Tech Support Guy banner
  • IMPORTANT: Only authorized members may reply to threads in this forum due to the complexity of the malware removal process. Authorized members include Malware Specialists and Trainees, Administrators, Moderators, and Trusted Advisors. Regular members are not permitted to reply, and any such posts will be deleted without notice or further explanation. Notice
Status
Not open for further replies.

i dunno if its a virus or not :(

1K views 5 replies 4 participants last post by  Kento 
#1 ·
when i start up my computer there is thing in the task bar which says "downloads" and when i double click on it it goes to the other side of the task bar. it starts off on the right.

also i there was a link to my shortcuts folder in the start menu, which wasnt there before. and in my shorcuts folder on my desktop there is a folder called gozilla downloads, which wasnt there before either.

i un-installed gozilla but the donloads thing in the task bar is still there.

the dowloads thing is NOT in the running task thing eg: ctrl/alt/del
i also had a trojen called "backdoor somthing" but my anti-viruses found and cleaned it, but wait theres more............i also got an e-mail that my isp warned me about and promptly deleted it, please help (no pun intended)
 
#2 ·
Download Rmbox's Rx-pack from the link below. Unzip it and run the StartupLog.com file. Copy and Paste the contents of the StartupLog.txt file here (not stubbpaths.txt)

That way we can have a good look at what is being run at startup and where it might be coming from.

http://home.earthlink.net/~rmbox/Reticulated/Toys.html

It sounds like it was associated with Go!Zilla but didn't get uninstalled. Since I haven't used it myself, I can't say for sure at this point.
 
#4 ·
i pulled it onto the desktop and it was just one of the task bar holdery thingo and i deleted it, but i or anyone in my house werent on the comp to change anything around so im thinking that the trojen even though i hav deleted it has given acsess to my comp to someone, and they hav changed stuff? maby.


anywhay tnx for the touble.
 
#5 ·
Okedoke.

Anytime you think your system has been infected by a trojan -- and if your antivirus cleaned one, you were -- it's a good idea to change all your critical passwords.

What you deleted was probably a shortcut. The file it was associated with may still on the system; although it is not running and poses no threat, it might have been a good idea to find out what it was. If you right click on any icon on your quicklaunch bar and select "properties", you will see a "target" location which specifies where the original executable file is or was.

In this case it was probably for Go!Zilla and simply didn't get deleted with the uninstalll, so I don't think it should be any real concern.

HKEd: doesn't look like you missed much :)
 
#6 ·
By the way, if you uninstalled Gozilla then remove the spyware it installed. Ad-aware should remove it. www.lavasoftusa.com

If it finds Newdotnet then I suggest you contact the makers of it and ask for complete removal info and they'll send you precise removal instructions for getting rid of it. The uninstall from add/remove may not work to get rid of it so you may need those instructions. support@new.net Or if you would rather a technician walk you through the procedure over the phone you can call them at (626) 229-7800, Monday through Friday between 8am and 5pm Pacific Standard Time.
 
Status
Not open for further replies.
You have insufficient privileges to reply here.
Top