i`m having prob with trojan.bookmaker.gen

Discussion in 'malware problems & news' started by raluka, Jul 18, 2004.

Thread Status:
Not open for further replies.
  1. raluka

    raluka Registered Member

    Joined:
    Apr 27, 2004
    Posts:
    1
    Location:
    bucharest
    I`m having this trojans and i don`t know how to get off..i try with norton but he coudn`t fix or delete him..pls helpundefinedundefined
     
  2. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,349
    Location:
    The Netherlands
    I suggest you start by doing the following:

    Download the latest version of Ad-Aware at http://www.lavasoftusa.com/support/download/

    After installing AAW, and before running the program, you NEED to FIRST update the reference file following these instructions.

    Now do the following:

    - Under Ad-aware 6 > Settings (Gear at the top) > Tweak > Scanning Engine:
    check: "Unload recognized processes during scanning."

    - Under Ad-aware 6 > Settings (Gear at the top) > Tweak > Cleaning Engine:
    Check: "Let Windows remove files in use after reboot."

    Press "Scan Now"

    - Check option "Use Custom scanning options"
    - Check option "Activate In-Depth Scan"
    - Press "Select drives\folders to scan"
    - Select the active partition which is usually C:

    Now press "Next" to let Ad-aware scan your drives...
    It will find a number of "bad" files and registry keys.
    Right-click in that pane and choose "select all"

    Now press "Next" again.
    It will ask you whether you'd like to remove all checked items. Click OK.

    Finally, close Ad-Aware, and reboot.
    That ought to get rid of most of your spyware.

    When you've done all that, go to https://www.wilderssecurity.com/showthread.php?t=12516 and download Hijack This.

    Unzip to a folder other than your Desktop or the Temp folder, doubleclick HijackThis.exe, and hit "Scan".

    When the scan is finished, the "Scan" button will change into a "Save Log" button.
    Press that, save the log somewhere, and please show us its contents.

    Most of what it lists will be harmless or even required, so do NOT fix anything yet.
    Someone here will be happy to help you analyze the results.
     
  3. clueless

    clueless Registered Member

    Joined:
    Jul 19, 2004
    Posts:
    1
    To TonyKlein, I had a bunch of viruses on my PC, I have an up to date Window XP Professional w/Service Pack 1, all Symantec updates, Spybot (that’s how I found my first problem – DSO Exploit in registry key 1004). Now on you advice I got Ad aware 6, that found 23 other problems, 2 registry viruses and one folder. Got rid of the 23 files but kept the registries in tact for now (so I’ll know what I had on my PC before I delete them).

    I have a simple question. I keep getting a live warning from Symantec that I have a Trojan.backdoor virus in the file C:\WINDOWS\SYSTEM32\COMJ.DLL What do I do?
     
  4. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,349
    Location:
    The Netherlands
    Would you please start a topic of your own, instead of 'piggybacking' on this one?

    It's impossible to help two people within the same topic....
     
Loading...
Thread Status:
Not open for further replies.