|
Posted by on September 16, 2005, 2:01 pm
If you were Registered and logged in, you could reply and use other advanced thread options
David H. Lipman wrote:
>
> | I started having the same problem this morning on both my laptop and my
> | desktop. I also tried a complete system scan and found nothing. I also
> | tried a system scan with Spy Sweeper. I have the latest versions of
> | both NIS and Spy Sweeper, and both are up to date as of this morning. I
> | tried all of the steps suggested by Symantec for removing the graybird
> | trojan to no avail. I could find only one of the files mentioned in
> | their writeup, winlogon.exe, and none of the registry entries that they
> | said should be there. Winlogon appears to be a legitimate Microsoft
> | file. I'll try the multivendor scan tonight, but I am beginning to
> | think that Symantec has a problem that they have not yet acknowledged.
> | Either that, or this is a new version of graybird that installs itself
> | as a rootkit. Unfortunately, I had a rootkit remover at one time, but
> | now I can't find it. Any suggestions for a freeware version?
>
> Sysinternals has RootKit Revealer. I can't say if this would be effective
with this
> Backdoor Trojan.
> http://www.sysinternals.com/Utilities/RootkitRevealer.html
>
> --
> Dave
> http://www.claymania.com/removal-trojan-adware.html
> http://www.ik-cs.com/got-a-virus.htm
| 
XML site map