Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Generic.Gm Trojan - rdriv.sys again


  • Please log in to reply

#1
PJJ

PJJ

    New Member

  • Member
  • Pip
  • 9 posts
I have an older computer running W2K with AVG, S & D Spybot.
In the process of updating AVG, the system got infected with the rdriv.sys Trojan.

I attempted to repair but succeeded only to keep rdriv.sys from coming back when I stay in Safe Mode.

A system check found the following:

Spybot S & D: Anti-virus and firewall disabled.
WindowsSp2 Update disabled.

AVG: rdriv.sys.

S & D cleaned out all malware, except WindowsSp2 Update. Attempted to clean it out of the registry- did not work.
Also elimnated rdriv.sys entry in the registry.

The infection persists.

Highjacker cannot find the file rdriv.sys.


I do not want to go on the Internet with this machine until the offending file is removed.
My main machine uses OS Linux/Linspire.
Therefore, any and all remedies will have to be transferred from one machine to the other - without going over the Net.
There is no network installed.

Any suggestions, please??
  • 0

Advertisements


#2
Retired Tech

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
Please go here:

Malware Removal Guide

Run all the programmes as advised then post a current Hijack This Log in a new topic in the Malware Forum

For the purpose of accurate malware analysis, Hijack This Logs are only dealt with in the Malware Forum. Posting them anywhere else will result in a delayed response

If you are unable to run any of the programmes, ask for advice in the Malware Forum
  • 0

#3
PJJ

PJJ

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts

Please go here:

Malware Removal Guide

Run all the programmes as advised then post a current Hijack This Log in a new topic in the Malware Forum

For the purpose of accurate malware analysis, Hijack This Logs are only dealt with in the Malware Forum. Posting them anywhere else will result in a delayed response

If you are unable to run any of the programmes, ask for advice in the Malware Forum


  • 0

#4
PJJ

PJJ

    New Member

  • Topic Starter
  • Member
  • Pip
  • 9 posts
Will do so and post results.

Is it safe to access Internet while Trojan is active?
I cannot access the Net in Safe Mode.
  • 0

#5
Retired Tech

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
Viruses becoming part of system restore is a possibility, this results in them being removed by scans then being re-instated when you reboot

Try an online scan

http://us.trendmicro...call/v6.5/?us=2

If you have Spybot, you can turn on tea timer, usually an nuisance, but for this, it wil alert you if anything untoward is on the go

You can continue to surf, though sticking to mainstream sites will be sensible, eg msn.com, Yahoo.com and away from file downloads or unknown sites. You should avoid doing online banking until your PC is clear
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP