hi im back, amd dont know what to do..(regarding:st.exe,notepad.com,and COUNTER.CAB)

It means unless you have a bunch of data on your hard drive you think you ned to keep, you should reformat your hard drive.


Bruce

 

How did you get infected (and, apparently keep getting infected) to start with? Pete

 

Re: hi im back, amd dont know what to do..(regarding:st.exe,notepad.com,and COUNTER.C

Hi,

The more you give exactnesses, the more we'll be able to resolve your problem.

So just a link for the moment:

http://www.windowsecurity.com/articles/Treating-Infected-Systems.html

Regards

 

Probaly from opening something i wasn't supposed to about... 4-5 months ago. I probaly downloaded about 2 trojan downloaders. I'm trying to be specific as possible =\. Take a look at my other thread about ST.EXE here..
https://www.wilderssecurity.com/showthread.php?t=53480

I scanned it several times with AVG, and NOTHING!
So why was norton telling me this!? I EVEN went in to their locations, and there was NOTHING. Not even when I selected "show hidden files" in safe mode, and in normal mode.

But what i need help with is deleting this folder.. Heres whats inside of it. I cannot get into these folders.
and thanks for the link!

 

Yea you can delete your host file entries but I sure wouldn't if i am running any antispyware program. They make large entries in the host file.
By the time you ran all that crap you could have reformated.
All you need is your drivers, Safed files if any and a copy of SP2 if using XP
If you are daring a copy of your BIOS.
Not as hard as it sounds.
the biggest plus is your system will run faster the it has in along time.
No one can argue that point.
I always feel much safer reformating. How would you know you caught everything with your one program ata time approach?
After the format load your security software right away before connecting to the net. if really parinoid, you could always swap your video card and RAM before reformating.

Bruce

 

Re: hi im back, amd dont know what to do..(regarding:st.exe,notepad.com,and COUNTER.C

Hi,

If there is really an infection:Save sysclean.com and the last virus database (lpt434) on the same folder (C:\Sysclean for instance).

***Direct download of Sysclean:

http://uk.trendmicro-europe.com/file_downloads/common/tsc/sysclean.com

or: http://www.trendmicro.com/ftp/products/tsc/sysclean.com

***Read this (instruction): http://www.trendmicro.com/ftp/products/tsc/readme.txt

***Direct download of the Virus Pattern File (last database):

http://www.trendmicro.com/ftp/products/pattern/lpt434.zip

if it does not work:

http://uk.trendmicro-europe.com/global/file_downloads/common/pattern/opr/lpt434.zip


***Diasble "System Restore",

***Restart the computer on Safe Mode,

***Run Sysclean (double click!),

***Take a look at the report in oerder to know which AV/Trojan has been found.
Save the LogFile.

***Reboot and clean your system (temp files...):

CCleaner is very easy to use: http://www.ccleaner.com/

***If it's difficult to remove any file (in used/access denied):

*Try KillBox (direct dowload): http://www.downloads.subratam.org/KillBox.zip

*Or CopyLock by Noel Danjou: http://noeld.com/programs.asp?cat=misc#CopyLock

Regards

 

hey I downloaded stop kill and tried to delete the folder when rebooting, and standardly but it said the file/folder couldnt be deleted.

I also downloaded sysclean, and it found nothing =D

 

only two reasons you can't delete the folder. Either it is in use or it is write protected.
Can you go to DOS and change the ATTRIBS, then delete it?

 

i don't understand what that means.

i probaly can try...

 

the toolbar folder cannot be deleted.
although, i am clean of any malware. =)

there is *nothing* in the subfolders of "toolbar" because it says 0 KB.
lol. so how is it in use.