Re: Opinions sought re virus ?
- From: "TaurArian [MS-MVP]" <taurarianREMOVECAPS@xxxxxxxxx>
- Date: Sat, 30 Dec 2006 13:07:04 +1100
"David H. Lipman" <DLipman~nospam~@Verizon.Net> wrote in message
news:ulvTNJqJHHA.4928@xxxxxxxxxxxxxxxxxxxxxxx
| From: "TaurArian [MS-MVP]" <taurarianREMOVECAPS@xxxxxxxxx>
|
|| Dave
||
|| I had a quick look at the start up log - and nothing in there. Will examine the
|| add/remove section next time, and then I'll look for spyware/malware.
|| Unfortunately due to the time of year, time is severely limited.
||
|| Just thought I would give an update.
||
|| The computer is usable - so it's not urgent although the owners have not reported
any
|| more flashes across the screen since I cleared the TIF etc.
||
|| It's a possibility it could be a hardware problem locking up the computer. Once I
|| eliminate the obvious, it can go back to the dealer in the New Year as it's under
|| warranty - it's less than 3 months old.
||
|| When the computer was locking up, they were manually turning off - ran chkdsk
which
|| seemed to improve things a little - there were quite a few errors.
||
|| Have a Merry Christmas and a Happy New Year.
||
|| Will report back when I've had a chance to further investigate.
||
|| Kaylene
||
|
| OK Kaylene. Happy Holidays to you and I'll see 'ya on the rebound.
|
| --
| Dave
| http://www.claymania.com/removal-trojan-adware.html
| http://www.ik-cs.com/got-a-virus.htm
|
Hi Dave, update on the infected computer. I checked with Spybot and undercovered
registry entries marked under the name of "CyberDefender".
A quick google indicated there is a legitimate program named Cyber Defender. Could
not locate anything specific in add/remove.
Trend has picked up nothing about this program in its scans.
Whatever it is it's affecting internet usage (dial up). Sometimes OE fails to open,
sometimes IE cannot find provider. Shortly after this, the computer locks up.
If I remove the registry keys, OE will open but "Trend Antispam" then has a runtime
error. If I put the registry keys back, Trend is okay.
OE will fail to open again. Then perhaps after a few tries, OE eventually opens.
The disconnect when idle, only appears occasionally even though it's set to appear
when no longer needed.
Neither myself or the owner downloaded "CyberDefender" from the manufacturers site.
Will investigate next week when the dealer is opened if they ever installed it.
Interesting that it's being detected as "spyware".
I don't understand it.
Kaylene
--
==================================
TaurArian [MS-MVP] 2005-2007 - Australia
==================================
http://www.dts-l.org/goodpost.htm
Need more help? http://support.microsoft.com/?scid=ph;en-us;6527
Get Safe online: http://www.getsafeonline.org/
(Links to web pages and MSKB Articles are posted for the purposes of keeping the
information current)
.
- Follow-Ups:
- Re: Opinions sought re virus ?
- From: David H. Lipman
- Re: Opinions sought re virus ?
- References:
- Opinions sought re virus ?
- From: TaurArian [MS-MVP]
- Re: Opinions sought re virus ?
- From: David H. Lipman
- Re: Opinions sought re virus ?
- From: TaurArian [MS-MVP]
- Re: Opinions sought re virus ?
- From: David H. Lipman
- Re: Opinions sought re virus ?
- From: TaurArian [MS-MVP]
- Re: Opinions sought re virus ?
- From: David H. Lipman
- Opinions sought re virus ?
- Prev by Date: Re: Multi-av ...request...
- Next by Date: Re: Opinions sought re virus ?
- Previous by thread: Re: Opinions sought re virus ?
- Next by thread: Re: Opinions sought re virus ?
- Index(es):
Relevant Pages
|
