| View previous topic :: View next topic |
| Author |
Message |
Juggertha
Joined: 27 May 2003
Location: Anyang, Korea
|
 Posted: Wed Aug 04, 2004 5:28 pm Post subject: SEXXX!!!??? |
 |
|
No this is not a plead for more of it. The spelling of "SEXXX" was specific as in I have a virus and can't seem to shake it.
I get at least two re-occuring desktop item and my browser often sends me to a "Casino" site.
I think this is what I have...
http://securityresponse.symantec.com/avcenter/venc/data/[email protected]
Attachment: Winpif.exe
Also Known As: I-Worm.Kondrik [KAV]
Type: Worm
Infection Length: 7,888 bytes, 9,632 bytes
Systems Affected: Windows 95, Windows 98, Windows XP, Windows Me
Systems Not Affected: Macintosh, OS/2, UNIX, Linux
Anyone got any ideas on gettin' it outta my system? |
|
| Back to top |
|
 |
Giant
Joined: 14 May 2003
Location: South Korea
|
| Posted: Wed Aug 04, 2004 5:37 pm Post subject: |
|
|
| So you are saying that the removal instructions on that same page did not work for you?? |
|
| Back to top |
|
|
Juggertha
Joined: 27 May 2003
Location: Anyang, Korea
|
| Posted: Wed Aug 04, 2004 5:42 pm Post subject: |
|
|
yeah, i've got XP and use Symantec and have done thier "live updates" and it still seems unable to remove it from my system.
Anyone got it and gotten rid of it? |
|
| Back to top |
|
|
the_beaver
Joined: 15 Jan 2003
|
| Posted: Wed Aug 04, 2004 5:46 pm Post subject: |
|
|
I'll say the same thing that I usually say.
It's probably in the registry. Start up regedit and search for the main word of the website address and then delete it. |
|
| Back to top |
|
|
the saint
Joined: 09 Dec 2003
Location: not there yet...
|
| Posted: Thu Aug 05, 2004 3:34 am Post subject: |
|
|
| did you run the scans in safe mode? |
|
| Back to top |
|
|
Juggertha
Joined: 27 May 2003
Location: Anyang, Korea
|
| Posted: Thu Aug 05, 2004 2:12 pm Post subject: |
|
|
Hey Beaver, how exactly do I do that man?
And nope.. haven't tried it in safe mode yet.. not the best on comps actually. |
|
| Back to top |
|
|
the_beaver
Joined: 15 Jan 2003
|
| Posted: Thu Aug 05, 2004 5:31 pm Post subject: |
|
|
| Juggertha wrote: |
Hey Beaver, how exactly do I do that man?
And nope.. haven't tried it in safe mode yet.. not the best on comps actually. |
click start
select run
type regedit and hit enter
under the edit menu select find
type in the main part of the website address surrounded by astericks (for example: *asino*) and hit enter
If you're lucky you'll see the entire url of the offending site -- delete it |
|
| Back to top |
|
|
Giant
Joined: 14 May 2003
Location: South Korea
|
| Posted: Thu Aug 05, 2004 7:23 pm Post subject: |
|
|
| Just before it starts loading, press "F8" and you will see a menu, highlight "Safe Mode" and press enter. |
|
| Back to top |
|
|
igotthisguitar
Joined: 08 Apr 2003
Location: South Korea (Permanent Vacation)
|
| Posted: Thu Aug 05, 2004 9:54 pm Post subject: |
|
|
| Spyware Continues To Proliferate |
|
| Back to top |
|
|
the saint
Joined: 09 Dec 2003
Location: not there yet...
|
| Posted: Fri Aug 06, 2004 10:05 am Post subject: |
|
|
| Juggertha wrote: |
And nope.. haven't tried it in safe mode yet.. not the best on comps actually. |
Safe Mode is a lite version of Windows that does not run all the drivers that normal mode needs to render graphics, sounds etc. It is worth running the system virus scan in safe mode because these little **ggers can be very smart and latch onto drivers that are an active part of the operating system in normal mode which make them impossible to delete once found.
Follow instructions at startup as Giant says. I can never get the timing right though so just hammer the F8 key forever from black screen until the Safe Mode load menu kicks in.
If you still want to follow Norton online instructions to rid yourself of this stuff while running safe mode make sure you choose Safe Mode with Networking enabled to access the net. |
|
| Back to top |
|
|
Juggertha
Joined: 27 May 2003
Location: Anyang, Korea
|
| Posted: Fri Aug 06, 2004 10:06 pm Post subject: |
|
|
I tink I found it
C:\WINDOWS\system32\wintime.exe is infected with Download.Trojan
Now to get rid of it. |
|
| Back to top |
|
|
just because
Joined: 01 Aug 2003
Location: Changwon - 4964
|
| Posted: Sat Aug 07, 2004 1:18 am Post subject: |
|
|
And i thought they finally had a virtual reality sex robot at last  |
|
| Back to top |
|
|
Hollywoodaction
Joined: 02 Jul 2004
|
| Posted: Sun Aug 08, 2004 6:50 am Post subject: |
|
|
| Do a search for 'online scan'. Trend Micro has a good one. Panda Activescan can remove most viruses and trojans. There's only one problem with Panda: Avast detects some of its files as trojans because they are unincripted (I use Avast anti virus software. It's free and quite effective). |
|
| Back to top |
|
|
|
FAQ
Search
Memberlist
Usergroups
Register
Profile
Log in to check your private messages
Log in
