Anybody got a fix for BackDoor.Generic3.LRT?

Anybody got a fix for BackDoor.Generic3.LRT?
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Antivirus Discussions    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Anybody got a fix for BackDoor.Generic3.LRT? Lisa Simpson 10-27-2006
Posted by Lisa Simpson on October 27, 2006, 11:44 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Anybody got a fix for BackDoor.Generic3.LRT?



Posted by =?Utf-8?B?RW5nZWw=?= on October 28, 2006, 1:09 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Hello Lisa,

Ewido performs great with Trojans

First remove all temporarily junk with HDCleaner
Clean all the junk files quickly and safely !
HDCleaner It's an outstading free utility
http://home.tiscali.de/zdata/hdcleaner_e.htm
Read Review at MajorGeeks


Scan your computer now online and clean it for free!
You can run Ewido in safe mode with network!ng, fwiw.
http://www.ewido.net/en

Scan your computer now online and clean it for free!
http://safety.live.com/site/en-US/default.htm
Look for the broom Clean up, also Tune Up..
--

"Lisa Simpson" wrote:

> Anybody got a fix for BackDoor.Generic3.LRT?
>
>
>

Posted by Lisa Simpson on October 28, 2006, 8:05 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Ran the Ewido online scanner & it would not/could not remove it; got an
error message "could not remove all infections, please download & run",
which I've done to no avail . . .

> Hello Lisa,
>
> Ewido performs great with Trojans
>
> First remove all temporarily junk with HDCleaner
> Clean all the junk files quickly and safely !
> HDCleaner It's an outstading free utility
> http://home.tiscali.de/zdata/hdcleaner_e.htm
> Read Review at MajorGeeks
>
>
> Scan your computer now online and clean it for free!
> You can run Ewido in safe mode with network!ng, fwiw.
> http://www.ewido.net/en
>
> Scan your computer now online and clean it for free!
> http://safety.live.com/site/en-US/default.htm
> Look for the broom Clean up, also Tune Up..
> --
>
> "Lisa Simpson" wrote:
>
> > Anybody got a fix for BackDoor.Generic3.LRT?
> >
> >
> >



Posted by David H. Lipman on October 28, 2006, 8:08 am
If you were  Registered and logged in, you could reply and use other advanced thread options

| Anybody got a fix for BackDoor.Generic3.LRT?
|


Download MULTI_AV.EXE from the URL --
http://www.ik-cs.com/programs/virtools/Multi_AV.exe

To use this utility, perform the following...
Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose; Unzip
Choose; Close

Execute; C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }

NOTE: You may have to disable your software FireWall or allow WGET.EXE to go
through your
FireWall to allow it to download the needed AV vendor related files.

C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
This will bring up the initial menu of choices and should be executed in Normal
Mode.
This way all the components can be downloaded from each AV vendor's web site.
The choices are; Sophos, Trend, McAfee, Kaspersky, Exit this menu and Reboot the
PC.

You can choose to go to each menu item and just download the needed files or you
can
download the files and perform a scan in Normal Mode. Once you have downloaded
the files
needed for each scanner you want to use, you should reboot the PC into Safe Mode
[F8 key
during boot] and re-run the menu again and choose which scanner you want to run
in Safe
Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.

When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive
PDF help
file. http://www.ik-cs.com/multi-av.htm

Additional Instructions:
http://pcdid.com/Multi_AV.htm


* * * Please report back your results * * *


--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Posted by Lisa Simpson on October 28, 2006, 6:27 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Reporting results so far: finally identified as BKDR_HAXDOOR.JG

- Ewido was useless for this particular nasty
- AVG similarly useless
- SuperAntiSpyware similarly useless
- Avast similarly useless
- Since it was stopping me from getting online I could not do any online
scans, so they are useless in these cases
- TrendMicro is worse than useless since it requires you to "Activate" via
the web (see above)

What seems to have worked was to:

- delete (caution! heavily abbreviated regkeys here!)
HKLM>SW>MS>NT>CV>Winlogon>Notify>yvbb01
- delete (caution! heavily abbreviated regkeys here!)
HKLM>SYS>CurrentControlSet>Control>SafeBoot>Minimal>yvbb02.sys
- delete (caution! heavily abbreviated regkeys here!)
HKLM>SYS>CurrentControlSet>Control>SafeBoot>Network>yvbb02.sys

then:

search for lps.dat & kgctini.dat & delete

>
> | Anybody got a fix for BackDoor.Generic3.LRT?
> |
>
>
> Download MULTI_AV.EXE from the URL --
> http://www.ik-cs.com/programs/virtools/Multi_AV.exe
>
> To use this utility, perform the following...
> Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
> Choose; Unzip
> Choose; Close
>
> Execute; C:\AV-CLS\StartMenu.BAT
> { or Double-click on 'Start Menu' in C:\AV-CLS }
>
> NOTE: You may have to disable your software FireWall or allow WGET.EXE to
go through your
> FireWall to allow it to download the needed AV vendor related files.
>
> C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
> This will bring up the initial menu of choices and should be executed in
Normal Mode.
> This way all the components can be downloaded from each AV vendor's web
site.
> The choices are; Sophos, Trend, McAfee, Kaspersky, Exit this menu and
Reboot the PC.
>
> You can choose to go to each menu item and just download the needed files
or you can
> download the files and perform a scan in Normal Mode. Once you have
downloaded the files
> needed for each scanner you want to use, you should reboot the PC into
Safe Mode [F8 key
> during boot] and re-run the menu again and choose which scanner you want
to run in Safe
> Mode. It is suggested to run the scanners in both Safe Mode and Normal
Mode.
>
> When the menu is displayed hitting 'H' or 'h' will bring up a more
comprehensive PDF help
> file. http://www.ik-cs.com/multi-av.htm
>
> Additional Instructions:
> http://pcdid.com/Multi_AV.htm
>
>
> * * * Please report back your results * * *
>
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> http://www.ik-cs.com/got-a-virus.htm
>
>



Similar ThreadsPosted
Trojan horse BackDoor.Generic3.EKW September 9, 2006, 10:14 pm
trjan horse backdoor.Generic3.LFJ September 15, 2006, 7:07 am
W32/Backdoor.KPI May 25, 2006, 7:22 pm
Backdoor.HackDefender July 14, 2005, 10:56 pm
Need help with backdoor.prorat October 20, 2005, 6:13 am
backdoor.trojan April 25, 2006, 1:43 pm
w32\backdoor.aaol January 27, 2007, 11:21 am
Backdoor.Delf.aki February 22, 2007, 1:27 am
Backdoor Trojan? March 2, 2007, 11:12 am
irc backdoor trojan May 9, 2008, 8:28 am

The site map in XML format XML site map

Contact Us | Privacy Policy