Right...I think Im onto this, but Im not sure.
I was on MSN and got a message from a friend...something about a greetings card. Like a fool I clicked it. You guessed it...trojan.
This one was called generic2.mdn (I think thats the suffix anyway) and opened up 3 files on my desktop - setup, Tele and another one I cant remember. Thankfully, AVG caught it.
Thinking quickly, I changed my MSN name to DO NOT OPEN ATTACHMENTS FROM ME so only 1 person caught it off me.
Googled for help, found fab advice from here. Heres what I did and I *think* Ive stopped it. Would like some verification, please.
Rebooted. Safe mode. System Restore off. Show all hidden and system files. Task Manager, looked for swchost.exe. Wasnt present. regsvr32 /u C:\windows\system32\pptp16.dll...this just gave me a command error.
Hijack this, looked for 04 HKLM...swchost.exe and 010 Winlogon...pptp16.dll. Neither present. Closed HijackThis.
Checked for C:\windows\system32\pptp16.dll and c:\windows\swchost.exe. Neither found.
AVG found 6 or 7 trojan files. Deleted them.
Back onto desktop. Right click - properties on the setup file. It took me into my Documents and Settings for my login. Found all 3 files. Deleted them. Rebooted.
Deleted MSN. Reloaded MSN. Now AVG checking.
---
The virus hasnt attacked me again, yet. I THINK its done and dusted. Can anyone give me any advice on what I can do to be sure?
Thanks in advance, and thanks to all users and moderators for this fab forum
I was on MSN and got a message from a friend...something about a greetings card. Like a fool I clicked it. You guessed it...trojan.
This one was called generic2.mdn (I think thats the suffix anyway) and opened up 3 files on my desktop - setup, Tele and another one I cant remember. Thankfully, AVG caught it.
Thinking quickly, I changed my MSN name to DO NOT OPEN ATTACHMENTS FROM ME so only 1 person caught it off me.
Googled for help, found fab advice from here. Heres what I did and I *think* Ive stopped it. Would like some verification, please.
Rebooted. Safe mode. System Restore off. Show all hidden and system files. Task Manager, looked for swchost.exe. Wasnt present. regsvr32 /u C:\windows\system32\pptp16.dll...this just gave me a command error.
Hijack this, looked for 04 HKLM...swchost.exe and 010 Winlogon...pptp16.dll. Neither present. Closed HijackThis.
Checked for C:\windows\system32\pptp16.dll and c:\windows\swchost.exe. Neither found.
AVG found 6 or 7 trojan files. Deleted them.
Back onto desktop. Right click - properties on the setup file. It took me into my Documents and Settings for my login. Found all 3 files. Deleted them. Rebooted.
Deleted MSN. Reloaded MSN. Now AVG checking.
---
The virus hasnt attacked me again, yet. I THINK its done and dusted. Can anyone give me any advice on what I can do to be sure?
Thanks in advance, and thanks to all users and moderators for this fab forum