SysChat

SysChat (http://www.syschat.com/forum.php)
-   Computer Security (http://www.syschat.com/software-support/computer-security/)
-   -   backdoor virus (http://www.syschat.com/backdoor-virus-2166.html)

juddan 05-31-2007 08:15 AM

backdoor virus
 
Help! Every morning at 5:00 my computer scans for viruses and every morning the same 'backdoor virus' is on my computer. Does anyone know how to find out where it's coming in so I can prevent it from happening??? Thanks, Juddan

mhookem 05-31-2007 11:23 AM

Backdoor Virus
 
Hello Juddan, have you ever had confirmation of successfully removing the virus with your anti-virus software?

Can you also tell me your system specs, what anti-virus software you are using and exact name and location of the virus?

Regards

Martin

Firefox 05-31-2007 11:56 AM

Also what OS are you using and where did you get it?

Sorry but have to ask these things :)

Also if you are using XP you need to turn off system restore before removing any virus as they can hide in the restore point. To do this goto Contol Panel>System and click the system restore tab at the top of the window. Click "Turn off system restore on all drives" then OK the warning that pops up. Reboot your machine in safe mode and run a virus scan. Remove the virus and then reboot back to your OS proper. Turn your system restore back on and all should be good.

juddan 05-31-2007 05:57 PM

backdoor virus
 
Ok, 1st, I use the earthlink protection control. I looked in the activity log and here is what it is - W32/Backdoor .AJFO -C\ProgramFiles\IWinGames\ IWinGamesHookIE .dll and it said it failed to quarantine. I haven't tried to do the turning off the system restore thing and doing another scan yet. Call me stupid but does OS stand for operating system like windows 98 or XP? If so then I have XP. Will running another virus scan with the system restore shut off get rid of the virus?

mhookem 06-01-2007 02:32 AM

Try the system restore method first and see if it works. If not, go to :My Computer>C:/>Windows/System32/IWinGamesHookIE.dll and delete it.

Alternatively go to: Start>Run> and type in regedt32 and click OK. Go to Edit>Find and search for the
CLSID {8CA5ED52-F3FB-4414-A105-2E3491156990} right-click on it and delete it.

If either of these won't delete, then reboot your computer into safe mode (press F8 during boot time) and then try it again.

Re-scan your PC when you've finished.

Regards

Martin


All times are GMT -4. The time now is 10:45 AM.


Copyright © 2005-2013 SysChat.com


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54