I have the above name virus in C:\Program Files\Clear Search\LOADER.EXE file - Avg can not remove it to the vault and I can not remove the file manually as access is denied . I am unable to get onto this site it tells me it is unavailable which is apparently a removal tool http://www.clearsearchinc.com/Internal/uninstall.html

what can I do to remove this virus

Tracey, Go to the link below and download, install, read the instructions, then update and run Ad-aware. Make sure that you update it prior to running it.

Ad-aware

If Ad-aware doesn't get rid of it go to the link below and download the CWShredder Tool. Close all open windows and run it.

CWShredder 1.58

Tufenuf

hi, i seem to have the exact same virus you had and im having the same problem getting rid of it!! how did you get rid of it in the end?? its trojan horse backdoor.ruledor.c

dan

Tracey: I also got this virus on June 4th and my AVG (free edition) picked it up right away. I had updated it as soon as I turned on my computer that day, as is my practice. It asked me to run AVG, which I did, and it removed it to the vault. It wouldn't heal so I just deleted it and voila! gone. If you are able to, might I suggest that you update your AVG now and run it again. Then check the vault and if it is there, which it should be, delete it?

dan: Refer to the info in the message above yours. AdAware 6.0 is a free spyware product from www.lavasoft.com. AVG is a free antivirus product from www.grisoft.com.

Good luck to both of you!

gailmerry

I was looking for a solution to the Backdoor.Ruledor.c trojan and I came across these messages. I too have the same trojan horse as well as AVG ver. dated 6/4/04.

I was able to move the virus to the vault and delete it, however it is still on my computer even though I have done these steps 3 times.

Gailmerry, you may want to run AVG again to see if it appears again.

If anyone finds out how to solve this problem, please let me know. Thanks

i still havent shifted backdoor.ruledor yet!! ive had it about a week now and ive almost tried everything!the one thing i tried that looked promising was turning off my system restore and running avg, that found the virus and healed it but after a couple of nights it was back. ive run an updated avg, ive run ad-aware 6, ive tried hijack this, ive tried spybot s&d, ive tried cw shredder, ive tried a sample version of registry mechanic, ive downloaded a removal tool from ave homepage and although those programs found a lot of junk..... 20 mins later it pops again up in a box titled 'avg resident shield' i hope one of you has had better luck than me.. please keep me posted

dan

ps:
kellcer: the reason why your avg is still picking up the virus after uve healed it is because its saved in a restore file which avg cant get to unless you turn off the restore. right click my computer, go to properties, click the system restore tab, tick the box that says turn off restore on all drives. click ok. restart your machine and run avg again. that may work for you?? also dont forget to go back and turn your restore back on when your finished. let me know how it goes

dan

i had all the same problems with the virus. so i traced it and found it was in the temp folders. so i just used the windows disk clean up (make sure delete temp files is checked) and ran AVG again to check and it was gone!

tony: thanks for your suggestion, i gave it a go but unfortunately it didnt do the trick........any other suggestions?....

Hi

my computer is infected with the trojan horse backdoor agent BA virus, I tried AVG and adaware, but they cannot get rid of it.
Any suggestions?

i came accross this msgboard too because its the first place ive seen that lists the virus i have: "trojan horse backdoor agent BA"

i have AVG but it cant move it to the vault and it cant fix it. when i go to maunally delete it its not there.. I have adaware as well, btw, and another anti-ad program thingy. i tried a few things mentioned on this board but nothing works. my system (laptop on windows xp) crashes most of the times i start up. i get the blue screen "of death" and then it crashes (not always tho) even tho i appear to only have 1 virus on the comp.

anyone know, keep me updated ill check this msg board periodically.

hey,i got rid of backdoor.ruledor at last. the only way i found to get rid of it is to turn of the system restore and then hit it with all the anti virus/spyware programs as i mentioned in response number 6 above.it worked for me and i tried absoloutely everything!! give it a shot

dan

how do you turn off system restore exactly?

ben

to turn off your system restore, go to desktop, right click my computer, go to properties, click the system restore tab, tick the box that says turn off restore on all drives. click ok. restart your machine and run avg again. after you have finished remember to go back and untick the box that said turn off restore. please let me know if this solves your problem.

dan

I've had this backdoor.ruldor.C virus for about 2 weeks and I can't get rid of it. It is located in my system volume information file which cannot be accessed. I have tried every suggestion on this page, but nothing works. When I do run my AVG, it does not even scan the system volume folder, it jumps right over it. Any more suggestions?

ecanupp, I'm assuming that you're using Windows XP and what you must do to get rid of that virus in your system volume information folder is to turn off System Restore and restart your computer. This will purge(delete) all of the System Restore files including any virus files. You would then run a virus scan which should come up clean. If it comes up clean turn System Restore on again. The link below has instructions.

How to turn off or turn on the Windows XP System Restore feature

Tufenuf

I tried turning off the system restore and then running avg last night. When it didn't show any virus, I assumed that it didn't work. But the virus hasn't showed up again today, so maybe that fixed it
Thanks for the advice.

just about to reboot and verify above. Has anyone experienced volume setting trouble with THBRC?

does anybody know how to remove:
isass
svchost
csrss
alg
backweb

\system volume information still on
AVG found 2 files in folder but no virus
cannot del folder

I am a level two tech for a very large computer manufacturer and see these injection trojans all the time and they are very difficult to get rid of. Tufnut is right. In Windows XP You have to turn off system restore in XP and hit these monsters with evrey program you can. Run programs like CWShredder, Ad-ware, AVG to make sure all virus file are gone. I had this particular trojan this week on my home box and first tried to hack it out myself, even from DOS, and it came back. These trojans are getting more and more well written. The turning off system restore and bombarding this ruldor.c with every free program finally got it out. I am going to dig into this puppy on my junker box to see if I can rip the code later.

hey everyone, I tried the system restore thing and reboot. Scanned with AVG, spybot and ad-aware once again, so far so good, will check again in a few days, Now I am working on another issue. Can anyone help , here it goes; RUNDLL/C:\program files\wild tangent\apps\cda\engine0400.dll, when switching users or turning on pc for the first time of the day.

I have tried everything that has been recommended above but none of it has worked to rid my workplace computer from the trojan horse virus. The patron's here haven't been able to access their personal email on the internet for the past week(for ex. hotmail, yahoo, etc), would this be connected to the virus? Could someone help me get rid of this?

I have the same thing, but havent tried turning off sys. restore before and running avg and adaware after yet...will try it and see what happens..thanks for all the info..so far, the most indepth information ive seen on this..thanks all.

Matt

to all prevous people who have backdoor.ruldor.c I am pretty sure I've gotten rid of that "pesky varment".

o.k. to the chase this is my splur.
I got this virus showing up with A.V.G.
unable to do anything.It's my daughters
computer with win xp home. I tryed all that the prevous people suggested, all failed to work.

I tryed to delete a folder called clear??
something that contained the virus in loader.exe but was denied access. the computer even shut down a couple of times..black.

I then thaught may be i could trick the folders access by right clicking on the folder..closing the AVG prompt...choosing properties from the drop down menu...then i highlited the folder name and typed dddddddd... then O.K... the properties box closed...I right clicked the folder named dddddddd...and hit delete...it disapeared...
I closed the open windows and went to desktop... right clicked the recycle can and hit empty.
A scan a day for 10 days plus visual searches for loader.exe or the clear??whatever foalder and virus free.
just goes to show that sometimes we over think things and remember that computers don't understand "newfie logic".
tony.

Well, its been a day now, and now sign of this pain yet..knock on wood..like other messages, I turned off sys. restore, rebooted, slammed it with an updated AVG, Adaware, Spybot13,Noads,Trendmicro scan,RAVantivirus scan, and a mcafee full system scan as well...those scans did pick up residual tracking files, and a few folders, but other than that, no sign of this thing...

Thanks for all the assistance..I'll be sure to check back here in the future..excellent information!!!