|
|
|
 |
|
||||||
 |
CIGAR REVIEWS | CIGAR VIDEOS | INTERVIEWS | CIGAR NEWS | OUR TWO CENTS BLOGS | PUFFCAST | CIGAR FORUMS | PUFF LIFESTYLE | CONTACT |
| ||||||
This is a discussion on I admit defeat within the General Discussion forums, part of the Everything But Cigars category; Yes, it seems that even one as computer savvy as myself can be defeated by viruses. So now I must ...
 |
|
|
LinkBack | Thread Tools |
11-19-2007, 07:52 PM
|
#1 |
|
On the sidewalk
|
I admit defeat
Yes, it seems that even one as computer savvy as myself can be defeated by viruses. So now I must ask for others help to defeat this one. I'll try to describe it as best I can:
In the background, I keep hearing a clicking noise, like a new window is being opened. At some point, I'll start hearing commercials; no window or anything, just sound. The two files that seem to be controlling this is Indt2.sys and ndt2.sys, and both are located in the system32 folder. When I end those processes and delete the files in the system32 folder, the clicking stops and all is fine. But after a restart, the files are up and running again. Also, during boot-up, a "personalizing settings" window pops up the upper left corner to say that something is being configured in C:\WINDOWS\system32\Bifrost\server.exe. I'm thinking that this has to be what is causing the problems. I can locate the server.exe file through windows search, but I can't find the Bifrost folder in system32. Ad-Aware and AVG aren't picking up a single thing, so I have no idea what to do now.
__________________
A-P is still down.... |
|
|
|
11-19-2007, 07:58 PM
|
#2 |
|
Here Sometimes
|
Re: I admit defeat
Do you have "view hidden folders" option checked, if not you won't see all important file stuff.
__________________
Dave Gone for awhile. I WAS ALWAYS TAUGHT TO RESPECT MY ELDERS.... NOW I DON'T HAVE ANYONE TO RESPECT! |
|
|
|
|
11-19-2007, 08:00 PM
|
#3 |
|
On the sidewalk
|
Re: I admit defeat
Yea, I have that checked; the Bifrost folder still won't show though.
__________________
A-P is still down.... |
|
|
|
|
11-19-2007, 08:03 PM
|
#4 |
|
Here Sometimes
|
Re: I admit defeat
Ok, try this start, run, type in regedit, see if it shows that way any where. if so try deleting it there.
__________________
Dave Gone for awhile. I WAS ALWAYS TAUGHT TO RESPECT MY ELDERS.... NOW I DON'T HAVE ANYONE TO RESPECT! |
|
|
|
|
11-19-2007, 08:14 PM
|
#5 |
|
On the sidewalk
|
Re: I admit defeat
Ok, I can kill the folder now, but it still comes back after a restart. Is there anyway to track what has created that file?
__________________
A-P is still down.... |
|
|
|
|
11-19-2007, 08:17 PM
|
#6 |
|
Here Sometimes
|
Re: I admit defeat
If it still comes back, its gotta be in the registry somewhere, usually the above post about regedit will remove all traces of it. Other than that I'm stumpped.
__________________
Dave Gone for awhile. I WAS ALWAYS TAUGHT TO RESPECT MY ELDERS.... NOW I DON'T HAVE ANYONE TO RESPECT! |
|
|
|
|
11-19-2007, 08:39 PM
|
#7 |
|
Maturing Puffer Fish
|
Re: I admit defeat
Try running msconfig to see if you might find that service in the startup?
|
|
|
|
|
11-19-2007, 08:43 PM
|
#8 | |
|
I smoke sub $7.00 cigars
|
Re: I admit defeat
Quote:
__________________
I want to die in my sleep like Grandpa, Not screaming in terror like his passengers!! 
|
|
|
|
|
|
11-19-2007, 08:56 PM
|
#9 |
|
Puffer Fish with many spikes
|
Re: I admit defeat
Check out www.geekstogo.com and head over to the forums
They have tons, and tons or info on Malware removal.
__________________
 Walt White |
|
|
|
|
11-19-2007, 08:56 PM
|
#10 |
|
Puffer Fish with many spikes
|
Re: I admit defeat
yea turn windows restore off... because the virus is using that windows feature which regenerates deleted folders to prevent it from crashing against you. once you turn off system restore and delete the files they should be gone for good and problem solved.. just look online how t turn off system restore cuz i forgot hehe
__________________
 "Look your last upon the Sun""A well chosen cigar is like armor, and is useful against the torments of life" -Zino Davidoff |
|
|
|
|
11-19-2007, 09:05 PM
|
#11 |
|
Huge Puffer Fish packed with spikes
|
Re: I admit defeat
Sounds like a variant of this.
http://www.symantec.com/security_res...151-99&tabid=2 You can start by disabling system restore and killing the process. Then connect to trendmicro and run housecall to see if it can remove it. I didn't check all the charateristics of it but if AVG was already installed on your system it may have been affected by it.
__________________
"Life is what happens to you when you're busy making other plans" - John Lennon "The truly great are never deterred by the truth!" - Anon-y-mouse |
|
|
|
|
11-19-2007, 09:42 PM
|
#12 |
|
On the sidewalk
|
Re: I admit defeat
Killed it! The Bifrost folder had to be deleted through the registry and the Indt2.sys and ndt2.sys files were deleted in safemode. No more annoying clicks! Thanks for all the help guys
__________________
A-P is still down.... |
|
|
|
|
11-19-2007, 09:54 PM
|
#13 |
|
Here Sometimes
|
Re: I admit defeat
__________________
Dave Gone for awhile. I WAS ALWAYS TAUGHT TO RESPECT MY ELDERS.... NOW I DON'T HAVE ANYONE TO RESPECT! |
|
|
|
|
11-19-2007, 10:00 PM
|
#14 |
|
Son of Evil Emperor Zurg
|
Re: I admit defeat
Great job guys! What an aggravating problem to have.
I smile while reading as my Mac and I continue our bit and byte journeys...
__________________
I'll have a cafe, mocha, vodka, valium latte to go please. |
|
|
|
|
11-19-2007, 10:05 PM
|
#15 |
|
Leading Puffer Fish
|
Re: I admit defeat
Now get yourself a decent antivirus. I highly recommend Nod32, worth every penny and not a resource hog like Mcafee or Norton. Oh yeah, get a couple of spam sweeping tools on your machine and run a scan every week.
|
|
|
|
|
| Bookmarks |
| Tags |
| admit , defeat |
 |
||
I admit defeat
|
||
| Thread Tools | |
|
|
