Trojan Horse

Trojan Horse
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Antivirus Discussions    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Trojan Horse =?Utf-8?B?TGFycnkgUg==?= 01-08-2006
| `--> Re: Trojan Horse =?Utf-8?B?TGFyc...01-08-2006
|--> Re: Trojan Horse David H. Lipman01-08-2006
---> RE: Trojan Horse =?Utf-8?B?TGFyc...01-08-2006
Posted by =?Utf-8?B?TGFycnkgUg==?= on January 8, 2006, 11:06 am
If you were  Registered and logged in, you could reply and use other advanced thread options
I have AVG profesional and it keeps identifying and healing a trojan horse
file rpcnet.exe. It says that it is Trojan Horse Dialer.BHW. I have run
AVG, Spybot, Adaware and Microsoft antispyware. I can get rid of the file
rpcnet. It does not return until I run Internet Explorer or MS antispyware
and then it keeps showing back up. Help
--
Larry R

Posted by Malke on January 8, 2006, 11:54 am
If you were  Registered and logged in, you could reply and use other advanced thread options
Larry R wrote:

> I have AVG profesional and it keeps identifying and healing a trojan
> horse
> file rpcnet.exe. It says that it is Trojan Horse Dialer.BHW. I have
> run
> AVG, Spybot, Adaware and Microsoft antispyware. I can get rid of the
> file rpcnet. It does not return until I run Internet Explorer or MS
> antispyware
> and then it keeps showing back up. Help

A Google for rpcnet.exe brings up this interesting link:

http://www.hijackfree.com/en/processdetails/?id=348

Here's the relevant bit:

"This is the Hidden process of Computrace. Computrace is the software
installed on the computer, usually for Universities and laptop purchase
programs, which calls in daily to verify the location of the computer.
If the computer is reported stolen, the next call in will be tagged,
logged, and set active. whereby the software calls in every 15 minutes
to track the computer. The software is not only unknown in Windows, but
is locked into the MBR incase of a format."

Is this applicable to you?

Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User

Posted by =?Utf-8?B?TGFycnkgUg==?= on January 8, 2006, 1:43 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Yes this is correct

--
Larry R


"Malke" wrote:

> Larry R wrote:
>
> > I have AVG profesional and it keeps identifying and healing a trojan
> > horse
> > file rpcnet.exe. It says that it is Trojan Horse Dialer.BHW. I have
> > run
> > AVG, Spybot, Adaware and Microsoft antispyware. I can get rid of the
> > file rpcnet. It does not return until I run Internet Explorer or MS
> > antispyware
> > and then it keeps showing back up. Help
>
> A Google for rpcnet.exe brings up this interesting link:
>
> http://www.hijackfree.com/en/processdetails/?id=348
>
> Here's the relevant bit:
>
> "This is the Hidden process of Computrace. Computrace is the software
> installed on the computer, usually for Universities and laptop purchase
> programs, which calls in daily to verify the location of the computer.
> If the computer is reported stolen, the next call in will be tagged,
> logged, and set active. whereby the software calls in every 15 minutes
> to track the computer. The software is not only unknown in Windows, but
> is locked into the MBR incase of a format."
>
> Is this applicable to you?
>
> Malke
> --
> Elephant Boy Computers
> www.elephantboycomputers.com
> "Don't Panic!"
> MS-MVP Windows - Shell/User
>

Posted by David H. Lipman on January 8, 2006, 11:59 am
If you were  Registered and logged in, you could reply and use other advanced thread options

| I have AVG profesional and it keeps identifying and healing a trojan horse
| file rpcnet.exe. It says that it is Trojan Horse Dialer.BHW. I have run
| AVG, Spybot, Adaware and Microsoft antispyware. I can get rid of the file
| rpcnet. It does not return until I run Internet Explorer or MS antispyware
| and then it keeps showing back up. Help
| --
| Larry R


Download MULTI_AV.EXE from the URL --
http://www.ik-cs.com/programs/virtools/Multi_AV.exe

To use this utility, perform the following...
Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose; Unzip
Choose; Close

Execute; C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }

NOTE: You may have to disable your software FireWall or allow WGET.EXE to go
through your
FireWall to allow it to download the needed AV vendor related files.

C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
This will bring up the initial menu of choices and should be executed in Normal
Mode.
This way all the components can be downloaded from each AV vendor's web site.
The choices are; Sophos, Trend, McAfee, Kaspersky, Exit this menu and Reboot the
PC.

You can choose to go to each menu item and just download the needed files or you
can
download the files and perform a scan in Normal Mode. Once you have downloaded
the files
needed for each scanner you want to use, you should reboot the PC into Safe Mode
[F8 key
during boot] and re-run the menu again and choose which scanner you want to run
in Safe
Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.

When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive
PDF help
file. http://www.ik-cs.com/multi-av.htm


* * * Please report back your results * * *


--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Posted by =?Utf-8?B?TGFycnkgUg==?= on January 8, 2006, 1:59 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
I have had this on my laptop for 9 months with no issues. All of a sudden
this week avg starts kicking this file out as a virus. Any ideas?
--
Larry R


"Larry R" wrote:

> I have AVG profesional and it keeps identifying and healing a trojan horse
> file rpcnet.exe. It says that it is Trojan Horse Dialer.BHW. I have run
> AVG, Spybot, Adaware and Microsoft antispyware. I can get rid of the file
> rpcnet. It does not return until I run Internet Explorer or MS antispyware
> and then it keeps showing back up. Help
> --
> Larry R

Similar ThreadsPosted
Trojan Horse June 28, 2005, 11:58 pm
Trojan Horse (New?) July 17, 2005, 12:45 pm
Trojan Horse September 20, 2005, 6:15 pm
Trojan horse October 8, 2005, 2:29 am
Bla trojan horse??? February 9, 2006, 4:06 pm
Trojan Horse - HELP! July 20, 2007, 1:49 pm
Help! Trojan Horse Virus July 20, 2005, 7:22 pm
Trojan Horse - popinstlite.exe September 14, 2005, 1:33 pm
Trojan horse TR/SPY Tofger.AT.07 December 20, 2005, 9:41 pm
trojan horse proxy.BET January 16, 2006, 9:44 am

The site map in XML format XML site map

Contact Us | Privacy Policy