| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 55470 | 2005-03-11 08:07:00 | trojan horse startpage.16.m | drcspy (146) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 333030 | 2005-03-11 08:07:00 | this thing has been giving me a major migraine.........I've tried EVERYTHING I can think of..........does anyone have a DEFINITIVE method of getting rid of this thing.........???? o/s is winME | drcspy (146) | ||
| 333031 | 2005-03-11 08:08:00 | What have you tried so far? | Myth (110) | ||
| 333032 | 2005-03-11 08:18:00 | Get hijackthis, make a folder C:/HJT and unzip the highjackthis file into it, and run it do a scan. And post the log here. So, we can see what the prob is. |
Speedy Gonzales (78) | ||
| 333033 | 2005-03-11 08:21:00 | Format it,then charge em double. | Metla (12) | ||
| 333034 | 2005-03-11 08:24:00 | Format it,then charge em double. Preferably with OS X Have you done a scan in safe mode. Tried CWShredder |
Safari (3993) | ||
| 333035 | 2005-03-11 17:56:00 | WHAT have I done so far ?.....slaved it run a scan with norton....no virus (lol) same with avg picked up a couple.....run cws.....run hijack this and removed almost everything in the list (lol) ......run adaware.......run ccleaner.......run stinger .......run vcleaner.........run trojan remover...no virus......(grrrr).......run process explorer and identified that its rundll32.exe thats causing the probs......gone thru the reg as per norton instructions and found bugger all.....and done several other things I cant even remember.......I kinda like Metlas suggestion but it's gonna be a real pain in the ass to do that cause it's a business pc and I've no idea wether they 've got the cd's for their original apps etc .......probably dont.....then it'd need to be reset up on their network etc etc......real annoying.....run a few other things.....cant remember now done a LOT and still it comes back........oh yep run about:buster......installed spyware blaster and tried to lock the system down.....run rapid blaster killer......installed spybot1.4 with teatimer reg protection........GRRRRRRRRRRRRRR | drcspy (146) | ||
| 333036 | 2005-03-11 21:07:00 | You have done all that, they say you have no virus and you still have the trojan? How do you know that? | FoxyMX (5) | ||
| 333037 | 2005-03-11 21:07:00 | one thing missing from the "done" list, did you disable system restore before doing any of the done list. | beama (111) | ||
| 333038 | 2005-03-11 21:52:00 | A business pc? My mistake, format it, sell them a new OS, Charge em triple. Sometimes you just have to cut your/there losses and take a different approach, Time is money after all, and it sounds like you have spent a few hours doing work you will have problems charging for, as the machine isn't fixed. I take the same approach, everything is fixable and a format is the very last resort.....But deciding when to take the last resort is all down to timing. That said, Don't think I have come across any malicious code I wasn't able to remove, Maybe you should send it my way, I'll fix it, charge em quadruple. Muhahahaha. Just yankin ya leg. |
Metla (12) | ||
| 333039 | 2005-03-11 22:25:00 | did you disable system restore before doing any of the done list You should turn off sys restore... (for XP its ... control panel>system>system restore tab) and then (I think ME can do the following, I know XP can) clean out your restore files .. Go to my computer>right click an go to properties>click on disk cleanup> let that do its thing then there might be a tab with More Options. Click on System Restore Cleanup. Then run all your virus scans, reboot, then turn sys restore back on |
Myth (110) | ||
| 1 2 3 | |||||