Virus Help Needed Bad

Virus Help Needed Bad
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Antivirus Discussions    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
Virus Help Needed Bad trouble4u2@cebr 11-12-2006
Posted by =?Utf-8?B?dHJvdWJsZTR1MkBjZWJy on November 12, 2006, 12:20 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
Can anyone please help me with a few virus please. The first one is called
Win32.Mydoom.m . I have run my virus software 2 times in safe mode and it
shows me what I have but doesn't delete or clean it. I know it is an email
worm and it is in my inbox folder.

Second says Exploit.Java.ByteVerify ? not sure what that is.

Third is Backdoor.Win32.Hupigon.cj .

#2 and 3 show up in my virus software in the Quarantine folder. Does that
mean it can't hurt my PC?


Last but not least is win32.small.DJB. I am not sure what this or where it is.

Please someone send me help?


Posted by Malke on November 12, 2006, 12:31 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
trouble4u2@cebridge.net wrote:

> Can anyone please help me with a few virus please. The first one is
> called Win32.Mydoom.m . I have run my virus software 2 times in safe
> mode and it shows me what I have but doesn't delete or clean it. I
> know it is an email worm and it is in my inbox folder.
>
> Second says Exploit.Java.ByteVerify ? not sure what that is.
>
> Third is Backdoor.Win32.Hupigon.cj .
>
> #2 and 3 show up in my virus software in the Quarantine folder. Does
> #that
> mean it can't hurt my PC?
>
>
> Last but not least is win32.small.DJB. I am not sure what this or
> where it is.

Go through these general malware removal steps systematically -
http://www.elephantboycomputers.com/page2.html#Removing_Malware

Include scanning with either Sysclean or Multi_AV, plus Ewido. Do all
prep/finishing work and follow instructions to do all scans in Safe
Mode.

When all else fails, run HijackThis and post your log in one of the
specialty forums listed at the link above (not here, please).

If the procedures look too complex - and there is no shame in admitting
this isn't your cup of tea - take the machine to a professional
computer repair shop (not your local version of BigStoreUSA).

Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User

Posted by David H. Lipman on November 12, 2006, 12:40 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

| Can anyone please help me with a few virus please. The first one is called
| Win32.Mydoom.m . I have run my virus software 2 times in safe mode and it
| shows me what I have but doesn't delete or clean it. I know it is an email
| worm and it is in my inbox folder.
|
| Second says Exploit.Java.ByteVerify ? not sure what that is.
|
| Third is Backdoor.Win32.Hupigon.cj .
|
| #2 and 3 show up in my virus software in the Quarantine folder. Does that
| mean it can't hurt my PC?
|
| Last but not least is win32.small.DJB. I am not sure what this or where it is.
|
| Please someone send me help?

If anything is found in your quarantine folder, it is safe. Unless you can
prove these are
unjustly identified as malware, the quarantine folder/cache can be purged.

If you are using any version of Sun Java that is prior to JRE Version 5.0 update
9,
then you are strongly urged to remove any/all versions.
There are vulnerabilities in them and they are actively being exploited.

It is highly suggested that you update to the latest version which is Sun Java
JRE/JSE
Version 5.0 Update 9

Simple check, look under...
C:\Program Files\Java

The only folder under that folder should be the latest version.

Such as...
C:\Program Files\Java\jre1.5.0_09

http://java.sun.com/javase/downloads/index.jsp
http://www.java.com/en/download/manual.jsp

FYI:
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102557-1
http://sunsolve.sun.com/search/document.do?assetkey=1-26-102648-1


1) You need to find the email message in your InBox amd delete that email
message from
within your email client.

2) Dump the contents of your IE cache -
Start --> settings --> control panel --> Internet options --> delete
files

3) Dump the contents of the Mozilla FireFox Cache { if you use FireFox }
Tools --> Options --> Privacy --> Cache --> Clear

4) Dump the contents of your Sun Java cache -
Start --> settings --> control panel --> Java applet --> cache --> clear
or
Start --> settings --> control panel --> Java applet --> general -->
settings -->
delete files

5) Re-scan your system using the following Multi AV Scanning Tool...

Download MULTI_AV.EXE from the URL --
http://www.ik-cs.com/programs/virtools/Multi_AV.exe

To use this utility, perform the following...
Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose; Unzip
Choose; Close

Execute; C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }

NOTE: You may have to disable your software FireWall or allow WGET.EXE to go
through your
FireWall to allow it to download the needed AV vendor related files.

C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
This will bring up the initial menu of choices and should be executed in Normal
Mode.
This way all the components can be downloaded from each AV vendor's web site.
The choices are; Sophos, Trend, McAfee, Kaspersky, Exit this menu and Reboot the
PC.

You can choose to go to each menu item and just download the needed files or you
can
download the files and perform a scan in Normal Mode. Once you have downloaded
the files
needed for each scanner you want to use, you should reboot the PC into Safe Mode
[F8 key
during boot] and re-run the menu again and choose which scanner you want to run
in Safe
Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.

When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive
PDF help
file. http://www.ik-cs.com/multi-av.htm

Additional Instructions:
http://pcdid.com/Multi_AV.htm


* * * Please report back your results * * *



--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm



Posted by =?Utf-8?B?UGFuZGFfbWFu?= on November 12, 2006, 12:56 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
My reply is mixed with your words:


"trouble4u2@cebridge.net" wrote:

> Can anyone please help me with a few virus please. The first one is called
> Win32.Mydoom.m . I have run my virus software 2 times in safe mode and it
> shows me what I have but doesn't delete or clean it. I know it is an email
> worm and it is in my inbox folder.
>


If the worm is in your mailbox , no AV can help . The problem is that all
emails are stored in one DBX file . Worms cannot be cleaned , they are
deleted and if AV software attempts to delete the worm , it should delete the
whol;e DBX file which means you will loose all your emails . Imagine you have
2500 mails in your inbox and just one is infected ...
Your AV tells you which email is infected (sender adress , possibly subject)
. Open your mail client (e.g. Outlook Express) and manually serach for the
infected mail and , of course , manually delete it .


> Second says Exploit.Java.ByteVerify ? not sure what that is.
>

Perform David's instructions on this . Shortly , you should clear Java's
cache and upgrade to the latest version of Java


> Third is Backdoor.Win32.Hupigon.cj .
> Last but not least is win32.small.DJB.

The above (Hupigon and Small) are trojan horses . These must be deleted .

I would suggest you visit http://pandaman.my.contact.bg and perform the
Malware Removal instructions . Later learn more about malware and read the
protection tips.

Good luck !


--
Panda_man
Silver level Contributor


Similar ThreadsPosted
simulation virus spread, thesis information needed September 20, 2006, 1:16 am
Help needed March 13, 2007, 11:26 am
Help needed ASAP - secure 32 May 18, 2006, 10:54 am
The much anticipated and needed patch will be available in about 2 hours January 5, 2006, 3:00 pm
HELP: Virus is preventing me from installing anti virus software!! January 11, 2007, 2:17 am
I have a virus that uses "anti virus software" downloads as a cover up March 24, 2007, 1:40 pm
I have a worm or virus that does not allow me to go to ANY anti-virus website January 28, 2006, 10:29 pm
Caught a Virus: Virus:Trj/Shutdown.Z -- need advice June 13, 2007, 12:59 am
Vundo fix not finding vundo virus - windows tool deletes virus May 14, 2008, 2:06 pm
Does anybody know what virus i've got? July 5, 2005, 8:23 am

The site map in XML format XML site map

Contact Us | Privacy Policy