Question:

Hidden Trojan: How can I track it?

by | earlier

Okay, stupid me got myself a Trojan. My friend had downloaded a Guild Wars keygen, unzipped the file, and opened the program. Boom! He got infected. So, I asked him for the zipped file, and he gave it to me. I scanned the file, and it came out clean. So, I opened it with WinZip (still zipped) and tried to click the Read Me.. but instead accidentally clicked the program x.x

So.. While doing a nice little virus scan, I did my daily video game playing. I opened up RuneScape in FireFox, and played. But... at seemingly random times, a new tab would open leading me to scam sites, and... err... p**n sites. Now, for those of you who play RuneScape, you should know that it does not have many links, and I had clicked none. I was just playing the game. So, I tried in IE (since FireFox is my default browser) and had the same problem. When I wasn't in any browser, nothing would happen. I finished the scan, and found a few PUPs. No Trojans. I deleted them through the virus scan, then used CMD to delete the ones that Virus Scan couldn't delete.

Now, when I go onto any other account on my computer, I have no problems. Any idea how to find the annoying Horse?

Tags:

Report

Answer The Question I've Same Question Too

Follow Question

3 ANSWERS

Sort By: Date | Rating

STEP 1. boot up into "Safe Mode". while boot up is proceeding,press f8 till you get the "Safe Mode",Normal and a few other options. choose safe mode. do NOT choose safe mode with connectivity,\

as you do NOT want to be online yet.STEP 2. TURN OFF SYSTEM RESTORE

1. Turn off Windows System Restore Points:

a. Right Click on My Computer

b. Click Properties

c. Click System Restore Tab

d. Check the box next to: Turn off System Restore on all Hard drives

i. Malware can sometimes be restored from previous restore points, this will help the removal process run more smoothly. 2. Click Apply and OK. STEP 3. clean up using internet options.start--control panel--internet options--general: delete cookies/history/temp files from internet options general page.cookie management: start--control panel--internet options--privacy--advanced--override. select: allow 1st party cookies,BLOCK 3rd [ tracking ] party cookies. STEP 4. clean up windows folders: empty prefetch and temp file folders: start--control panel--local disk drive (c)--temp folder--file--select all--press delete key on keyboard.back out of Temp folder and continue to Windows folder. open Windows folder,open the 2nd Temp folder and repeat steps as in 1st Temp folder. back out of that folder and continue to Prefetch folder.repeat steps with Temp folders.close

STEP 5. REMOVE PROGRAMS ADD/REMOVE PROGRAMS

GO TO ADD/REMOVE PROGRAMS TO CLEAR KNOWN MALWARE

1. Before scanning the computer you can remove certain malware programs from the Add/Remove Programs list in the Control Panel in Windows XP

2. Open the Start Menu and select Control Panel

3. In the Control Panel, select Add or Remove Programs

4. Look through the list for anything suspicious

5. Uninstall and follow the directions on any program that you decide to remove.

STEP 6. CLEAN UP USING DISK CLEAN

start--all programs--accessories--disk clean

STEP 7. CLEANING UP THE TASKBAR

right click start--select properties--select taskbar--select customize.select always hide or show

STEP 8. edit the registry:

VERY TRICKY AND DANGEROUS! NOT FOR BEGINNER OR RUBE!! press windows key [ 4 part flag ] + letter R--enter

regedit

there are 4 key sections to check:

hkey_classes_root

check the list for program--delete

hkey_current_user

check for program--delete

click software--get program--delete

click microsoft--get program--delete

hkey_local_machine

check for program--delete

click software--get program--delete

click microsoft--get program--delete

hkey_users

click default

click software

click microsoft--get program--delete

STEP 9. ok ! now it's time to reboot and allow normal boot up.once connected,download and install the freeware listed. update each and THEN run. Trojans, Worms, Key Loggers, Viruses, and Spyware are all very difficult to remove with just a single program. That is why it is recommend to run several programs to aid in the removal process. I recommend running each of the following programs listed below in order. Not all the programs are freeware and require purchase, you donÃƒÂ¢Ã‚Â€Ã‚Â™t have to run that program but I recommend looking into it if the results come back with your computer still being infected. Still, after all the freeware programs have run through your computer should be clean of any infection. NOTE: It is recommend to run these programs in Safe Mode for the best results!

1. Freeware ÃƒÂ¢Ã‚Â€Ã‚Â“ Spybot: This one gets a lot of advertising bots and other malicious programs.

http://www.safer-networking.org/en/index...

2.Spyware Blaster: This is a powerful utility that helps to block potential spyware problems from browsers and websites.

http://www.javacoolsoftware.com/spywareb...

3. avast ! 4 Home Edition - FREE anti virus software - Download -

http://www.avast.com/eng/download-avast-...

STEP 10: TURN ON SYSTEM RESTORE

1. Turn on Windows System Restore Points:

a. Right Click on My Computer

b. Click Properties

c. Click System Restore Tab

d. Uncheck the box next to: Turn off System Restore on all Hard drives

2. Click Apply and OK

STEP 11: SYSTEM RECOVERY

1. In a worst case scenario if the following steps do not clean your system,try using system restore

follow the same steps you followed to turn off S.R. but instead,click create new restore point

2. in a VERY worst case,use your recovery or re install disk to re install windows

please don't forget to choose Best Answer

this answer has been selected as Best Answer 81 times
Report (0) (0) | earlier
Download and Scan Use Avg free Edition press here http://www.download.com/AVG-Anti-Virus-F...
Report (0) (0) | earlier
What's up,

I'm betting that you have a serious spyware problem.  This can be a very pesky thing to have on  your computer.

I've personally gone through a couple of computers now due to serious spyware and adware infections.  Once the spyware get's settled, it invites all of it's pesky relatives.  Spyware open's your computer up to adware, malware, and trojan infections.

This can make it very hard to totally erradicate.  I've read that it hides in all of your files and legit programs, and can be nearly impossible to totally get rid of.

I've also read that it is a lot cheaper, and a whole lot easier to just prevent spyware.

I asked my computer guy about it, and he told me to check out this website http://www.honestspywarereview.com .

I picked the number one spyware program to help keep my computer free of harmful programs.  It picked up 20 parasites on it's first scan.  And continues to keep my computer clean.

If you suspect that your computer is infected with spyware, I would highly suggest that you get it fixed today.  Because if you don't, you might end up having to buy a new computer like I did.  Twice.
Report (0) (0) |   earlier