ok....so im not gonna let my friends touch my computer again....

they went to a porn site....i think they downloaded one of those dialers.... and every time it launched..... i erased the file and all its remainders....but now theres a virus i cant erase in docs&settings\user\local settings\temp\

mcafee says its teh virus name Downloader-DC, and i have tried everything i already know about computers to erase it....but it says that it cant.... prolly the files are being used....but processes in the task manager dont have a strange one...

any ideas? Thx :)

DWk

run AVG http://www.grisoft.com it much better than mcaffee or norton IMO, a good virus scanner should not let you do stuff like that, or your friends

or if you have a fast connection you could try housecall, but you still need to get a better resident AV

This (http://securityresponse.symantec.com/avcenter/venc/data/downloader.dluca.c.html) is the only thing Icould find on the Symantec site, there was nothing for "Downloader-DC" :unsure:

try again, about 30 variants
http://search.symantec.com/custom/us/query.html
go here and search for 'downloader'
(check all boxes that apply, i.e., viruses, trojns, vulnerabilities, etc.)

Sounds a nice one mate...get diggimg in that registry.

Mate heres abit more protection you could tri along with you av/firwall.

http://www.diamondcs.com.au/index.php?page=regprot

Also try this (http://www.klboard.ath.cx/index.php?showtopic=56265) and this (http://www.klboard.ath.cx/index.php?showtopic=58636) thread.

BOT

Originally posted by ZaZu@18 November 2003 - 05:23
This (http://securityresponse.symantec.com/avcenter/venc/data/downloader.dluca.c.html) is the only thing Icould find on the Symantec site, there was nothing for "Downloader-DC" :unsure:
i would check to see if its this

the gist of it is that the virus isn't simply cleaned from the system - you need to tinker with the registry, something i don't think anti-virus programs do

Run>Msconfig

Check boot.ini, system.ini, and registry launch sections if u find somin thats not ment to be there, or which refures to the name that the virus is called then untick the box next to it and restart your computer.

Once your comps been restarted run ur virus scanner again and it should be able to delete it now.

If not get a better virus scanner... Most virus scanners would stop it from running and delete it, mcaffie is just shit.

kk i found what the problem was... even though i ran an ad-aware scan first, it deleted 120+ registry keys, files, and other stuff from my pc.... go figure.

heres what i made:

i couldnt delete the files manually or with mcafee.... so i went into the registry and went through most places that virii registry keys are.... i found just one.... so just to be sure i searched for "xxxcam" in the registry and found 2 entries....deleted...

then ran another scan with mcafee and it could delete the files... weird

anyways.... i forgot to mention in my post that the files names were wnk##.exe
## was a number and a symbol.... well anyways it got deleted and now im better :)

thx for the solutions btw... one of the links reminded me of some of the places where the virii put their own entries.

Thx
DWk