Re: sinteri virus

---

• From: "RJK" <notatospam@xxxxxxxxxxx>
• Date: Sun, 14 May 2006 21:54:07 +0100

---

Well, just got back !

While burning multi-av to cd-r, I did a Google and found
http://www.ar15.com/forums/topic.html?b=1&f=124&t=458854
where someone said use:-
http://securityresponse.symantec.com/avcenter/venc/data/trojan.abwiz.removal.tool.html
to remove sinteri, so I downloaded and took that with me but, it didn't find
anything.

I copied the multi-av directory to his c:\drive - booted up in Safe mode -
and did the Sophos sweep, (that took over 80 minutes on his now aged
xp1800), and it found two items:-
Troj/Dwnldr-AEQ and
Troj/Dwnldr-CBY
located in restore points ? i.e. there was big line of nos. and dashes
which looked registry keys in curly brackets, and _restore was in the
pathname somewhere
and the 2 files ? containing the 2 items found, were named A000????.exe
or something very like that.

Anyway, I left him running the no.2 option in multi-av - 'Trend' :-)

Of interest (maybe) was that before I got there he had run up to date
Adaware and Spybot sweeps and they didn't find anything !

regards, Richard


"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:u9wSe93dGHA.1792@xxxxxxxxxxxxxxxxxxxxxxx

From: "RJK" <notatospam@xxxxxxxxxxx>

| I got a 'phone call from Adrian tonight - he ran a full CA etrust a/v
scan
| in Safe Mode (XP Home ed.) and he's still getting etusts "real-time" a/v
| scanner alert telling him he's got the 'sinteri' virus / ...email worm
I
| think it is. I'm just about to burn Multi-av to cd-r and drive over
there
| to set it going.
|
| regards, Richard

OK Richard -- Good Luck !

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm

.

---

• Follow-Ups:
  • Re: sinteri virus
    • From: David H. Lipman
  • Re: sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: RJK

• References:
  • sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: David H. Lipman
  • Re: sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: David H. Lipman
  • Re: sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: David H. Lipman
  • Re: sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: David H. Lipman
  • Re: sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: RJK
  • Re: sinteri virus
    • From: David H. Lipman

• Prev by Date: Re: Toolbar888
• Next by Date: Re: sinteri virus
• Previous by thread: Re: sinteri virus
• Next by thread: Re: sinteri virus
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: half burnt cd!! ... Restore to a time it worked. ... > im on xp and always use new cd-r.. ... im going nuts lol, wasting away all my ... >> Regards, ... (microsoft.public.windowsxp.music) Re: Burning a CD ... I'm going to reinstall windows and I now understand that the CD-R will restore my files to the Quicken folder, though I can't read them directly. ... "Jym" wrote: ... (microsoft.public.windowsxp.help_and_support) RE: Backup Windows Media Player Database ... Open WMP>Tools>Manage Licenses>Backup licenses now to a CD-R or ... wherever you want to store them but not on your harddrive, ... restore them if needed. ... (microsoft.public.windowsxp.music)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Newsgroups  > microsoft.public.security.virus  > 2006-05