Re: Backdoor.Trojan

From: Kelly (kelly_at_mvps.org)
Date: 07/21/04

• Next message: Hilary Karp: "Re: bypass .NET logon screen"
• Previous message: Hilary Karp: "Re: Problems with XP Taskmanager and more...."
• In reply to: anonymous_at_discussions.microsoft.com: "Re: Backdoor.Trojan"
• Next in thread: Plato: "Re: Backdoor.Trojan"
• Messages sorted by: [ date ] [ thread ]

Date: Wed, 21 Jul 2004 02:43:47 -0500

Hi,

Run the XP Startup Tracker from here and email me the logfile:
http://www.kellys-korner-xp.com/xp_u.htm#xp_util

-- 
All the Best,
Kelly
Microsoft-MVP Windows® XP
2004 Windows MVP "Winny" Award
Troubleshooting Windows XP
http://www.kellys-korner-xp.com
http://www.kellys-korner-xp.com/xp_tweaks.htm
Taskbar Repair Tool Plus!
http://www.kellys-korner-xp.com/taskbarplus!.htm
<anonymous@discussions.microsoft.com> wrote in message 
news:068401c46e46$e1fd5aa0$a601280a@phx.gbl...
>-----Original Message-----
>Hi Keith,
>
>Follow the steps provided.  Only one is listed.  What
seems to be the
>problem?
>
>The loading feature will normally be in the right pane
of the following keys
>and will usually refer to the file name of the threat.
Check these keys for
>suspicious entries:
>
>HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersi
on\Run
>HKEY_CURRENT_USER\Software\Microsoft\Windows
NT\CurrentVersion\Windows
>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVers
ion\Run
>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVers
ion\RunOnce
>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Windows
>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows
NT\CurrentVersion\Winlogon
>
>However, in this case:  Delete the entry from here:
>HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVers
ion\Run
>
>-- 
>All the Best,
>Kelly
>
>Microsoft-MVP Windows® XP
>2004 Windows MVP "Winny" Award
>
>Troubleshooting Windows XP
>http://www.kellys-korner-xp.com
>http://www.kellys-korner-xp.com/xp_tweaks.htm
>
>Taskbar Repair Tool Plus!
>http://www.kellys-korner-xp.com/taskbarplus!.htm
>
>
>"Keith" <anonymous@discussions.microsoft.com> wrote in
message
>news:059a01c46e37$fca03170$a601280a@phx.gbl...
>>I have the Backdoor.trojan virus. Norton will not touch
>> it. I went to Symantic home page on how to remove it,
But
>> can't get rid of it. Now I can't get on the internet
>> unless I change users. I can access my email and icq,
but
>> internet explorer will not work unless I change users.
>> Any idea on how to remove the virus??
>> THANKS
>
>
>.
>
Kelly,
What exactly do I delete? I can see nothing the those
keys that has anything to do with Backdoor. Trojan. 

• Next message: Hilary Karp: "Re: bypass .NET logon screen"
• Previous message: Hilary Karp: "Re: Problems with XP Taskmanager and more...."
• In reply to: anonymous_at_discussions.microsoft.com: "Re: Backdoor.Trojan"
• Next in thread: Plato: "Re: Backdoor.Trojan"
• Messages sorted by: [ date ] [ thread ]

• Windows
• Science
• Usenet

• Archive
• About
• Privacy
• Search
• Imprint