Trojan Virus/Spywares

incinerate55

Member
Jan 24, 2005
48
0
0
I recently got a trojan and some type of spyware that causes popups, although I think the trojan is causing the popups. When I scanned with AVG, it picked it up. This is what it shows...

C:\Documents and Settings\brian\local settings\Temporary Internet Files\Content.IE5\TN3N1PGI\DS3[1].cab
Trojan Horse Downloader.Agent.11.AV
Infected, Embedded Object

I CANNOT DELETE THIS BECAUSE IT IS EMBEDDED???? :(

C:\Documents and Settings\brian\local settings\Temporary Internet Files\Content.IE5\TN3N1PGI\DS3[1].cab
Trojan Horse Downloader.Agent.11.AV
I moved it to the virus vault

I have tried AVG, Microsoft Antispyware, Trend Micro PC Cillin, Ad Aware SE, Spy Sweeper, and Spybot Search and Destroy. None of these can eliminate this.

I get popups randomly, especially when I leave the computer and come back.
Please help, thank you
 

mechBgon

Super Moderator<br>Elite Member
Oct 31, 1999
30,699
1
0
You might want to uninstall AVG, install a 30-day trial of Kaspersky AV Personal 5 (not Pro, standard), then update it, reboot into Safe Mode, right-click the C: drive and launch a Kaspersky scan. Make sure you configured it like I show in that link, don't just install it and leave the settings at default.

Kaspersky is much stronger on Trojans and worms than AVG. It might find more than you're expecting :evil: A 30-day trial of WebRoot Spysweeper might be a good companion to Kaspersky, since it also is capable of scanning in Safe Mode.

To reiterate: do your first scans in Safe Mode.
 

ThePiston

Senior member
Nov 14, 2004
861
0
76
find an iso file of a bootable antivirus CD... if you have an old Norton disk they ar ebootable... you'll need to do this from DOS it sounds like
 

sykopath79

Senior member
Nov 2, 2000
458
0
0
TrojanHunter works wonders, it's 30-day trialware but if you run the install-time updater it will have the current definitions, and it was the only thing short of manually scouring the \windows\system32 folder for bad DLLs and EXEs that saved many systems I have worked on.

Bear in mind that it simply renames any files it finds with a .TCF extension, so you will then want to manually delete the .TCF files afterward.