-installed windows, and its back again! i havent a clue what to do! The virus is called clicker.6.v - ive googled it, but there is nothing on it? i havent a clue what to do, its causing some real problems.... i have a firewall, n everything ... i dont no how its getting in ! is what AVG is calling it .... guys i really need your help and quick ! ''katie[1].ru trojan Horse Clicker.6.V'' |
helpplease (7914) | ||
| 361383 | 2005-06-05 21:42:00 | www.mcse.ms PArt way down, he says how he removed it. |
pctek (84) | ||
| 361384 | 2005-06-05 22:54:00 | I'd advise staying away from Russian crack/warez sites, and also dump any such games you may have. :cool: | Terry Porritt (14) | ||
| 361385 | 2005-06-06 15:48:00 | didnt work, guys i really need some help, this virus comes back on everyboot! | helpplease (7914) | ||
| 361386 | 2005-06-06 16:14:00 | Looks like a bios reflash problem . There are a few newer (from Russia, Romania, Bulgaria etc) viruses and trojans that are really hard to remove and in fact will destroy your puter just for fun . And it looks like you got one! Here's what happens: It writes itself into the bios as a very small program, usually under 1kb . It will be noticed in your ram too, as 1kb missing . It will surface at every boot-up, and write itself to the ram and set aside a very small hidden partition on the hd too . So, what to do? You have to reflash the bios and dump everything you have . I had to replace 4/200 gig hd's and reflash my bios to get rid of a variant of one of these not too long ago . I had the W95 . CIH . damaged virus, and it is from the nice place of China . What you have is a variant on one of these, and the scariest part, is that they have a payload date! On one day (established by the virus writer) it will tear up everything you have in the tower . This means hard drives, motherboard and ram sticks too . Setting the clock/date back to an earlier date will NOT work! Everything that has a chip in/on it is suspect, as we don't know how sophisticated these viruses are getting now . If it can hold memory, it is suspect . . . remove it! or flash it! :eek: Sorry for the wonderful news . Warez files are dangerous, as are most game sites and P2P clients . |
SurferJoe46 (51) | ||
| 361387 | 2005-06-06 21:41:00 | its fixed now, on a forum, asked for some held got step 2 step method to remove! im happy now! |
helpplease (7914) | ||
| 361388 | 2005-06-06 21:48:00 | If you post here the procedure you carried out it might help other people. | Safari (3993) | ||
| 361389 | 2005-06-06 22:27:00 | Looks like a bios reflash problem. I had the W95.CIH.damaged virus, and it is from the nice place of China. Then you need to install some Antivirus protection As far as I'm aware every Antivirus proggy out there will take care of this This virus is so old, no-one should still be getting caught with it And I think it originated in Taiwan |
bartsdadhomer (80) | ||
| 361390 | 2005-06-07 01:45:00 | Yup! The old Chernobyl was from Taiwan, and was made by the same guy . The CIH is his initials according to McAfee, and he is still in the wild with new versions of that old-timer . It was and still is very "out there" and will get to people yet . The varieties of Chernobyl were those that payloaded on the anniversary of the Chernobyl disaster, and others that payload on any 25th of any month . Mr . C . I . H . is still out there, honing his skills, and who knows if he's selling ideas to the Bulgarians too . It's a shame that people are getting hit by it again and again . My McAfee and Spybot all jumped up when it happened and told me I had it, it was installed and it was not repairable . That was last April . I do not let my updates get old or out of date . But I got it anyway! |
SurferJoe46 (51) | ||
| 1 | |||||