max power Posted April 15, 2010 Report Share Posted April 15, 2010 All jokes aside (I know there will be some) how do I get rid of it? I turned off system restore, but I'm not sure what to do next. I am running XP and Symantec virus protection. Quote Link to comment Share on other sites More sharing options...
Sapphy Posted April 15, 2010 Report Share Posted April 15, 2010 did you get the name of the virus? That will matter. Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 All I know is this:http://www.symantec.com/security_response/writeup.jsp?docid=2001-062614-1754-99&tabid=3Backdoor.Trojan Risk Level 1: Very Low Printer Friendly Page SUMMARYTECHNICAL DETAILSREMOVAL Discovered: February 11, 1999 Updated: May 6, 2002 3:37:23 PM Type: Trojan Infection Length: Varies Systems Affected: Windows 98, Windows 95, Windows XP, Windows Me, Windows Vista, Windows NT, Windows Server 2003, Windows 2000 Backdoor.Trojan is a detection name used by Symantec to identify malicious software programs that share the primary functionality of enabling a remote attacker to have access to or send commands to a compromised computer. As the name suggests, these threats are used to provide a covert channel through which a remote attacker can access and control a computer. The Trojans vary in sophistication, ranging from those that only allow for limited functions to be performed to those that allow almost any action to be carried out, thus allowing the remote attacker to almost completely take over control of a computer.A computer with a sophisticated back door program installed may also be referred to as a "zombie" or a "bot". A network of such bots may often be referred to as a "botnet". Botnets have been well publicized in the news over the years, with different instances being given specific names such as Kraken, Mariposa, or Kneber, along with claims of hundreds of thousands of nodes belonging to certain networks. Typical back door capabilities may allow a remote attacker to:Collect information (system and personal) from the computer and any storage device attached to itTerminate tasks and processesRun tasks and processesDownload additional filesUpload files and other contentReport on statusOpen remote command line shellsPerform denial of service attacks on other computersChange computer settingsShut down or restart the computerBackdoor Trojan horse programs have become increasingly popular amongst malware creators over the years because of the shift in motivation from fame and glory to money and profit. In today's black market economy, a computer with a back door can be put to work performing various criminal activities that earn money for their controllers. Schemes such as pay per install, sending spam emails, and harvesting personal information and identities are all ways to generate revenue. If a Symantec antivirus product displays a detection alert for this threat, it means the computer is already protected and the Symantec product will effectively remove this threat from the computer. ProtectionInitial Rapid Release version February 11, 1999Latest Rapid Release version April 15, 2010 revision 008Initial Daily Certified version February 11, 1999Latest Daily Certified version April 15, 2010 revision 003Initial Weekly Certified release date February 17, 1999 Click here for a more detailed description of Rapid Release and Daily Certified virus definitions. Threat Assessment WildWild Level: LowNumber of Infections: 0 - 49Number of Sites: 0 - 2Geographical Distribution: LowThreat Containment: EasyRemoval: Easy DamageDamage Level: MediumPayload: Opens a back door DistributionDistribution Level: Low Writeup By: Hon Lau Quote Link to comment Share on other sites More sharing options...
InyaAzz Posted April 15, 2010 Report Share Posted April 15, 2010 superantispyware.comIt sounds cheesy...but it works. Quote Link to comment Share on other sites More sharing options...
fusion Posted April 15, 2010 Report Share Posted April 15, 2010 Quit surfing for midget and small animal porn and it wouldn't be a problem to begin with. Quote Link to comment Share on other sites More sharing options...
mrmako777 Posted April 15, 2010 Report Share Posted April 15, 2010 why did you turn off system restore? That just deleted all your restore points which could have potentially removed the virus. Plus depending on whatg av youre using, it could be a false positive Quote Link to comment Share on other sites More sharing options...
mrmako777 Posted April 15, 2010 Report Share Posted April 15, 2010 why did you turn off system restore? That just deleted all your restore points which could have potentially removed the virus. Plus depending on what av youre using, it could be a false positive Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 why did you turn off system restore? That just deleted all your restore points which could have potentially removed the virus. Plus depending on whatg av youre using, it could be a false positivecuz this told me to:http://www.symantec.com/security_response/writeup.jsp?docid=2001-062614-1754-99&tabid=3 Quote Link to comment Share on other sites More sharing options...
Steve Butters Posted April 15, 2010 Report Share Posted April 15, 2010 try thishttp://www.microsoft.com/downloads/details.aspx?FamilyId=AD724AE0-E72D-4F54-9AB3-75B8EB148356&displaylang=en Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 Quit surfing for midget and small animal porn and it wouldn't be a problem to begin with. I was actually looking for a picture of the Loch Ness Monster needing tree fiddy on Google. Quote Link to comment Share on other sites More sharing options...
yotaman88210 Posted April 15, 2010 Report Share Posted April 15, 2010 spy bot search and destroy. do it Quote Link to comment Share on other sites More sharing options...
InyaAzz Posted April 15, 2010 Report Share Posted April 15, 2010 I would trust MS to remove something on my PC like I trust them to prevent it getting on there to begin with.Have it your way...but the link I provided you will clean your PC. Quote Link to comment Share on other sites More sharing options...
Sapphy Posted April 15, 2010 Report Share Posted April 15, 2010 http://www.malwarebytes.org/ is a good free product. ESET is a good pay product.Honestly I gave up cleaning systems on the infected system years ago. The best bet for a good clean is take the HD out, use a USB adapter and put it into another system to scan with a good anti-virus and/or anti malware Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 I would trust MS to remove something on my PC like I trust them to prevent it getting on there to begin with.Have it your way...but the link I provided you will clean your PC.Trying superantispy now. Quote Link to comment Share on other sites More sharing options...
InyaAzz Posted April 15, 2010 Report Share Posted April 15, 2010 +1 on malwarebytesSpybot used to be on my short list, but I've had it miss some things that superantispyware and malwarebytes caught. Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 +1 on malwarebytesSpybot used to be on my short list, but I've had it miss some things that superantispyware and malwarebytes caught.How do I know when its done? Some fuckin solicitor called while it was running and by the time I got done speaking in tongues to him it was gone.The trojan is still showing up on a quick scan. Quote Link to comment Share on other sites More sharing options...
yotaman88210 Posted April 15, 2010 Report Share Posted April 15, 2010 how about superduperveryantiwearingthespy? anyone tried that? Quote Link to comment Share on other sites More sharing options...
Sapphy Posted April 15, 2010 Report Share Posted April 15, 2010 How do I know when its done? Some fuckin solicitor called while it was running and by the time I got done speaking in tongues to him it was gone.The trojan is still showing up on a quick scan.Want to trade? IF you are any good with the spinning of the wrenches, I will clean you drive if you would be willing to give my bike a look over and make sure it is all tip top. I have done it myself but I am far better at the IT than than the spinning of wrenches and would feel better if a more experienced person would look over it. Quote Link to comment Share on other sites More sharing options...
InyaAzz Posted April 15, 2010 Report Share Posted April 15, 2010 How do I know when its done? Some fuckin solicitor called while it was running and by the time I got done speaking in tongues to him it was gone.The trojan is still showing up on a quick scan.Gone? It doesn't exit by itself. You ran a full scan?I would reboot in safe mode before starting any scan, FYI. Quote Link to comment Share on other sites More sharing options...
Steve Butters Posted April 15, 2010 Report Share Posted April 15, 2010 I would trust MS to remove something on my PC like I trust them to prevent it getting on there to begin with.Have it your way...but the link I provided you will clean your PC.i use MS security essentials as my ONLY form on antivirus, and ive never had one problem...and ive been to some truly questionable sites!....firefox with noscript may have helped me out also, but still, i stand by the free microsoft security products...and ive used that malware removal tool before to get rid of that one virus that changes your homepage, after my kaspersky failed, and it worked like a charmto each their own Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 I quarantined it. Its a javantnt.dll file and it looks like its location is c:\windows\system32\javantnt.dll Quote Link to comment Share on other sites More sharing options...
Steve Butters Posted April 15, 2010 Report Share Posted April 15, 2010 **Edit Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 Want to trade? IF you are any good with the spinning of the wrenches, I will clean you drive if you would be willing to give my bike a look over and make sure it is all tip top. I have done it myself but I am far better at the IT than than the spinning of wrenches and would feel better if a more experienced person would look over it.I could do that. Quote Link to comment Share on other sites More sharing options...
max power Posted April 15, 2010 Author Report Share Posted April 15, 2010 So, should I turn system restore back on? Quote Link to comment Share on other sites More sharing options...
r1crusher Posted April 15, 2010 Report Share Posted April 15, 2010 +1000 for malwarebytes and superantispywarethingymajig. Download both and run them.THEN DUMP SYMANJUNK AND GET A REAL AV!! Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.