Trojan Horse IRC/Backdoor.Flood

Trojan Horse IRC/Backdoor.Flood

Post by Brenda » Thu, 09 Oct 2003 16:54:19



I am running AVG 7 Professional virus checker

My computer has become infected with a Trojan horse
virus - IRC/Backdoor.Flood. It has infected the
following Files
Windows\System PUK1.exe\ACSGFX.DLL Virus Name
IRC/BackDoor.Flood
Windows\System PUK1.exe\AFTPSFX.DLL Virus Name
TrojanHorse IRC/BackDoor.Flood
Windows\System PUK1.exe\ASSFX.DLL Virus Name
IRC/BackDoor.Flood
Windows\System PUK1.exe\MNSFX.DLL Virus name
IRC/BackDoor.Flood
Windows\System PUK1.exe\ntcomm.exe Virus name Trojan
horse Hide Window
Windows\System PUK1.exe\syscab.exe Virus name
IRC/BackDoor.Flood
Windows\System32\CONFIG\SYSTEM.LOG No Virus name.
Status - Can not open Can not check

The first 6 files are defined in status as all "still
Infected"

Can anyone help on how to get rid of this problem I have
tried online virus checkers and they do not enen show
that the virus exists Please help!!
 
 
 

Trojan Horse IRC/Backdoor.Flood

Post by Brenda » Thu, 09 Oct 2003 16:54:19


I am running AVG 7 Professional virus checker

My computer has become infected with a Trojan horse
virus - IRC/Backdoor.Flood. It has infected the
following Files
Windows\System PUK1.exe\ACSGFX.DLL Virus Name
IRC/BackDoor.Flood
Windows\System PUK1.exe\AFTPSFX.DLL Virus Name
TrojanHorse IRC/BackDoor.Flood
Windows\System PUK1.exe\ASSFX.DLL Virus Name
IRC/BackDoor.Flood
Windows\System PUK1.exe\MNSFX.DLL Virus name
IRC/BackDoor.Flood
Windows\System PUK1.exe\ntcomm.exe Virus name Trojan
horse Hide Window
Windows\System PUK1.exe\syscab.exe Virus name
IRC/BackDoor.Flood
Windows\System32\CONFIG\SYSTEM.LOG No Virus name.
Status - Can not open Can not check

The first 6 files are defined in status as all "still
Infected"

Can anyone help on how to get rid of this problem I have
tried online virus checkers and they do not enen show
that the virus exists Please help!!

 
 
 

Trojan Horse IRC/Backdoor.Flood

Post by CPD » Wed, 19 Jan 2005 08:51:02


I am also using AVG v7 and have tried zillions of trojan horse programs.
None remove this IRC.BackDoor/flood.
It has infectected: WINNT\system32\winso.exe.tck\setup.bat.

Any help would be appreciated.


--
CPD
 
 
 

Trojan Horse IRC/Backdoor.Flood

Post by Malk » Wed, 19 Jan 2005 22:54:35


Since you didn't quote any of the original post (and it is no longer
available on my news server), I have no idea what any of the details of
the problem are. "Zillions of trojan horse programs" isn't very
descriptive. Update your antivirus and do a full system scan in Safe
Mode where the av will be able to delete the trojan. If AVG doesn't get
it, download TrendMicro's Sysclean and do the scan in Safe Mode:

TrendMicro's Sysclean is an extensive antivirus tool which has the
advantage of not needing to be installed. It requires two parts - the
scanning engine and the virus pattern files.

1. Create a new folder on your Desktop or the C: drive named something
useful like "Sysclean".
2. Go here and download the two parts of the program to that folder:

http://www.yqcomputer.com/
http://www.yqcomputer.com/

The pattern files will be zipped - extract them with your unzipper (like
WinZip) or if you have XP, you can just open the folder. You need to
put the extracted files in the Sysclean folder you made.

3. Restart your computer in Safe Mode. Get into Safe Mode by repeatedly
tapping the F8 key as the computer is starting up to get to the proper
menu.
4. Go to the Sysclean folder you made and double-click on sysclean.com.
Start the scan. After the scan is finished, look at the log. You may
need to make a note of where any viruses were found if they were not
able to be removed so you can manually delete them.

Malke
--
MS MVP - Windows Shell/User
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"