Re: Can't get rid of Trojan horse Backdoor

From: BH2 (NOSPAMfurness50_at_hotmail.com)
Date: 11/14/04 

Date: Sun, 14 Nov 2004 19:05:55 +0800

Jim,
Will give that a try, so far all I ever get is that the file cannot be
accessed, looks like I may have to format the drive to get rid of it. What
will Happen it I just delete the infected file ?,
(C\WINDOWS\system32\d3dcfo.dll) that is if it lets me !!
regards
Bob H

"Jim Byrd" <jrbyrd@spamlessadelphia.net> wrote in message
news:%23iI2X1eyEHA.2804@TK2MSFTNGP15.phx.gbl...
> Hi BH2 - To suppliment what David said, you can also try a "Clean Boot"
> approach:
>
> Clean Boot:
>
> 1. Start|Run enter msconfig.
> 2. In the Startup tab, click the "Disable All" button.
> 3. In the Services tab, check the "Hide All Microsoft Services" checkbox,
> and then click the "Disable All" button.
> 4. Click OK and then reboot.
>
>
> --
> Please respond in the same thread.
> Regards, Jim Byrd, MS-MVP
>
>
>
> In news:OlJCwsdyEHA.3376@TK2MSFTNGP12.phx.gbl,
> BH2 <NOSPAMfurness50@hotmail.com> typed:
>> For some reason it won't let me start the computer in the safe mode,
>> I go to and accept the safe mode, It also load some drivers and shows
>> them in text what it is loading, then just stops with a blank screen.
>> Regards
>> Bob
>>
>> "BH2" <NOSPAMfurness50@hotmail.com> wrote in message
>> news:OMz3ocWyEHA.260@TK2MSFTNGP10.phx.gbl...
>>> Hi,
>>> I need some help please. I run AVG virus checker, it has picked up a
>>> Trojan
>>> horse in C\WINDOWS\system32\d3dcfo.dll Trojan
>>> horse.Backdoor.agent.BA. AVG
>>> has detected the virus, but it will not delete or rename it or
>>> isolate it.
>>> I downloaded the AVG cleaner but can't get into the safe mode to run
>>> it. Everytime I open any program the AVG splash screen comes up and
>>> tells me about the virus and where it is.
>>> Would appreciate any help in getting rid of it, it is driving me
>>> nuts. Also because I am infected does this mean that AVG is not very
>>> good. Thanks for any help
>>> Regards
>>> Bob H
>