?
Solved

I GOT VIRUS - DROJAN

Posted on 2004-04-12
8
Medium Priority
?
481 Views
Last Modified: 2013-12-04
Hi everyone,

I got virus, and I ran my AVG Antivirus and it found the virus, and when I press move to valut, I moved 3 virus into Valut, but I am getting error message for one virus: Can not move to Valut since one .dll is using...????
I got an error message saying that some dll is using .... what should I do?

I was downloading last friday, and It asked me download some sort of file, instead of saying no, I said yes. since then I have few extra search bars on my IE, and One at the bottom of my screen, just above the taskbar. I am doing the Virus test now, and let you guys know what kind of message I am getting, so far, it found 2, last time, if found 4, and I move to valut, 3 of them, I thought only one left, and I have one more...what is happening...???

I also getting error message(s):
1) AVG Resident Shield:
Virus
Torjan horse downloader.Dyfica.AJ
is found in file C;?Documents and Settings\user\local settings\Temp\optimize.exe
To remove this virus, please run AVG for windows
2) 1) AVG Resident Shield:
Virus
Torjan horse downloader.Small.4.D.AJ
is found in file C;?Documents and Settings\user\local settings\Temp\bridge.exe
To remove this virus, please run AVG for windows

I ran my virus check for 6 times, and I am still getting this message

I also noticed that since last friday, when I am trying opening a web site, it is also opening ads.....what did I do?????
0
Comment
Question by:neonlights
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 

Author Comment

by:neonlights
ID: 10807175
Ok, After my test:

I have:
Infected Object: C:windows\system32\bho2.dll
Virus Name: Trojan Downloader VB.EN

Explanation:The virus cannot be removed from the infected object by healing. The enitre object must be removed.

Suggestion: Move to Valut
When I click on Move to Valut: I am getting error message:
File C:windows\system32\bho2.dll can not be removed

So, after this test, one is healed, and move to Valut, and one is still on the drive. How do I remove this EXPERTS:::::: URGENT ....
0
 
LVL 12

Expert Comment

by:trywaredk
ID: 10808091
Cleaning your computer  - and protecting it in the future -  can't be answered with one issue.

As you can see in my url below there are at least 7 different issues, where you should decide 1 of each, or else you does'nt protect your computer at all.

The reason is, that the many different programs not always protects against each other, and each of them does'nt protect equally.

It's very important, that you study all of these issues in my knowledgebase (some of them are freeware):
http://www.tryware.dk/English/Knowledgebase/HowToProtectYourComputer.html

BTW: I'm using the Trend Micro virus-suite, and SoftScan , and haven't got any of my servers or computers infected since 1999.

Many Regards
Jorgen Malmgren
IT-Supervisor
Denmark

:o) Your brain is like a parachute. It works best when it's open

0
 
LVL 12

Accepted Solution

by:
trywaredk earned 2000 total points
ID: 10808142
Internet Optimizer is an error page hijacker.
http://www.doxdesk.com/parasite/InternetOptimizer.html
0
Need protection from advanced malware attacks?

Look no further than WatchGuard's Total Security Suite, providing defense in depth against today's most headlining attacks like Petya 2.0 and WannaCry. Keep your organization out of the news with protection from known and unknown threats.

 
LVL 12

Expert Comment

by:trywaredk
ID: 10808174
0
 

Author Comment

by:neonlights
ID: 10810298
Hi ....

I waited for my response, but, I posted this question at programming, and got the answer, HiJackThis did a job as well as SirBounty. So..... What should do I do with this question?
0
 
LVL 12

Expert Comment

by:trywaredk
ID: 10812895
The Experts Exchange Help Pages - About Closing Questions
http://www.experts-exchange.com/Security/Win_Security/help.jsp - hi9
0
 

Author Comment

by:neonlights
ID: 10816029
Too much work guy....I will give my points to since your answer was also correct.
I think they should put a link here to close the question....

Thanks.....
0
 
LVL 12

Expert Comment

by:trywaredk
ID: 10817542
:o) Thank you for the points

>"I think they should put a link here to close the question...."

It actually was there, just before you closed the question - In the lines before the input field for SUBMIT:
***quote***  
   Email Notification: Subscribe  
  Question Bookmark: Add  
    Post a Comment: (Question and Answer tips)
***end of quote***
Question and Answer tips = http://www.experts-exchange.com/Security/Win_Security/help.jsp#hs4
0

Featured Post

Bringing Advanced Authentication to the SMB Market

WatchGuard announces the acquisition of advanced authentication provider, Datablink, with one mission – to bring secure authentication to SMB, mid-market, and distributed enterprises with a cloud-based solution, ideal for resale via their established channel & MSSP community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many of us in IT utilize a combination of roaming profiles and folder redirection to ensure user information carries over from one workstation to another; in my environment, it was to enable virtualization without needing a separate desktop for each…
Recently, I read that Microsoft has analysed statistics for their security intelligence report. It revealed: still, the clear majority of windows users do their daily work as administrator. An administrative account is a burden, security-wise. My ar…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
This is my first video review of Microsoft Bookings, I will be doing a part two with a bit more information, but wanted to get this out to you folks.
Suggested Courses
Course of the Month14 days, 4 hours left to enroll

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question