Re: backdoor.mosucker.B0

From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 12/28/03


Date: Sun, 28 Dec 2003 10:38:01 -0500

1) If you are using WinME or WinXP, disable System Restore
            http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
2) Please reboot your PC into Safe Mode
3) Perform and Full Scan of your platform and clean/delete any infectors found
4) Restart your PC and if you are using WinME or WinXP, re-enable System Restore
            and then create a new Restore point
5) Perform a "final" Full Scan of your platform then report back your results

Dave

"Mike" <anonymous@discussions.microsoft.com> wrote in message
news:04b601c3cd54$5a907770$a401280a@phx.gbl...
| Hi,
|
| I'm running AVG6.0 and it detected, but can't clean,
| backdoor.mosucker.B0 which attached itself to the
| netconfig{5}.xtr file.
|
| Can anyone offer some tips/solutions to eradicate this
| Trojan Horse?
|
| Thanks!
| Mike S.
| Ohio
|
|



Relevant Pages

  • Re: W2k3 - lsass shutdown problem
    ... Obtain McAfee's virus and worm removal tool, Stinger: http://vil.nai.com/vil/stinger/ ... If you are using WinME or WinXP, disable System Restore ...
    (microsoft.public.security.virus)
  • Re: trojan.startpage virus on DLL file cant be deleted
    ... Perform a Full Scan of your platform and clean/delete any infectors found ... If you are using WinME or WinXP, re-enable System Restore, reboot the PC ...
    (microsoft.public.security.virus)
  • Re: Virus deletion
    ... Perform a Full Scan of your platform and clean/delete any infectors found ... If you are using WinME or WinXP, re-enable System Restore, reboot the PC ...
    (microsoft.public.security.virus)
  • Re: Trojan Horse
    ... Perform a Full Scan of your platform and clean/delete any infectors found ... If you are using WinME or WinXP, re-enable System Restore, reboot the PC ...
    (microsoft.public.security.virus)
  • Re: Download.Trojan
    ... If you are using WinME or WinXP, re-enable System Restore, reboot the PC ...
    (microsoft.public.security.virus)