Dialer. 15.AN??

[ShybutCoy]

Hi, I have the Free Version of AVG and it recently detected a virus called
Trojan Horse Dialer.15.AN. It couldn't seem to remove or vault the infected
files and one was "imbedded in an archive". When I went to look it up on
the net I found my comp was suddenly working offline and wanted my user name
and password to log in. Is this a trick to give someone this info and now
that I have how do I get rid of the virus and stop someone using it? I ran
another scan and the virus had mysteriously disappeared.

 

[David H. Lipman]

From: "ShybutCoy" <[email protected]>

| Hi, I have the Free Version of AVG and it recently detected a virus called
| Trojan Horse Dialer.15.AN. It couldn't seem to remove or vault the infected
| files and one was "imbedded in an archive". When I went to look it up on
| the net I found my comp was suddenly working offline and wanted my user name
| and password to log in. Is this a trick to give someone this info and now
| that I have how do I get rid of the virus and stop someone using it? I ran
| another scan and the virus had mysteriously disappeared.
|



Dump the contents of the IE Temporary Internet Folder cache (TIF)

start --> settings --> control panel --> internet options --> delete files

1) Download the following three items...

Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp

Latest Trend signature files.
http://www.trendmicro.com/download/pattern.asp

Ad-aware SE (free personal version v1.05)
http://www.lavasoftusa.com/

Create a directory.
On drive "C:\"
(e.g., "c:\New Folder")
or the desktop
(e.g., "C:\Documents and Settings\lipman\Desktop\New Folder")

Download SYSCLEAN.COM and place it in that directory.
Download the Trend Pattern File by obtaining the ZIP file.
For example; lpt480.zip

Extract the contents of the ZIP file and place the contents in the same directory as
SYSCLEAN.COM.

2) Update Ad-aware with the latest definitions.
3) If you are using WinME or WinXP, disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
4) Reboot your PC into Safe Mode and shutdown as many applications as possible.
5) Using both the Trend Sysclean utility and Ad-aware, perform a Full Scan of your
platform and clean/delete any infectors/parasites found.
(a few cycles may be needed)
6) Restart your PC and perform a "final" Full Scan of your platform using both the
Trend Sysclean utility and Adaware
7) If you are using WinME or WinXP,Re-enable System Restore and re-apply any
System Restore preferences, (e.g. HD space to use suggested 400 ~ 600MB),
8) Reboot your PC.
9) If you are using WinME or WinXP, create a new Restore point

* * Please report back your results * *

 

[ShybutCoy]

Thanks for the advice David. I did everything on the list and I haven't
encountered any of the previous problems (such as my internet connection
asking me to reconnect with dialup even though I have DSL and never need to
reconnect) and I have noticed my system is running smoother and faster. One
thing I noticed during the tests is that Sysclean found no viruses and could
not scan or set file for reading on a number of files because it was denied
access (yes I scanned in administrator and my other user account). So far
the problem seems to have been solved...thanks again.