Re: Trojan Horse
From: Malke (malke_at_nospoonnotreally.com)
Date: 06/05/04
- Next message: Elector: "Re: Problems with java applets"
- Previous message: system error: "category 102"
- In reply to: Karen: "Re: Trojan Horse"
- Messages sorted by: [ date ] [ thread ]
Date: Sat, 05 Jun 2004 07:37:42 -0700
Karen wrote:
>Please forgive me I had forgotten to put the name in
> till I hit send.....Virus Trojan
> Horse...Downloader.Small.6.T....I do apoliges ...Thanks
See, now that was helpful. Google infor Downloader.Small.6.T gave the
information that this is connected with wshirda.exe. I found a
reference to this on a messageboard, and here is the quote:
"My AVG Anti-Virus detected a virus this morning:
C:\WINNT\SYSTEM32\WSHIRDA.EXE Trojan horse Downloader.Small.6.T
"Note that there is a legitimate file called wshirda.dll, which is
supposed to be there. There is not supposed to be a wshirda.exe, and
I'm sure the trojan writer is depending on the confusion. The date on
the wshirda.exe file was close to the date on wshirda.dll (2001 as I
recall). It apparently tries to reach an outside server at
search.requestlookup.net according to Sygate Personal Firewall:"
So, you need to make sure that your AVG is using the most current
scanning engine and virus definitions. You need to use msconfig and
disable all suspect programs/processes from starting. Then scan in Safe
Mode and make a note of all malware found. If AVG doesn't delete the
trojan (and it may not have done so before because you were scanning in
Regular Mode and the file was in use), you need to delete the trojan
and related files. You need to have a firewall installed.
Malke
-- MS MVP - Windows Shell/User Elephant Boy Computers www.elephantboycomputers.com "Don't Panic!"
- Next message: Elector: "Re: Problems with java applets"
- Previous message: system error: "category 102"
- In reply to: Karen: "Re: Trojan Horse"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
