Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
Ok. My Av (Updated wednesday) has found a trojan virus that cannot be healed, nor can it be deleted, and it can't be moved to the quarentine vault!. So how am I supposed to get rid of it, if a fully updated Av can't do it?
sometimes virus programs have a tough time deleting files that are "in use" by windows. Try booting into windows safe mode (press f8 after your computer posts, but before windows starts up) and delete the file from safe mode. It's possible that windows is accessing the folder or file in regular mode and that starting in safe mode might free it up for deletion.
0 
I agree with Salihsabri above ^^. Often times the AV software can't fix/delete/quarantine a file if Windows is concurrently trying to use it. Starting in Safe Mode forces Windows to release its hold on most file usages. Just continually tap F8 as your computer is starting, and you'll be given a Startup menu. Select the "Safe Mode." option (NOT the "Safe mode with Networking" and NOT the "Safe Mode with Cmd Prompt Only.")
Once your system has started up in Safe Mode, run the AV software again (Don't try to update your AV in Safe Mode, it won't work. Just run the AV scan.) Then see if your AV software can fix/delete/quarantine the file.
0
Well, scanned the infected directory, and it came up all clear.
Restarted pc, and it's back!!
Also I'm garanteed a pop up from my a/v saying a virus has come through, even now i've been here 5 mins, and I've healed or deleted 4-5 trojans. There are no peer to peer progs on this pc, I am not downloading anything. The only connection on the net is this site... ( I know it isn't from this site, because any site from i/e does this).I'm fed up now of scan after scan. I'm spending more time scanning than surfing now.
I'll give any suggestions a go, and I am in debt with your help guys, but I'm considering a format job.It's been nearly a year without a total re-install, so I guess that ain't too bad.
0
I have them OtheHill, installed, checked n everything. I also have spyware nuker, cwshredder, and spysubtract. I have too many anti this and anti that now, my pc is getting sluggish, and I've upgraded to 1/2 gig ram now too!
It sucks that to surf the net, that I have to have this amount of protection. It used to be fun going on the net, but it's fast becoming a constant fight to be safe nowadays.
0
lol yeah. i did it as soon as the trouble started about a week n half ago. I daren't turn it on yet.
0
Just for a laugh guys (and gals), My 8 yr old son saw the window pop up stating the virus was here, and it took me 2 days to convince him that a virus couldn't jump out the computer and get him LMAO!!!!!
0
yodadude1,
"trojan", "virus", or some of each? What's the name these nasties? In your first/initial question you said, "...trojan virus that cannot be healed, nor can it be deleted, and it can't be moved to the quarentine vault" What/where is this "infected directory"?
"Also I'm garanteed a pop up from my a/v saying a virus has come through, even now i've been here 5 mins, and I've healed or deleted 4-5 trojans."
Again, what is it saying, thanks. Also, which "a/v" are you using? It "come through", explain that one. What type of fire wall are you using?
0
My a/v is AVG, and I'm using Tiny personal firewall. AVG says it's a "trojan dropper", they keep appearing in the temp folder of local docs and settings.
The one that won't go is a bitmap file in the windows directory called "zapotv.bmp" (which is also unseeable when i look).
the windows/system32 folder also keeps getting infected every 5 or ten mins.
AVG has a folder that quarentines the virus for me so I can fix it later if i want to.
Again, thanks for all this help.
0
My a/v is AVG, and I'm using Tiny personal firewall. AVG says it's a "trojan dropper", they keep appearing in the temp folder of local docs and settings.
The one that won't go is a bitmap file in the windows directory called "zapotv.bmp" (which is also unseeable when i look).
the windows/system32 folder also keeps getting infected every 5 or ten mins.
AVG has a folder that quarentines the virus for me so I can fix it later if i want to.
I've just deleted another....... C:DOCUME~1\Shelly\LOCALS~1\Temp\INTLRECO.exe.
Again, thanks for all this help.
0
the trend micro website has instructions on how to remove the virus, and is telling me all the regestry keys i must delete, but none of the keys are present in the regestry.
I have found that this particular virus brings pop ups to my screen, so I'm thinking of letting it get on with it.
It doesn't seem like it's going to do damage, and I'm tired of trying to lose it because it isn't making my surfing fun at all.
I don't think a re-install will stop it either, it'll just come back.Oooh if only I could get my hands on these spotty gits who write this rubbish.
0
yodadude1, Is the link below of any help or is it the one you tried?
ADW_ABET.ACC Removal Instructions
Here's another link to check out.
Tufenuf
0
yodadude1,
The one you tell about in the temp folder, is spyware/adware.
You say you have ad-aware & spybot s&d "installed". Just checking, are they updated. Also, any new/unsure things in Add/Remove Programs.
"the trend micro website has instructions on how to remove the virus"
And the name, that they/you/AVG give this virus is what ______? << Fill in the blank, please.
Have you tried, sorry if I missed it, an online scan for virus/trojan at any sites?
0
I appreciate that you are well peeved off with scanners but you could try throwing this freebie Trojan finder/fixer at it:
Derek.W
0
Tufenuf, yeah that's the 1 I tried. The reg keys they specify don't exist there, and the programs they say that install this virus, I did not install any of these programs "abetterinternet" is the name of the spyware.
S.T.A.R...INTLRECO.exe is the name of the virus itself, AVG says it's a Trojan dropper.
I'll give derek's link a go (got nothing else to lose).
Post after another scan...........(my poor H/D lol)
0
A2 can't connect to their server to update.
Keeps telling me to check my connection (which is clearly all correct).
I'm giving up as a lost cause guys. Many thanks for all your help, but it looks like this virus is staying until I reformat, and I have spent a whole year getting my windows exactly the way I like it, so I need a while to jot everything down before I do it.
1 - 0 To the lowlifes grrrrrrr.Thanks again people.
0
yodadude1, Before you go the reformat route you may want to try the Free on-line Panda Acive Scan. It's been said to be one of the best on-line scans and detects & removes many trojans. Here's the link.
Tufenuf
0
Will do tufenuf ta. I'll give it a last resort, then close this post as a virus wins. I've informed Trend micro of everything I tried, and all the programs I used, plus anything they might want to know.
I'll see if they get in touch.I can't express enough the gratitude for the help I've recieved here. It's the reason I come here first.
The most professional help isn't the helplines, or companies that charge for their services... It's the fanatics who live and breathe their hobbies who know best. And they are right here on computing.net!Yoda
0
Sorry to hear that A2FREE wouldn't run because it is a good Trojan scanner. It runs on mine just fine, but that's computers for you I guess.
Derek.W
0  |
 |
 |
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
