PLEASE HELP! my computer in infected with a worm "win32.acebot.04 trojan". i keep getting .exe files like mssg.exe, tssg.exe, & ffen.exe in my start up menu. i've scan the computer a couple of times already and everytime, no virus is detected. are all these trojan worms the same? can i use any trojan removal tool for this one? 'coz i couldn't find any that is specifically for acebot-trojan. i'm not good with computer systems so i'm scared to do anything with this one like the removal instructions i found from anti-virus sites.
last week my computer was infected with nimda worm and funlove, but i think i fixed those already. do you get these virus through the net? is it something to do with cookies?

thanks.

Go to wilders.org and try a 30 trial antitrojan program. I use Tauscan, but there are several others listed at that site. From reading your request for help, you really need to evaluate your security settings and personal security practices. Some simple tips: Do not open any attachments without scanning with your antivirus program (you have no friends on the internet), there are no fun games, nice pictures, tools that you want to even look at, let alone open, as an attachment or email, disable your preview pane. Go to Flank PC, Cexx, thepublicworks, PC Pitstop and run the scans and get all the information available to set your security settings and practices at the proper level. All the best and take care!

Heres some information about this trojan and how to remove it.

http://securityresponse.symantec.com/avcenter/venc/data/w32.hllw.acebo.html

Thanks for the help guys. I've already run tauscan but it didn't find any trojan. does this mean the virus is not there anymore?
i've looked at the symantec website as well sounds a bit complicated and i don't have norton.

=)

Cath, click start--run--type msconfig--ok. Open the startup tab. Do you see a checked entry that refers to this:

'Microsoft Diagnostic'

With a path that may or may not be this:

C:\Windows\System\Elrdvrp.exe

If you see an entry for 'Microsoft Diagnostic' uncheck it regardless of the path shown then click ok and restart. Let us know if that was there and also what operating system you have, 95, 98, ME etc. And list here everything that's checked under the startup tab in msconfig and the path shown for each. By path i mean C:\Windows\System etc.

"do you get these virus through the net? is it something to do with cookies?"

Cookies, no. You'll most likely get viruses through downloads and emails although they can come on cd's and floppies too. You can get them very easily by downloading things using programs like Kazaa. Hackers just love Kazaa and other programs like it. It makes it easy for them to send out viruses and trojans.

Sorry I forgot to mention, i am using windows ME. the virus is still there and i think it's getting worst. I've run anti-trojan tools and other anti-virus, but it doesn't detect it. please help again.

I don't have microsoft diagnostic under the startup tab nor that path.

thanks.

If your av doesn't detect anything how do you know it's still there? What are you seeing?

1. Run a virus scan here and let us know what it finds if anything:

http://housecall.antivirus.com/

2. Download Startlog.com from the link below into any folder then doubleclick on the file and run it. It'll create 2 text files on your desktop. Copy and paste the results of just Startlog (not the stubpaths file) to your reply here so we can see it.

http://home.earthlink.net/~rmbox/Reticulated/Only_IE.html

Hello .. thank you for replying to my problem. i get more AV alerts that my computer is infected with trojan, but when i scan the computer with the anti-trojan, it doesn't show. I've also run housecall twice, it doesn't detect any infection.

I've run the startlog and here's the result... i hope i got this right.

StartUp Log Index
1. HKLM Run
2. HKCU Run
3. HKLM RunOnce
4. HKCU RunOnce
5. HKLM RunServices
6. HKLM RunServicesOnce
7. WIN.INI file
8. SYSTEM.INI file
9. AUTOEXEC.BAT file
10. StartUp folder
11. All Users StartUp
12. Misc. StartUp Configurations

Forget your trojan program. What antivirus program is saying you're infected?? Where does it say you're infected? Is it alerting you when you're downloading emails or where?

Also, was that the whole Startlog? There has to be more to it. Run the file again and paste all of the results here.

And in case you don't know, to paste Startlog here, run Startlog then when it appears, at the top click edit--select all--edit--copy. Then come here and right click in your reply window and select paste or click edit then paste.