| Author |
Message |
Freaky
Joined: Oct 16, 2005
Posts: 143
Location: Hull, East Yorkshire, UK
|
 Posted:
Sat Nov 12, 2005 4:57 pm |
|
I got attacked by a virus and loads of bloody trojans, from a folder that was scanned as clear by AVGFree anti virus.
To cut a long story short it fucked up my computer leaving me me with a load of shite, after 4 hrs i am comin to an end and killing these feckers off.
But seems i have deleted an important file that avgfree told me was a virus file.
ibm00004.dll
Now when i start my computer up i get an error message
cannot find C:\Program Files\Common Files\Microsoft Shared\Web Folders\ibm00001.dll
and something else, but i cannot find out how i can get this downloaded, i have tried google, but all i get is info from other people who have been stung with it, but none where foolish enough to delete it...only me.
SO I am asking you all to check your computers and if you have the said file then please forward it on to me paul@p4m2001.karoo.co.uk.
many thanks |
_________________
 |
|
|
|
|
|2es-Chaos_King
Joined: Oct 13, 2005
Posts: 723
|
| Posted:
Sat Nov 12, 2005 5:18 pm |
|
ibm00001.dll is part of the trojan that hijacked your computer.
i lifted this from the Sophos security site:
Troj/Delf-LJ is a password stealing Trojan for the Windows platform.
When Troj/Delf-LJ is installed the following files are created:
<Common Files>\Microsoft Shared\Web Folders\ibm00001.dll
<Common Files>\Microsoft Shared\Web Folders\ibm00001.exe
<Common Files>\Microsoft Shared\Web Folders\ibm00002.dll
The file ibm00001.exe is detected as Troj/Torpig-C. The files ibm00001.dll and ibm00002.dll are also detected by Sophos as Troj/Delf-LJ. The DLL files contain functionalities to access the Internet, download, install and run new software, disable other applications and capture keystrokes.
The Trojan attempts to collect email and server password information, and submit the information via HTTP.
The following registry entries are created to run ibm00001.exe on startup:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
Shell
<Common Files>\Microsoft Shared\Web Folders\ibm00001.exe
HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon
Shell
explorer.exe "<Common Files>\Microsoft Shared\Web Folders\ibm00001.exe"
To read it all go here http://www.sophos.com/virusinfo/analyses/trojdelflj.html |
_________________
 |
|
|
|
|
Freaky
Joined: Oct 16, 2005
Posts: 143
Location: Hull, East Yorkshire, UK
|
| Posted:
Sat Nov 12, 2005 5:20 pm |
|
AHA so i am not missing something important then, but the message is annoying when i start up computer, i have turned it of in msconfig but still get message.
Thanks for helps guys |
_________________
|
|
|
|
|
|2es-Cyrus_The_Virus
Joined: Jul 02, 2005
Posts: 1414
|
| Posted:
Sat Nov 12, 2005 5:22 pm |
|
One thing i will say is if ur using Internet Explorer ditch it and get Firefox, much better and u don't get any viruses or spyware. Also get Mcafee  |
_________________
 |
|
|
|
|
Guest
|
| Posted:
Sat Nov 12, 2005 5:51 pm |
|
yip i have always used iexplorer, nver touched firefox. wouldnt know where to begin, i heard there is alot of settings you have to change once installed to speed it up or something....i dunno |
|
|
|
|
|
Freaky
Joined: Oct 16, 2005
Posts: 143
Location: Hull, East Yorkshire, UK
|
| Posted:
Sat Nov 12, 2005 5:53 pm |
|
that was me...lol, i delted my internet temp files, didnt notice i was logged out |
_________________
|
|
|
|
|
|2es-mrix
Community Founder
Joined: Jun 30, 2005
Posts: 2547
|
| Posted:
Sat Nov 12, 2005 6:13 pm |
|
I used to run AVG free for a few years and myself run into problems at times with it. If you are looking for or would like to try another free program its called Avast and I have used it for well over a year with no problems at all much better that AVG in my eyes.
this is the direct download link http://files.avast.com/iavs4pro/setupeng.exe
and the website is here...... http://www.avast.com/
I know many that use this great free anti virus program and have no problems with it!
Cheers
|2es-mrix |
_________________
 |
|
|
|
|
|2es-Cyrus_The_Virus
Joined: Jul 02, 2005
Posts: 1414
|
| Posted:
Sat Nov 12, 2005 6:58 pm |
|
Its quicker then IE even without the lil changes u can make which are easy enough  |
_________________
|
|
|
|
|
Kaos
Joined: Sep 21, 2005
Posts: 48
Location: UK - Brighton
|
| Posted:
Sat Nov 12, 2005 7:02 pm |
|
I highly recommend firefox as well it's a lot better  |
_________________
 |
|
|
|
|
SoulCruiser
Joined: Aug 08, 2005
Posts: 309
Location: Yorkshire
|
| Posted:
Wed Nov 16, 2005 11:16 am |
|
I have used AVG since 1994 and tbh had no problems with it at all.
I have an entire network protected at work with it and it works fine (ok its the pro version)
But at home I used the Free version until last Feb when I upgraded to the pro version. I never had any problems with it though.
I use AVG and, Zone alarm & Microsofts' new Anti-spyware which is still in beta and have had no problems. But I do know some that have reported problems. Its all down to what your experiance is.
What you need to do Freaky is beat the dude that sent you the files in the first place  |
_________________
Favorite Book: Lion taming the hard way.. By Claud Balls |
|
|
|
|
Kaos
Joined: Sep 21, 2005
Posts: 48
Location: UK - Brighton
|
| Posted:
Wed Nov 16, 2005 3:26 pm |
|
I also use all the programs Soul listed and I've not had any major problems |
_________________
|
|
|
|
|
|2es-Cyrus_The_Virus
Joined: Jul 02, 2005
Posts: 1414
|
| Posted:
Wed Nov 16, 2005 3:54 pm |
|
I did use Zonealarm but it wouldnt work with my network so i ditched it, plus i've heard about loop holes in Zonealarm that are easy for hackers to get into. i use Outpost firewall now |
_________________
|
|
|
|
|
parkway
Guest
|
| Posted:
Wed Nov 16, 2005 7:17 pm |
|
I use firefox i couldnt go back to IE now, the tab feature is the 8th wonder of the world, well ninth parkway is the 8th.
What are the settings to make it faster cyrus ive never changed mine, also that firewall you use is it any good i got mcafee but thinking about going to NOD32 |
|
|
|
|
|
|2es-MooK
Joined: Jul 01, 2005
Posts: 498
Location: Watching You
|
| Posted:
Wed Nov 16, 2005 7:58 pm |
|
After speaking with cyrus and parkway after reading this post ive now got firefox works great loads this website twice as fast much better |
_________________
 |
|
|
|
|
|2es-Cyrus_The_Virus
Joined: Jul 02, 2005
Posts: 1414
|
| Posted:
Thu Nov 17, 2005 12:35 am |
|
|
|
|
|
|
|
Welcome to |2esurrection Mature 20+ Gaming Forums, You are not logged in. If you have not registered yet, please click here. Alternativly log into your account now.
