Virus/worm ID

R

RKH

I'm running XP and have acquired some sort of malicious program with the
following symptoms:

-disabled my system restore points
-won't allow me to do a disk check on the hard drive
-won't allow me to open malwarebytes to run a scan

I checked for conficker on the test page, but was able to view all the
pictures, which is an indication that conficker is not present.

Anyone have any ideas what this is and how to remove it? Any help is
appreciated.
 
D

David H. Lipman

From: "RKH" <[email protected]>

| I'm running XP and have acquired some sort of malicious program with the
| following symptoms:

| -disabled my system restore points
| -won't allow me to do a disk check on the hard drive
| -won't allow me to open malwarebytes to run a scan

| I checked for conficker on the test page, but was able to view all the
| pictures, which is an indication that conficker is not present.

| Anyone have any ideas what this is and how to remove it? Any help is
| appreciated.



Download Gmer
http://www.gmer.net/

Close ALL programs and scan your system.
 
R

RKH

You sir, are a steely-eyed missile man. That worked beautifully. Thank you
very kindly. I'm grateful for helpful folks such as yourself who take the
time to help out those of us who are less informed about such things, and
who help stem the tide against the jag-offs who expend the enegy creating
such programs just to screw people. Thanks again.
 
D

David H. Lipman

From: "RKH" <[email protected]>

| You sir, are a steely-eyed missile man. That worked beautifully. Thank you
| very kindly. I'm grateful for helpful folks such as yourself who take the
| time to help out those of us who are less informed about such things, and
| who help stem the tide against the jag-offs who expend the enegy creating
| such programs just to screw people. Thanks again.


You are most welcome.

Do you have a copy of the Gmer log file where you can post and excerpt of what Gmer found
?
 
D

David H. Lipman

From: "RKH" <[email protected]>

| Yes, I've attached it here. It's pretty much Greek to me, but I was able to
| discern enough from the website to know what to delete. Thanks again, I'm
| seeing no residual effects so far.


Yep, what I thought. A TDSserv variant. In this case a UAC TDSserv.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

SBS 2002 infected with Conficker virus - how to remove?? 5
conficker easy check 2
Computer Experts Unite to Hunt Worm 76
Is this a Virus or the Like? 2
DNS Proxy 15
Confiker Virus . Latest threat to windows. 9
Safeguard Your PC Against the Downadup Worm 18
Please Help! Virus? Avast, Firefox, Windows update quit working 4

Top