https://www.proz.com/forum/safe_computing/26994-need_help_with_unknown_trojan.html
This site uses cookies. Some of these cookies are essential to the operation of the site, while others help to improve your experience by providing insights into how the site is being used. For more information, please see the ProZ.com privacy policy.
Cookie settings

Technical forums » Safe computing »
Need help with unknown Trojan!
Thread poster: Rosseon
Rosseon
Rosseon
Local time: 20:58
Swedish to English
Nov 26, 2004

I'm sorry if this is not the perfect place to post this, but I am desperaqte. I have AVG anti-virus software which detected 5 trojan horses on my laptop and successfully removed 4 of them. The remaing one is still in my WINNT/Systm32 folder and despite searching the net all day so far I'm still at square one. AVG cannot help...so if anyone knows anything about xmorkdvh.exe, which is a Trojan Dialler, I'd be mighty grateful. Please post something or email me asap.

Thanks everyone....... See more
I'm sorry if this is not the perfect place to post this, but I am desperaqte. I have AVG anti-virus software which detected 5 trojan horses on my laptop and successfully removed 4 of them. The remaing one is still in my WINNT/Systm32 folder and despite searching the net all day so far I'm still at square one. AVG cannot help...so if anyone knows anything about xmorkdvh.exe, which is a Trojan Dialler, I'd be mighty grateful. Please post something or email me asap.

Thanks everyone....


rosseon

[Subject edited by staff or moderator 2004-11-26 14:04]Collapse
 
Natalie
Natalie  Identity Verified
Poland
Local time: 21:58
Member (2002)
English to Russian
+ ...

MODERATOR
SITE LOCALIZER
Moving the topic Nov 26, 2004

to the Safe Computing forum
 
Mathew Robinson
Mathew Robinson
United Kingdom
Local time: 20:58
English
Spybot Search & Destroy Nov 26, 2004

Go to http://www.safer-networking.org/en/mirrors/index.html and download Spybot.

The official website for this is www.spybot.info

It's completely free. Download is about 5mb in size, installs in seconds, and finds things missed by NAV, Ad-Aware and The Cleaner.

... See more
Go to http://www.safer-networking.org/en/mirrors/index.html and download Spybot.

The official website for this is www.spybot.info

It's completely free. Download is about 5mb in size, installs in seconds, and finds things missed by NAV, Ad-Aware and The Cleaner.

FYI: If you are using broadband/cable connection, don't panic. These dialler trojans change your modem dialling to use a premium rate number when connecting to the internet (charging extortionate amounts per minute).

[Edited at 2004-11-26 14:48]Collapse
 
Haris Nasibullin
Haris Nasibullin
Local time: 22:58
English to Russian
Regrun Nov 26, 2004

There is such a program called Regrun or Regrun Gold. http://www.greatis.com/security/
In case you will not find a remedy you can use this one which does not allow any program to run if you do not allow to do it.

It is not an antivirus as it is. It scan a disk with all the files which try to run, and ask the user what to do.

Sorry if did not help.
 
Schwabamädle
Schwabamädle
Canada
Local time: 15:58
English to German
+ ...
Hi there Nov 26, 2004

hijackthis is also a good option if above should not work.
Try first the above search and destroy as this is easy to follow. With hijackthis you have to really read the instructions carefully.

I once had a huge problem too and I had to get a computer specialist and he told me to write in my webbrowser

http://xxxxxxxx/uninstall2.exe


the name of this virus... See more
hijackthis is also a good option if above should not work.
Try first the above search and destroy as this is easy to follow. With hijackthis you have to really read the instructions carefully.

I once had a huge problem too and I had to get a computer specialist and he told me to write in my webbrowser

http://xxxxxxxx/uninstall2.exe


the name of this virus (instead of the XXXXXX above). Than a window opend and said do you want to safe or open, than you open regardless of the warning that it could have a malicious code. After another window opens which says uninstall and it you click on that and this bad thing will be history.
you have to know though the exact address of this virus.

http://www.bleepingcomputer.com/forums/index.php?showtutorial=42

Good luck
AndreaCollapse
 
Evert DELOOF-SYS
Evert DELOOF-SYS  Identity Verified
Belgium
Local time: 21:58
Member
English to Dutch
+ ...
Computercops Nov 26, 2004

If any of the above fails, simply repeat your question at
http://computercops.biz/forums.html

Someone over there will certainly help you out.

Very interesting site.
 
Omar Osman
Omar Osman
Local time: 03:58
Member
Somali to English
+ ...
Try this Nov 27, 2004

Also try disabling your System Restore, run the antivirus, the Antihijack (spyboot, Lavasoft or others) once the Trojan/virus is been removed restart your pc and enable System Restore. In most cases it will solve your problem.
Omar
 


To report site rules violations or get help, contact a site moderator:

Moderator(s) of this forum
Maya Gorgoshidze[Call to this topic]
Prachya Mruetusatorn[Call to this topic]

You can also contact site staff by submitting a support request »

Need help with unknown Trojan!


Forum rules
Help and orientation




Wordfast Pro
Translation Memory Software for Any Platform

Exclusive discount for ProZ.com users! Save over 13% when purchasing Wordfast Pro through ProZ.com. Wordfast is the world's #1 provider of platform-independent Translation Memory software. Consistently ranked the most user-friendly and highest value

Buy now! »
TM-Town
Manage your TMs and Terms ... and boost your translation business

Are you ready for something fresh in the industry? TM-Town is a unique new site for you -- the freelance translator -- to store, manage and share translation memories (TMs) and glossaries...and potentially meet new clients on the basis of your prior work.

More info »