wilz Posted March 7, 2007 Posted March 7, 2007 I had a problem logging on the my messenger for days and i come to a conclusion that messenger service wasn't down. I tried using other passport to log in, and easily it could be logged in. I immediately did a scan and unfortunately rit says that my OS contain virus. I had to idea of what the name of this virus/trojan is. But one thing is that, everytime i perform a scan, i will be alerted of that virus/trojan which i wasn't sure it was the cause of my problem. Everytime i remove it, it comes back againat the next scan. Malware name " Win32:Small-EDU [Trj] " Trojan Horse " Trojan Horse " I would really appreciate if i can find out ways to remove this trojan/virus.. Any online scan can be done and remove? Most important is to able me to remove it without having the trouble to re format my computer. Thanks Your every little help would be very much appreciated. Quote
wilz Posted March 16, 2007 Author Posted March 16, 2007 Thanks for the reply Sir, I had avast on access scanner all the while. That's how i remove the trojan everytime i it alerted me. Same goes to Ad-Aware. I had it on my PC. I would like to highlight another issue regarding the root of this problem. It seems that everytime i remove it, the next time i reboot my computer, it appears. This time i noted the name of the trojan, it is name as below: "Win32:Small-DZV" I wonder if this is related with the previous trojan stated in my previous post? Any advice? I had got this remove this time. But not sure if it is permanently. Last problem i had is the popping up of anti virus software asking me to download. I do not think that those so called "Anti-virus" software is genuine. Everytime when i'm on different sites, these different popup window will appear asking me to run the .exe files. From memory, these "anti virus" software is named ultimate cleaner and ultimate defender. I cannot remember if i had download them but if i had, i would have already removed. I suspect these auto pop up window is linked with the virus i have had all these while. I would very much love to hear advices from the patient and kind helpers here. Hopefully there's way to solve my problem. Quote
maynardvdm Posted March 16, 2007 Posted March 16, 2007 Hi. I know trend micro has a good online scanner. You can give it a try. The link is http://www.trendmicro.com. This is a safe website as i use them on a regular basis besides my own anti-virus software just too dubble check. Hope you get it solved. Quote We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs. RaidMax Smilodon Gaming Case | Gigabyte Z77X-UD5H M/B | Intel Core i5 3570K @ 3.4GHz | 8GB Corsair RAM | Nvidia GTX550 Ti 1GB GDDR5 | Corsair 800w PSU Register for FREE >>here<< | If we have helped you, please consider a donation >>here<< SAS | MBAM | WinPatrol | Avira | ERUNT | Nvidia Drivers http://i285.photobucket.com/albums/ll57/mjsmileys/userbarnew4sec.gif
wilz Posted March 17, 2007 Author Posted March 17, 2007 Thanks maynardvdm, I did try on the trend micro scanning. Unfortunately to no effect. It manage to scan through my PC without having able to detect the trojan root problem. I did a small research and realise that my "Ultimate Defender 2007" and "Ultimate Cleaner 2007" are both TROJANS. I'm devastated after knowing it. Everytime i start my PC, the auto installation for either of this 2 Trojans will appear. What shoud i do? I dare not try those site that claims to remove Ultimate Defender/Cleaner 2007 for i fear it will make matter worse. For me, i know that i should not run these programs. But what about my other family members or someone else especially kids. I am afraid they would run the programs and install it. Please advice helpers. (Note: Any guest or members who happen to view this topic, just something to take note. Don't be fool when being ask to download or install some so call virus, trojans removal or cleaner. They would appear a list of critical, dangerous, mild files that should be remove from your PC. And they would recommend you to install it to remove them. I being a victim outsmart by the name of it and installed it. PLS DO NOT INSTALL ANYTHING WHICH HAVE NO LICENSE OR YOU HAD NO INTENTION.) Quote
wilz Posted March 22, 2007 Author Posted March 22, 2007 After a scan search is done using some recommended sites (doesn't include removal), i found out where the root cause of my problem came from.. i manage to found out these, but the problem is .. how do i remove them? It's not some .exe or file <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCEEX> <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE> <HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN> <HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE> <HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN> <HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE> <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINDOWS\APPINIT_DLLS> <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN> Quote
maynardvdm Posted March 23, 2007 Posted March 23, 2007 Hi If you know the files and their location, you can try to delete them in safe mode. Reboot the pc into safe mode and try to delete it yourself. Hope this helps. Quote We are all members helping other members. Please return here where you may be able to help someone else. After all, no one knows everything and you may have the answer that someone needs. RaidMax Smilodon Gaming Case | Gigabyte Z77X-UD5H M/B | Intel Core i5 3570K @ 3.4GHz | 8GB Corsair RAM | Nvidia GTX550 Ti 1GB GDDR5 | Corsair 800w PSU Register for FREE >>here<< | If we have helped you, please consider a donation >>here<< SAS | MBAM | WinPatrol | Avira | ERUNT | Nvidia Drivers http://i285.photobucket.com/albums/ll57/mjsmileys/userbarnew4sec.gif
wilz Posted March 24, 2007 Author Posted March 24, 2007 Thanks for the reply maynardvdm, After a scan search is done using some recommended sites (doesn't include removal), i found out where the root cause of my problem came from.. i manage to found out these, but the problem is .. how do i remove them? It's not some .exe or file <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCEEX> <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE> <HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN> <HKEY_CURRENT_USER\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE> <HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUN> <HKEY_USERS\.DEFAULT\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCE> <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWSNT\CURRENTVERSION\WINDOWS\APPINIT_DLLS> <HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\POLICIES\EXPLORER\RUN> Is all this consider location? I did a scan and found out that the trojan's location come under these above mentioned. But what location is that ? It is not something like "C:ABC\123\abcxyz.exe" where i can delete by going to C Drive and folders ABC etc. So how do i delete them away if they are like HKEY_LOCAL_MACHINE\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\RUNONCEEX ? They had name like "trojandownloader.busky" sounds scary to me. Can my PC be save? Quote
wilz Posted March 28, 2007 Author Posted March 28, 2007 Forget of whatever i had posted. It's over... It's over~~~ :( Dear helpers, now when i scan my PC, i can no longer find the virus. What is worse is, the virus had already intrigate my system. Everytime when i open a I.E browser, the error message pops out. The one which states "I.E has encountered a problem and needed to close. We are sorry for the inconvenience." Send error report or don't send button to choose from. i guess how to clear the trojan is no longer important, i just want to know that if i reformat or reinstall windows, will all my problems and trojan be gone? What i want to know that will i be able to keep whatever i have in my other drives (partitions) and just reinstall the main drive the window drive. Can someone please guide me and show me the steps to reinstall / reformat my drive. I'm using WinXP. I wish to print out the list of steps which i can follow because i'm just a pc dummy. Most important is that i must keep my Drive:C and Drive:E (Personal Drive) and reinstall or reformat the window drive (Drive F: ) (I'm not sure of the actual word to use, either to reinstall or reformat). when i see others do it, sometimes it can be as easy as just inserting the winXP cd into in and reinstall. While sometimes, i see other do it in MS DOS during startup, they had to startup from cd-rom drive, and do alot of commands. Any way to save my Drive C: and Drive E: but still remove everything away from my windows drive F: ? I don't want my info to be lost. By doing so, i guess my i.e will get back to normal working condition and hopefully my trojan which had be bothering me all these while will be gone. Thank you Please assist Rgds Wilz Quote
scarlett pimply nell Posted April 10, 2007 Posted April 10, 2007 I would strongly recomend anyone looking for an anti virus(or anything p.c. related) to visit the computer magazine "Computeractive",s website. I use AVG,s free edition, which runs a automatic scan when first online every day, and its consantly updated. There are a few others on their site,as well as loads of other stuff. Pay them a visit, its FREE. Quote
varispeed Posted April 22, 2007 Posted April 22, 2007 Try running the System Restore utility to restore your PC to an earlier time. Press Start > All Programs > Accessories > System Tools > System Restore. Then choose a date from the calendar to restore to and let System Restore do its thing. If that works it will avoid having to reinstall the operating system. You won't lose any documents this way either. Good luck! Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.