How do I remove Downloader virus??? Help!

How do I remove Downloader virus??? Help!
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Antivirus Discussions    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
How do I remove Downloader virus??? Help! BrianNo 07-13-2006
Posted by susan_ihm on July 18, 2006, 3:04 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

Start the computer in safe mode.
Navigate to the infected files and right click on it and click on
properties.
Click on the security tab and click on the advanced button.
Uncheck the box which says "Inherit from parent the permission......."
Click on remove>apply>yes>ok.
Restart the computer again in safe mode and login into the
administrator user
and delete the infected file.
Take a backup of the registry and search for the infecte file and
delete it.
Try this.........


--
susan_ihm
------------------------------------------------------------------------
susan_ihm's Profile: http://forums.techarena.in/member.php?userid=16370
View
this thread: http://forums.techarena.in/showthread.php?t=551058

www.techarena.in


Posted by David H. Lipman on July 18, 2006, 4:45 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

| Start the computer in safe mode.
| Navigate to the infected files and right click on it and click onproperties.
| Click on the security tab and click on the advanced button.
| Uncheck the box which says "Inherit from parent the permission......."
| Click on remove>apply>yes>ok.
| Restart the computer again in safe mode and login into theadministrator user
and delete
| the infected file. Take a backup of the registry and search for the infecte
file anddelete
| it. Try this.........--
| susan_ihm

/* I really hate these web site forums and their totally inadequate front-ends
to Usenet !*/

NO -- This will NOT work !

This is NOT a case of a lack of permissions. It is a case of the File Handle,
of the
Trojanized file, being held open by the OS !

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Posted by Malke on July 15, 2006, 9:40 am
If you were  Registered and logged in, you could reply and use other advanced thread options
BrianNo@gmail.com wrote:

> Hi there. I downloaded Ewido as you recommended, updated the
> definitions, and then ran the software in SafeMode, and voila, Ewido
> identified the virus and quarantined it. Thanks for all your help.
> Phew!
>
> BTW, just to let you know, Ewido identified the virus as
> "Downloader.Conhook.aa" and "Downloader.Conhook.ab"

Excellent. Since David Lipman identified the culprit as a trojan similar to
Vundo, you may want to run one of the Vundo fixes here:

http://www.elephantboycomputers.com/page2.html#Winfixer

This is just to be sure your machine is really, really clean. It's your
call.

Malke
--
MS-MVP Windows Shell/User
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic"

Posted by David H. Lipman on July 15, 2006, 10:15 am
If you were  Registered and logged in, you could reply and use other advanced thread options

.ab"
|
| Excellent. Since David Lipman identified the culprit as a trojan similar to
| Vundo, you may want to run one of the Vundo fixes here:
|
| http://www.elephantboycomputers.com/page2.html#Winfixer
|
| This is just to be sure your machine is really, really clean. It's your
| call.
|
| Malke

Hi Malke:

FYI

The Conhook Trojan uses a BHO and uses the Winlogin Notify key just like the
Vundo does.

--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Posted by Malke on July 15, 2006, 10:57 am
If you were  Registered and logged in, you could reply and use other advanced thread options
David H. Lipman wrote:

>
> .ab"
> |
> | Excellent. Since David Lipman identified the culprit as a trojan similar
> | to Vundo, you may want to run one of the Vundo fixes here:
> |
> | http://www.elephantboycomputers.com/page2.html#Winfixer
> |
> | This is just to be sure your machine is really, really clean. It's your
> | call.
> |
> | Malke
>
> Hi Malke:
>
> FYI
>
> The Conhook Trojan uses a BHO and uses the Winlogin Notify key just like
> the Vundo does.
>

Thanks, David. So you think the OP is clean and doesn't need to do anything
further?

Malke
--
MS-MVP Windows Shell/User
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic"

Similar ThreadsPosted
avg found a virus called downloader.tibs October 4, 2006, 5:06 pm
JS Downloader Agent (Virus) and Trojan Horses January 27, 2008, 2:24 pm
remove virus December 18, 2008, 9:40 pm
How do I remove Purstiu Virus July 15, 2005, 3:51 pm
how to remove "service manager" virus? May 11, 2006, 10:30 pm
avmete.dll - Virus file - cannot remove December 21, 2007, 12:46 pm
Downloader AQ December 7, 2006, 11:40 am
Downloader.Zlob.YQ May 7, 2006, 6:19 am
Downloader-Awx Trojan June 20, 2006, 5:00 pm
High downloader October 12, 2007, 6:11 pm

The site map in XML format XML site map

Contact Us | Privacy Policy