Coffeehouse Thread

12 posts

Forum Read Only

This forum has been made read only by the site admins. No new threads or comments can be added.

Help!

Back to Forum: Coffeehouse
  • User profile image
    Lloyd_Humph

    Well, thanks to AVG for notifying me of the 4 virii I had on myPC. But  also according to AVG, they've been there since March... so not so much of a thanks.

    They haven't really bothered me, until I decided to run a scan today.

    I've got:
    Photo Sharing and Video Hosting at Photobucket
    Generic Forum ImageGeneric Forum Image

    I'm worried about the first one, because after asking about (thanks Steve Wink) It doesn't look like I can delete svchost.exe, because it's a "critical system file".

    Anybody care to elaborate on AVGs "helpful"-ness. It's "not healable" (none of them are, apart from the second, which still refuses to be healed, i get an error) so what can I do?

    If Blackberrys are addictive cellphones, Channel9 is the ultimate addictive website.
    Last modified
  • User profile image
    Cannot​Resolve​Symbol

    Reinstall Windows.

  • User profile image
    littleguru

    CannotResolveSymbol wrote:
    Reinstall Windows.


    It's not required here. It's a fake svchost.exe (look at the directory) and the other two are only in restore points... He can safely delete all the viruses...

  • User profile image
    Xaero_​Vincent

    CannotResolveSymbol wrote:
    Reinstall Windows.


    Wow... great expert advice. Perplexed

  • User profile image
    Lloyd_Humph

    CannotResolveSymbol wrote:
    Reinstall Windows.


    a) not an option, currently, but I'm going to sometime next year (I need an external HDD to backup first).
    b) problem solved


    c) anybody know what Dropper.Agent.CBV is? Once again the ever helpful AVG console tells me nothing I need to know...

    If Blackberrys are addictive cellphones, Channel9 is the ultimate addictive website.
    Last modified
  • User profile image
    Cannot​Resolve​Symbol

    Xaero_Vincent wrote:
    
    CannotResolveSymbol wrote:
    Reinstall Windows.


    Wow... great expert advice.


    Once you're infected, it's the only way to know your system is clean.

  • User profile image
    littleguru

    CannotResolveSymbol wrote:
    
    Xaero_Vincent wrote:
    
    CannotResolveSymbol wrote:
    Reinstall Windows.


    Wow... great expert advice.


    Once you're infected, it's the only way to know your system is clean.


    ... or you have UAC running and it never was disabled Smiley

  • User profile image
    Cannot​Resolve​Symbol

    littleguru wrote:
    
    CannotResolveSymbol wrote:
    
    Xaero_Vincent wrote:
    
    CannotResolveSymbol wrote:
    Reinstall Windows.


    Wow... great expert advice.


    Once you're infected, it's the only way to know your system is clean.


    ... or you have UAC running and it never was disabled


    If a Trojan has made its way into C:\windows\system32, obviously it was elevated by UAC at some point.  The trojan could have done anything else at that point, like install a rootkit or a keylogger or modify AVG so that it can't detect some more malicious software that the trojan downloaded.

  • User profile image
    littleguru

    CannotResolveSymbol wrote:
    If a Trojan has made its way into C:\windows\system32, obviously it was elevated by UAC at some point.  The trojan could have done anything else at that point, like install a rootkit or a keylogger or modify AVG so that it can't detect some more malicious software that the trojan downloaded.


    Best is not to install an AV at all.. aaaah! It's a good world *waiting for the flaming debate*

  • User profile image
    MasterPi

    littleguru wrote:
    
    Best is not to install an AV at all.. aaaah! It's a good world *waiting for the flaming debate*


    My OneCare beta subscription expired months ago. I'm not sure how effective it is now, but it seems as if I'm not running with any AV (in XP).

    It does feel nicer. Big Smile

  • User profile image
    Dodo

    You can easily erase the files without a problem, anyway. Best way to do it would be booting from the install disk and using the command line.

    Lloyd_Humph wrote:
    c) anybody know what Dropper.Agent.CBV is? Once again the ever helpful AVG console tells me nothing I need to know...
    It's a japanese virus downloader, spreading on file sharing networks as a crack/keygen for several kinds of software.
    It will download a slighly modified and crypted version of the Bagle virus. You seemed to be lucky for your anti virus to be still there. Big Smile

  • User profile image
    Lloyd_Humph

    CompGuy101 wrote:
    
    Dodo wrote:
    You can easily erase the files without a problem, anyway. Best way to do it would be booting from the install disk and using the command line.
    Lloyd_Humph wrote:
    c) anybody know what Dropper.Agent.CBV is? Once again the ever helpful AVG console tells me nothing I need to know...
    It's a japanese virus downloader, spreading on file sharing networks as a crack/keygen for several kinds of software.


    Lulz.

    Lloyd is a pirate.


    Yarr meharites!

    If Blackberrys are addictive cellphones, Channel9 is the ultimate addictive website.
    Last modified

Conversation locked

This conversation has been locked by the site admins. No new comments can be made.