Solved

how do i get rid of DOWNLOADER.ay  infected computer

Posted on 2006-06-19
12
1,341 Views
Last Modified: 2013-12-04
Hello,

I am pretty clueless on this stuff but I believe my computer is infected with DOWNLOADER.AY
I constanly get a WINDOWS DEFENDER WARNING on startup...clicking on remove does nothing

i tried to install norton 2006 but it wouldnt download as the sytem simply shuts down and disconects web pages quickly

I have tried to down load ewido anti malware and others but theyarent being able to fully download

Can someone please walk me through a solution step by step....

Thank  you
0
Comment
Question by:dk1999
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
  • 2
  • +2
12 Comments
 
LVL 6

Expert Comment

by:markandrew21
ID: 16934404
0
 

Author Comment

by:dk1999
ID: 16935798
the sytem will not let me downlaod... it crashes halfway through...any ideas?????????
0
 
LVL 12

Expert Comment

by:gidds99
ID: 16936057
You should download and run Hijackthis from http://www.hijackthis.de/en.  Once you have done this please post a link to your log file analysys (post your log to http://www.hijackthis.de/en then click on the "analize" button and then post the URL here).

This will allow us to help you.
0
Simplifying Server Workload Migrations

This use case outlines the migration challenges that organizations face and how the Acronis AnyData Engine supports physical-to-physical (P2P), physical-to-virtual (P2V), virtual to physical (V2P), and cross-virtual (V2V) migration scenarios to address these challenges.

 

Author Comment

by:dk1999
ID: 16937545
ok thx,

I ahve made it to the hijack site...it has a page that says copy logfile here....sorry for my ignorance and incompetance...but how do i get a log file? is it a button or do i browse a certain file or something else?  can you walk me through creating a logfile please... thx sorry for the hassle
0
 
LVL 12

Accepted Solution

by:
gidds99 earned 168 total points
ID: 16937678
You have to download and run the hijackthis.exe file.  Download it here:

http://download.hijackthis.eu/hijackthis_199.zip

(unzip the file to get the .exe)

when you run the program you will have to option to scan and save a log file.  Copy the contents of the file to the site and then paste the resulting URL here.
0
 
LVL 12

Expert Comment

by:gidds99
ID: 16937691
Let me know how you do with this.
0
 
LVL 32

Assisted Solution

by:r-k
r-k earned 166 total points
ID: 16938249
Here are a couple of things you can try that may get your system to a usable state:

(1) Run the MsConfig program as follows:
       Start -> Run
       Type in MSCONFIG and click OK
       Click on the "Startup" tab
       Un-check all the entries there (don't worry, you can re-check them later)
       Click OK etc.
     Reboot
     Then see if you can successfully download ewido and other programs and run them.

(2) If the above is not successful, then reboot your system in "Safe Mode with Networking"
as follows:
     Reboot and start tapping the F8 key about twice per second just as the bios self-test is running.
     A new menu should appear where "Safe Mode with Networking" is an option
     Select that option and finish starting.
     Then see if you can download and run ewido, hijackthis etc. as suggested by others.
0
 
LVL 47

Assisted Solution

by:rpggamergirl
rpggamergirl earned 166 total points
ID: 16938354
I agree about the hijackthis log suggestion. Please don't run Hijackthis while startup entries are unchecked, they need to be all Checked so they will appear in the log.

Once you have the hijackthis log(result of hijackthis scanning your pc)
paste it to either of these sites so we can look at it.

http://www.rafb.net/paste/
then at the bottom left corner click "paste"
Copy the address/url and post it here:

Or paste the log at --> http://www.hijackthis.de/ 
and click "Analyse", click "Save".  Then post the link to the saved list here.
0
 

Author Comment

by:dk1999
ID: 16953380
ok i have it fixed.... thanks to everuone who responded.  i appreciate it
0
 
LVL 32

Expert Comment

by:r-k
ID: 16954548
Great. Be sure to "close" this question by accepting an answer that helped you, or if more than one answer was helpful then select the "split points" option. That way the question is saved for future visitors with a similar problem. Thanks.
0

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

759 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question