re: Trojan Horse Dialer
Friday, February 21, 2003 at 8:27 am
Windows Me Annoyances Discussion Forum
Posted by tato
(13 messages posted)
I have almost the same complaint - Trojan Horse Dialer - identified by AVG
[files: bodystudio[installer].exe and body_st.exe in a Shareaza/Downloads dir]
and it can't move them.
I've tried various things - on advice above. Trend house-scan identified 5 of what
were originally 7 files and deleted them - but not the above 2.
Symantec on-line check didnt find them. Panda check is still running. [There's only
so much life and time to run these long checks ].
I perhaps stupidly tried to move the 2 files to a floppy, at which the system crashed.
But there appear to be no obvious ill-effects at moment. No signs of this Trojan
except from the AVG scan and the above crash.
I also tried Moosoft's The Cleaner but it found nothing.
I didn't understand all Iain's advice about dealing with the system files - and don't
think I have a boot disk. For some reason I haven't been able to get my system (Athlon
XP 1800 - just a few months old) to boot from a CD. And it also wouldn't boot from
an AVG Rescue Disk floppy which I made a few days ago. (You're supposed to use them
for emergencies like these).
So what can I do now? perhaps you, Iain, could explain all those deletions, system
operations which looked v. frightening.
Presumably I couldn't delete the whole folder with the offending files?
Or do a system restore to a few days back? (I'm Win XP).
I need something really powerful and focussed!
Many thanks for any help.
On Monday, February 17, 2003 at 3:35 pm, Iain wrote:
>Free on-line Anti-Virus check: HouseCall Anti Virus & HREF="http://www.pandasoftware.com">Panda On-Line
>
>And another from Symantec: Norton-Symantec
>
>On-line security check from: Symantec Security Check
>
>Configure your connection to protect your bios, etc.
>
>SpyBot is a VERY revealing program! Click
on Language flag.
>Automatic Deletion of all TIF, TEMP & index.dat files. Delindex & HREF="http://www.danish-shareware.dk/soft/emptemp">EmpTemp
>
>USE YOUR Windows Start-up diskette (bootdisk) to get to the A:\prompt and type:
>
>A:\>DEL C:\_RESTORE
>
>to delete the _RESTORE file and make sure that this file is not listed in any A-V
>"exclusions".
>
>PerformanceImprovement
>
>AlwaysUnloadDll 9x/ME
>
>NTFS/FAT
>
>
Iain
>
>Uninstall PCHealth, System Restore, Windows Help, msinfo32.exe, etc:
>rundll.exe setupx.dll,InstallHinfSection Uninstall 132 C:\WINDOWS\INF\PCHealth.inf
- Written in response to:
- re: Trojan Horse Dialer (Mac: Monday, February 17, 2003 at 3:35 pm)
Responses to this message:
|
|
All messages in this thread [show all]
 |  |  | re: Trojan Horse Dialer (tato: Fri, Feb 21, 2003, 8:27 am) |
| |
| |
Return to the Windows Me Discussion Forum
|
|
