Re: SayWhat?Re: backdoor trojan in windows XP
From: Sue (anonymous_at_discussions.microsoft.com)
Date: 10/04/04
- Next message: bobp: "dialer kotu virus"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: Raleka"
- In reply to: Steve: "Re: SayWhat?Re: backdoor trojan in windows XP"
- Next in thread: Steve: "Re: SayWhat?Re: backdoor trojan in windows XP"
- Reply: Steve: "Re: SayWhat?Re: backdoor trojan in windows XP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sun, 3 Oct 2004 16:07:43 -0700
I presume so, I don't normally utilize zip files. I will
find out.
>-----Original Message-----
>Do you have WinZip or its like installed?
>
>Steve
>
>"Sue" <anonymous@discussions.microsoft.com> wrote in
message
>news:0edb01c4a82a$d2486870$a501280a@phx.gbl...
>> O.K. Dave,
>> I now have sysclean and the pattern in the same folder
in
>> my documents. When I try to run sysclean it tells me
I
>> need to download the pattern. When I open the unzipped
>> pattern it tells me to pick a program to run it. I
don't
>> know what to do next. How do I get the two downloads to
>> work together?
>>
>>
>> >-----Original Message-----
>> >Hi, Dave -
>> >
>> >Thank you. That's a little less intimidating!
>> >
>> >8-)
>> >
>> >M.
>> >
>> >
>> >>-----Original Message-----
>> >>Create the directory.
>> >>On drive "C:\" (i.e., "c:\New Folder") or the desktop
>> >(i.e.; "C:\Documents and
>> >>Settings\lipman\Desktop\New Folder")
>> >>
>> >>Download sysclean.com and place it in that directory.
>> >>Dowload the signature files (pattern files) by
obtaing
>> >the ZIP file.
>> >>
>> >>Extract the contents of the ZIP file and place the
>> >contents in the same directory as
>> >>sysclean.com.
>> >>
>> >>Execute; sysclean.com
>> >>
>> >>HTH.
>> >>
>> >>Dave
>> >>
>> >>
>> >>
>> >>
>> >>
>> >>"Morisot" <anonymous@discussions.microsoft.com> wrote
>> in
>> >message
>> >>news:044901c4a757$b553ae10$a501280a@phx.gbl...
>> >>| Hi, David -
>> >>|
>> >>| little perplexed *g* here!
>> >>|
>> >>| Does that mean put them all on the desk top? Or
make a
>> >>| folder for them and drag them all into the same
>> folder?
>> >Un-
>> >>| zip it first - and then drag it; or drag it and
then
>> un-
>> >>| zip it? ...or none of the above?
>> >>|
>> >>| (Hope that doesn't sound snippy - not meant to
sound
>> >>| snippy)
>> >>|
>> >>| M.
>> >>|
>> >>|
>> >>| >-----Original Message-----
>> >>| >Get the ZIP file version and extract their
contents
>> in
>> >>| the same directory as the Sysclean
>> >>| >utility.
>> >>| >
>> >>| >Dave
>> >>| >
>> >>| >
>> >>| >
>> >>| >
>> >>| >
>> >>| >"Sue" <anonymous@discussions.microsoft.com> wrote
in
>> >>| message
>> >>| >news:05f401c4a68b$8e8e9370$a301280a@phx.gbl...
>> >>| >| Dave, I was able to download the sysclean but
was
>> >not
>> >>| >| able to get the downloaded sig files to work
with
>> the
>> >>| >| program. What am I missing?
>> >>| >| >-----Original Message-----
>> >>| >| >1) Download the following two items...
>> >>| >| >
>> >>| >| > Trend Sysclean Package
>> >>| >| >
>> http://www.trendmicro.com/download/dcs.asp
>> >>| >| >
>> >>| >| > Latest Trend signature files.
>> >>| >| >
>> >http://www.trendmicro.com/download/pattern.asp
>> >>| >| >
>> >>| >| >2) If you are using WinME or WinXP, disable
>> >System
>> >>| >| Restore
>> >>| >| >
>> >>| >|
>> >>|
>>
>http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.h
>> t
>> >>| >| m
>> >>| >| >3) Reboot your PC into Safe Mode
>> >>| >| >4) Using the Trend Sysclean utility,
perform
>> a
>> >Full
>> >>| >| Scan of your platform and
>> >>| >| > clean/delete any infectors found
>> >>| >| >5) Restart your PC and perform a "final"
Full
>> >Scan
>> >>| >| of your platform
>> >>| >| >6) If you are using WinME or WinXP,Re-
enable
>> >System
>> >>| >| Restore and re-apply any
>> >>| >| > System Restore preferences, (e.g.
HD
>> >space
>> >>| >| to use suggested 400 ~ 600MB),
>> >>| >| >7) Reboot your PC.
>> >>| >| >8) If you are using WinME or WinXP, create
a
>> new
>> >>| >| Restore point
>> >>| >| >9) Please report back your results
>> >>| >| >
>> >>| >| >Dave
>> >>| >| >
>> >>| >| >
>> >>| >| >
>> >>| >| >
>> >>| >| >
>> >>| >| >
>> >>| >| >"Sue" <anonymous@discussions.microsoft.com>
wrote
>> in
>> >>| >| message
>> >>| >| >news:10bd01c4a67b$e6b11650$a401280a@phx.gbl...
>> >>| >| >| My symantec is telling me I have a "backdoor
>> >trojan"
>> >>| in
>> >>| >| >| sys32 wsrv.dll It can not delete it. It's
been
>> >>| there
>> >>| >| >| for over a month now. When I try to delete
it
>> >myself
>> >>| >| it
>> >>| >| >| won't work because the system is always
running.
>> >>| Have
>> >>| >| >| been running all types of scans from freebie
>> sites
>> >>| that
>> >>| >| >| have been suggested to other people with
trojan
>> >>| >| >| infections, but don't want to pay for the
>> removal
>> >>| for a
>> >>| >| >| program upgrade that might not work. Any
>> >>| suggestions? I
>> >>| >| >| know how to go into regedit but haven't found
>> >>| anything
>> >>| >| >| yet.
>> >>| >| >
>> >>| >| >
>> >>| >| >.
>> >>| >| >
>> >>| >
>> >>| >
>> >>| >.
>> >>| >
>> >>
>> >>
>> >>.
>> >>
>> >.
>> >
>
>
>.
>
- Next message: bobp: "dialer kotu virus"
- Previous message: anonymous_at_discussions.microsoft.com: "Re: Raleka"
- In reply to: Steve: "Re: SayWhat?Re: backdoor trojan in windows XP"
- Next in thread: Steve: "Re: SayWhat?Re: backdoor trojan in windows XP"
- Reply: Steve: "Re: SayWhat?Re: backdoor trojan in windows XP"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
