Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Search Search
Search for:
Tech Support Guy > > >

Test-dummy

(New)
(!)

don pryor's Avatar
don pryor don pryor is offline
Member with 83 posts.
THREAD STARTER
 
Join Date: Sep 2002
Location: Augusta County, Virginia
05-Jan-2005, 07:09 PM #1
Question Test-dummy
I have a Trojan or something sitting in my Boot files and I can't remove it. It appears in the Registry in HKEY_Current_User after Software. It's titled TEST-DUMMY and has a sub-category titled Test-Resident. I've used Spybot S&D, Hi-Jack This, Ad-Aware, Spyware Blaster, MicroTrend.com Scan and it doesn't show up. I can't use Panda Scan because something in my system makes it freeze after the files are downloaded and I press Start.

I went thru all my CSLID's, one by one looking for it but it didn't show up. It only shows up after I boot up and once I delete it it stays gone until the next boot. How do I get into my Boot files to find this annoying SOB and delete it permanently? Thank you, Don Pryor
Byteman's Avatar
Byteman   (Bill) Byteman is offline Byteman is authorized to help remove malware. Byteman has a Profile Picture
Moderator & Malware Removal Specialist with 17,404 posts.
 
Join Date: Jan 2002
Location: NY
05-Jan-2005, 07:11 PM #2
hi, Do you have Spybot's TeaTimer feature running...that may create something like that...

Ah, here is a thread that shows you what I mean:

See Post#9 by Bubba

http://www.wilderssecurity.com/showthread.php?t=32823

Last edited by Byteman; 05-Jan-2005 at 10:31 PM..
don pryor's Avatar
don pryor don pryor is offline
Member with 83 posts.
THREAD STARTER
 
Join Date: Sep 2002
Location: Augusta County, Virginia
06-Jan-2005, 01:31 AM #3
TEST-DUMMY Solved
Thank you Byteman! It was TeaTimer. Would TeaTimer also prevent Pandasoft Scan from scanning after all the files had downloaded? Don
Byteman's Avatar
Byteman   (Bill) Byteman is offline Byteman is authorized to help remove malware. Byteman has a Profile Picture
Moderator & Malware Removal Specialist with 17,404 posts.
 
Join Date: Jan 2002
Location: NY
06-Jan-2005, 01:52 AM #4
Yes it may have> best idea is to temporarily turn it off before you need to make changes, several programs that monitor Registry changes will prevent those changes.

I grabbed this somwhere:

Resident
""TeaTimer"" feature monitors crucial processes on your machine. It
immediately detects known malicious processes wanting to start and
terminates them. In addition, TeaTimer detects, when something wants to
change some critical registry keys. It can protect you against such changes
giving you an option to "Allow" or "Deny" the change.""

it might conflict with online scans. I have seen advice to turn it off during AdAware scans too.

""First, right click on the TeaTimer resident icon in the lower right taskbar. Click exit. With TeaTimer running, it can prevent HJT from performing proper fixes sometimes. ""
__________________
Mung (computer term), the act of making several incremental changes to an item that combine to destroy it
Donate directly to help the site TSG Library
TSG's Welcome Guide- Tips, Rules, How to use TSG and more!

Last edited by Byteman; 06-Jan-2005 at 01:59 AM..
don pryor's Avatar
don pryor don pryor is offline
Member with 83 posts.
THREAD STARTER
 
Join Date: Sep 2002
Location: Augusta County, Virginia
06-Jan-2005, 10:44 AM #5
TEST-DUMMY Closed
Thank you again Byteman!! I had no knowledge of "why" or "what" Teatimer did. Your information will prove use to me and Those whom I will share this knowledge with. Don

It is said that when we are born our minds are Tabula Rasa, and our knowledge of the Universe and its myriad functions is as a grain of sand on the beach of infinity. At we enter our twilight years, the vast amount of knowledge we have accumulated enroute is equivalent to a grain of sand on the beach of infinity. Thank you, Don
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.


(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!




Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


WELCOME
You Are Using: Server ID
Trusted Website Back to the Top ↑