I got two Trojan horses with the name JS/Exploit-BO.gen and file name ad4[1].htm and ad4[2].htm. :wht: And I can’t delete, clean them up or put them in quarantine!! :'( When I tried these three options I got the message that I had to look of the files were protected for writing. So I followed the given path and it seemed that they weren’t on my computer but on the internet and the site/file couldn’t be found (gladly???). I am already busy with scanning my computer but nothing has been found so far. I really never had something like this before and really don’t have an idea what to do.

Before these two Trojan horses I got another one, but my anti-virus program (McAfee) deleted it immediately. When I got the other two Trojan horses all my running programs and opened internet windows didn’t response anymore so I had to shut them down, with the fact that the not saved things would be lost. :sad:

My computer seems to function well now, no problems anymore so far, but I really like to know if I should be worried and if I can something of about this. So if anyone has a idea what I can do, I really would appreciate it very much. Thank you in advance. :)

Edit: Virus scan is completed and there are no infected files detected. :?

Edit2:
Alright I have found two updates which might help me with the removal of this Trojan horses, but when I download them they ask me in what program I like to open it. And since I really don’t know anything about computers, I really don’t have a clue which program I must choose. :shy:
This is the link where I found the updates:
http://www.mcafee.com/apps/downloads/security_updates/dat.asp
So could maybe someone please tell me which program I have to choose for these updates?

It appears you can download it anywhere on your computer. I don't have McAfee, but I'm assuming that once you download the info. you open it up & go through the install process. I would give that a try.

If you have a Windows computer (meaning not a Mac) you would download the first one : "dat-4949.zip (Windows & Netware)" however if yu computer says on it it has "Intel" (a very visible logo on your computer) you would download this one: "4949xdat.exe(Windows-Intel)"

I have Trend Macro PC-cillin (http://www.pccillin-us.com/areview/pc-cillin.html?OVRAW=Macro%20Trends%20PC%20Cillin&OVKEY=pc%20cillin&OVMTC=advanced) it only costs $50 a year & worth every penny. It grabs everything & updates almost daily... sometimes a couple times a day. Sometimes members get renewal discounts. I recommend this one b/c I've been using it for 8 years now & have never had a Trojan get through & cause damage. It's great security. If this is expensive to you. I would research into a better one. It seems yours is not strong enough. I'm so sorry to hear you had an issue. I'm sure that was scarey.

I will give you a bit more of information. Macro Trend keeps a running list of trojan infos HERE (http://www.trendmicro.com/vinfo/virusencyclo/default.asp) I'm not sure if you will find the ones you just struggled with, but you can look.

Let us know if you have any more problems. Sorry again about this problem.

I hope you can find something in this ihfo helpful. :(

Sorry to hear that Adventure.
I would look inside your anti-virus program, is ther any update button? Because a lot of programs will update themselves, you dont have to download any extra files.
I am using AVG Anti-Virus and it is updating itself every morning. Anti-Virus must be updated

@OneBun
I have windows 2000 and downloaded and installed the extra update, but it is not helping me. I have looked at the link you have given and I have found my Trojan horse, but it doesn’t give me any more information that I already had found. It only confirms what I already knew. But one thing is for sure it could have been a lot worse.

I will consult together with my hubby about switching over to Trend Macro PC-cillin. Money isn’t the issue and if it is indeed that great like you said, it really is worth every penny.

@GamersHood
Yes, McAfee updates itself automatically, but I don’t know how many times a day, but at least once a day looks logic to me. After the Trojan Horse I manually looked for updates, but no updates were found. Just did it again and still no new updates.

@Both
Thank you both very much for you effort to response to my post. I think the only thing I can do now is just hope for the best and get an expert to look at it asap. Thank you both very much again, I really, really appreciate this. :)

I wish you the best with it all. I hope it all works out for you. I wish i knew how to help more... sorry :sad:

I really can’t believe it but I haven’t Trojan horses on my computer!!! :D That is why they could be traced, not even in the safe modus. They were destroyed immediately but for some reason I got the messages that they infiltrated my computer. I am so relieved. :D OneBun and Gamershood, thank you both very, very much again for caring and trying to help me. :hug2:
I am so happy!!! :D :leb:

That is awesome news! I'm so glad everything's fine for you now! :D

My spyware software detected this thing - Antivirgear - this morning. Been up all night trying to get it out of registry but it keeps coming back. From what I have been able to research its caught up in my System Restore so its copying itself every time I reboot.

If anybody has first hand knowledge on this bugger I would love to know what you did.

Thanks in advance.

No first hand experience, but I've seen different tech/pc forums pointing to these instructions for automated or manual removal:
http://www.bleepingcomputer.com/forums/topic108399.html

I hope that you can get rid of it, good luck!

I know I've heard of this before.
My cousin works with computers so I'll see if he knows anything.

Thank you both for taking the time to respond because I know this is not directly a GH topic. This has proven to be a snapsnot of pure American Capitalism at it best/worst. So far I have dowloaded 5 "free" programs that tell me they have found the problem. However to remove the problem requires a modest 30 or 40 dollar registration fee.

I am going to wait another 2 days or so before attempting the manual removal as outlined on the help sites. We are going to print them out at the office tomorrow as our little printer doesn't have a lot of ink. Don't know if you glanced at them but they are quite formidable.

Thanks again for your time, RBS

@Mistery You have been a big help. Hopefully a clear resolution will present itself soon. I ain't looking forward to the manual labor..LOL
V

Yes, this one seems to be pretty sneaky, and it's spread in many different files over the system :(
Therefore the removal is difficult... I wish I could help more... :S
Perhaps it would be even better to get help from someone experienced with this kind of stuff, if you're not adept at removing such malware.
I still wish you good luck! :hug2:

Thanks to my internet service provider I no longer have this malware. I use ATT-Yahoo and they sent me an update to the free software that came with signing up with their DSL service.

My advice to anyone with a similar problem is check with your provider first and you might find a nice person willing to help you at no charge.

OK, I have a virus, and it just goes ~~~~~~~~~~~~~~~~~~~~~~~~~~~~ randomly..............................
And it will also go like,.......... type "This looks like you :D *URL goes here"
Only instead of "*URL goes here*", there is a link.
DO NOT CLICK THIS LINK BECAUSE IT WILL GIVE YOU A VIRUS.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~ ~~~~~~~~~~~~
~~~~~~~~~~~~~~~~~~~~~~~~~~~~

I have renamed this thread to a more general title than it was, so that all problems with computer viruses and malware can go here.

Humphry, have you been able to get rid of that virus :?

the same thing happened to my bro on MSN. i couldn't click any link because they are ALL viruses but its been fixed a long time ago with my old computer. this is different though so maybe if you get help from a computer virus solver your virus will be gone.

A virus :o

I think u best go with making it so everything needs to be approved by u to go through.

I cant get viruses on my computer because the second it gets on my computer it gets no passage :)

Did it come through MSN?

They send you this kind of virus in MSN. It's not that they want to, but the virus tries to multiply itself, by sending an invitation to accept a file to all your MSN contacts. Do not accept it. If you have, then try to get rid of it with Kaspersky. If you fail, then I'm afraid you're gonna have to format your entire PC. :sad:

:o I wonder if i have it?

Besides i wonder what the virus is?

Yeah I've been getting those files all the time on MSN. :sad:

Invincible if you didn't press accept then you won't have that virus :)

accept to who, anyone?

I mean aslong as you don't press accept to the files with the virus...the ones that say "I found this pic it looks like you......"

ok :)

Luckily i never get them things :D

Well, I was on my computer last night, and it seems I have a couple viruses, that my Trend Micro Anti Virus can find, but can't quarantine, nor can it clean the infected files. :( I am not very computer saavy, and could really use some advice. :S It's the TROJ_GENERIC.ADV I think it's multiplying itself. :( I have no clue how to get rid of it. I have read about going into SAFE MODE, but honestly, I have no idea how. :$ I have a Gateway laptop, and use Windows Vista. Any help/advice would be great. :) Thanks in advance.

Hmmm, at the moment I've found a rather bad result for your antivirus software here:
http://www.pcworld.com/article/130912/trend_micro_antivirus_plus_antispyware_2007.html

I'm going to do some search about that malware. Hold on.

EDIT
Gonna PM you :)

Thank you, Mistery! I renewed it back in March, and it's the Trend Micro Antivirus Plus Anti-Spyware 2008. :)

Okay, I've sent you some more detailed information. :)

But for those who might have the same problem:

All sources that I've read so far, assume that this is a "false positive" (that means that Trend Micro reports a false alert about a non-malicious file on your pc). This has probably to do with a wrong update of the virus database. This happens only with Trend Micro, no other antivirus software. An expert has posted on a trojan forum that this problem seems to have emerged only yesterday, and that they could even reproduce it on a completely new computer that had for sure no malware on it.

Several sources recommend to just wait for the next virus database update that should fix this problem of the false alert - Micro Trend support is reportedly notified about this problem.


(I cannot guarantee the correctness of the information above, it's just a summarization of information that I've found during my research on the internet about this problem)

Thank you so much for all your research, and information. :hug2: Very informative, and it seems to have gone away with the most recent update of my antivirus definitions. :)

I know this thread hasn't been responded to for a while but I just want to warn everyone about the Conficker worm :)
for more info: http://www.microsoft.com/protect/computer/viruses/worms/conficker.mspx

P.S.
if you're blocked going to microsoft you might have the Conficker worm. THANKS!