Windows 7 Forums
Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: Anti-Virus G-Data 2011 TotalCare Hangs Please Help


28 Jan 2012   #1

64bit
 
 
Anti-Virus G-Data 2011 TotalCare Hangs Please Help

My pc is scanning virusses with Gdata and stops at 99% it finds virusses but dont remove its i have already run other software's like maleware bytes and superanti spyware they are working only g-data stops what can i do please help me the virusses called i have is win32:Sinowal-LJ
Virus: Exploit.Java.CVE-2010-0840.L

Adres: fgex.secureintl.com
Virus: JS:ScriptIP-inf [Trj] (Engine B)

i still have them on my pc i cant remove when my gdata stops automaticley please help me thanks


My System SpecsSystem Spec
.

28 Jan 2012   #2

Windows 7 Ultimate 64bit SP1
 
 

Hi.


Remove Gdata from your system,download and install Microsoft Security Essentials with windows firewall enable. Update Microsoft Security Essentials and run full scan.


Restart and boot in Safe Mode with networking.


Start,update malwarebytes and run full scan in safe mode.


Start,update superantispyware and run full scan in safe mode.


Read also this Good and Free system security combination.
My System SpecsSystem Spec
28 Jan 2012   #3
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Quote:
Description Win32/Sinowal aka "Torpig" is a family of bot controlled Trojan designed to steal sensitive information including online banking credentials. It transmits harvested data to a remote server via HTTP communication channel. Win32/Sinowal is distributed and installed by the Win32/Mebroot botnet.
This is a "Backdoor Trojan" ...

These are the most dangerous, and most widespread, type of Trojan.
Backdoor Trojans provide the author or ‘master’ of the Trojan with remote ‘administration’ of victim machines. Unlike legitimate remote administration utilities, they install, launch and run invisibly, without the consent or knowledge of the user. Once installed, backdoor Trojans can be instructed to send, receive, execute and delete files, harvest confidential data from the computer, log activity on the computer and more.
If your computer was used for online banking or has credit card information on it, all passwords should be changed immediately to include those used for email, eBay and forums.
You should consider them to be compromised.
They should be changed by using a different computer and not the infected one, if not an attacker may get the new passwords and transaction information.
Banking and credit card institutions should be notified of the possible security breech.

More info can be found below:
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
How to report ID theft, fraud, drive-by installs, hijacking and malware? Security | DSLReports.com, ISP Information
When should I re-format? How should I reinstall?
When should I re-format? How should I reinstall? Security | DSLReports.com, ISP Information
My System SpecsSystem Spec
.


30 Jan 2012   #4

64bit
 
 

Quote   Quote: Originally Posted by panais View Post
Hi.


Remove Gdata from your system,download and install Microsoft Security Essentials with windows firewall enable. Update Microsoft Security Essentials and run full scan.


Restart and boot in Safe Mode with networking.


Start,update malwarebytes and run full scan in safe mode.


Start,update superantispyware and run full scan in safe mode.


Read also this Good and Free system security combination.
Hi i removed my gdata and download microsoft security and did a full scan on normal mode and safe mode with networking notting was found.

then i reboot pc i start malwarebytes and superantspyware in safemode notting was found.

im not sure if the virus is gone i checked my system logfile and ther are alot of wrong stuffes that i not had before after the trojan came like (Ntfs) (Microsoft-Windows-Kernel-Power)

i also check ur link i instaled wot thanks alot for your help what can i do more?

i mean i bought gdata and i have a lisence for a year its a award winner of the best antivirus progams 2011
My System SpecsSystem Spec
30 Jan 2012   #5

64bit
 
 

Quote   Quote: Originally Posted by Jacee View Post
Quote:
Description Win32/Sinowal aka "Torpig" is a family of bot controlled Trojan designed to steal sensitive information including online banking credentials. It transmits harvested data to a remote server via HTTP communication channel. Win32/Sinowal is distributed and installed by the Win32/Mebroot botnet.
This is a "Backdoor Trojan" ...

These are the most dangerous, and most widespread, type of Trojan.
Backdoor Trojans provide the author or ‘master’ of the Trojan with remote ‘administration’ of victim machines. Unlike legitimate remote administration utilities, they install, launch and run invisibly, without the consent or knowledge of the user. Once installed, backdoor Trojans can be instructed to send, receive, execute and delete files, harvest confidential data from the computer, log activity on the computer and more.
If your computer was used for online banking or has credit card information on it, all passwords should be changed immediately to include those used for email, eBay and forums.
You should consider them to be compromised.
They should be changed by using a different computer and not the infected one, if not an attacker may get the new passwords and transaction information.
Banking and credit card institutions should be notified of the possible security breech.

More info can be found below:
How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud?
How to report ID theft, fraud, drive-by installs, hijacking and malware? Security | DSLReports.com, ISP Information
When should I re-format? How should I reinstall?
When should I re-format? How should I reinstall? Security | DSLReports.com, ISP Information
HI thanks alot for the info
but i dont even have a bankpass or a creditcard or a paypal so this trojan came from a site?
My System SpecsSystem Spec
30 Jan 2012   #6
Microsoft MVP

Windows 7 Ultimate 32bit SP1
 
 

Possibly a drive by script ...

Please download TFC by Old Timer TFC - Temp File Cleaner by OldTimer - Geeks to Go Forums and save it to your desktop.
Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista/Windows 7 right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.

Quote:
TFC (Temp File Cleaner) will clear out all temp folders for all user accounts (temp, IE temp, java, FF, Opera, Chrome, Safari), including Administrator, All Users, LocalService, NetworkService, and any other accounts in the user folder. It also cleans out the %systemroot%\temp folder and checks for .tmp files in the %systemdrive% root folder, %systemroot%, and the system32 folder (both 32bit and 64bit on 64bit OSs). It shows the amount removed for each location found (in bytes) and the total removed (in MB). Before running, it will stop Explorer and all other running apps. When finished, if a reboot is required the user must reboot to finish clearing any in-use temp files.
Next, Please follow these steps to remove older version Java components and update.
Updating Java:
  • Download the latest version of Java Runtime Environment (JRE) 7.
    Java SE Downloads
  • Scroll down to where it says "Java Runtime Environment (JRE) 7u2 allows end-users to run Java applications".
  • Click the "Download" button to the right.
  • Check the box that says: "Accept License Agreement".
  • The page will refresh.
  • Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.
  • Close any programs you may have running - especially your web browser.
  • Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
  • Check any item with Java Runtime Environment (JRE or J2SE) in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Java versions.
  • Reboot your computer once all Java components are removed.
  • Then from your desktop double-click on jre-7u2-windows-i586-p.exe to install the newest version.


flush your DNS’s cache
Most DNS clients cache the results of name resolution requests. This speeds up name resolution if multiple lookups are done to the same address, such as is common when browsing the web.
Sometimes a bad DNS entry will be cached and you will need to either flush the DNS cache to get rid of it, or wait up to 24 hours for it to be dropped from the cache automatically.

Right click on Command Prompt and click to 'Run as Administrator'.
Copy/paste ipconfig /flushdns and press the 'enter' key

Now I'd like you to scan your machine with ESET OnlineScan
  1. Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  2. Click the button.
  3. For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    1. Click on to download the ESET Smart Installer. Save it to your desktop.
    2. Double click on the icon on your desktop.
  4. Check
  5. Click the button.
  6. Accept any security warnings from your browser.
  7. Check
  8. Push the Start button.
  9. ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  10. When the scan completes, push
  11. Push , and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  12. Push the button.
  13. Push
My System SpecsSystem Spec
Reply

 Anti-Virus G-Data 2011 TotalCare Hangs Please Help




Thread Tools



Similar help and support threads for2: Anti-Virus G-Data 2011 TotalCare Hangs Please Help
Thread Forum
Kaspersky Anti-Virus 2011 System Security
Solved Norton Anti virus 2011 System Security
What is the Best anti-virus for 2011? System Security
How to Remove Win 7 Anti-Spyware 2011 (Fake Anti-Virus Infections) System Security
How to Remove Win 7 Anti-Spyware 2011 (Fake Anti-Virus Infections) System Security
AVG Anti-Virus Free Edition 2011 System Security
AVG Anti-Virus Free 2011 System Security

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

© Designer Media Ltd

All times are GMT -5. The time now is 04:41 AM.
Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App
  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33