Renegade Public Forums
C&C: Renegade --> Dying since 2003™, resurrected in 2024!
Home » Technical Support » Other » Generic worm BAF + BAG
Generic worm BAF + BAG [message #254650] Wed, 18 April 2007 22:58 Go to next message
puddle_splasher is currently offline  puddle_splasher
Messages: 595
Registered: May 2006
Location: Scotland, UK
Karma: 0
Colonel
My wife has 2 worms that have been quarantined by AVG. Generic worm BAF + BAG.

Both are isolated but unhealable.

I googled the worm and ended up at the Sophos website, followed the repair to the letter but the worm is still there.

Where in the registery will I find the worm? Do I use "regedit"?

Something is causing major lag, unopenable anti-virus and I.E. to freeze.

Virus scans are clean as are spyware. Both have been run in safe mode. As soon as you go back to normal then the above faults still exist.

O.S. is XP-pro.

[Updated on: Wed, 18 April 2007 22:58]

Report message to a moderator

Re: Generic worm BAF + BAG [message #257008 is a reply to message #254650] Thu, 03 May 2007 10:04 Go to previous messageGo to next message
Jerad2142 is currently offline  Jerad2142
Messages: 3811
Registered: July 2006
Location: USA
Karma: 6
General (3 Stars)
Sometimes the best thing to do is just press that F10 (or F11) Key on start up and start over.

Re: Generic worm BAF + BAG [message #257253 is a reply to message #254650] Fri, 04 May 2007 09:51 Go to previous messageGo to next message
Ryu is currently offline  Ryu
Messages: 2833
Registered: September 2006
Location: Liverpool, England.
Karma: 0
General (2 Stars)

Puddle, The worm could be stopped by deleting it's registry entry's, Also, Start >> Run >> msconfig >> Startup tab, and take it off her start up. (assuming it's her pc.)

AVG is by far the worst anti-virus iv'e seen, Use Norton or Nod32.

If you add me on msn (in my profile) I could give you more assistance. Or just format her pc.


Presence is a curious thing, if you think you need to prove it... you probably never had it in the first place.
Re: Generic worm BAF + BAG [message #257256 is a reply to message #254650] Fri, 04 May 2007 10:57 Go to previous messageGo to next message
AmunRa is currently offline  AmunRa
Messages: 574
Registered: September 2005
Location: Lilburn, Georgia
Karma: 0
Colonel

Norton = sux
nod32 = <3
Re: Generic worm BAF + BAG [message #257266 is a reply to message #254650] Fri, 04 May 2007 11:45 Go to previous messageGo to next message
CarrierII is currently offline  CarrierII
Messages: 3804
Registered: February 2006
Location: England
Karma: 0
General (3 Stars)

Norton provides reasonable protection at far too much of a cost in terms of startup time and proceser time that it nicks, not to mention you can uninstall Norton, use the "Norton removal tool", reinstall windows (Repair install) and it's still there!


Renguard is a wonderful initiative
Toggle Spoiler
Re: Generic worm BAF + BAG [message #257403 is a reply to message #254650] Sat, 05 May 2007 08:19 Go to previous messageGo to next message
Ryu is currently offline  Ryu
Messages: 2833
Registered: September 2006
Location: Liverpool, England.
Karma: 0
General (2 Stars)

Yeah, But Norton defends your pc from basic attacks, Unlike AVG.

I do recommend Nod32 more, tho.


Presence is a curious thing, if you think you need to prove it... you probably never had it in the first place.
Re: Generic worm BAF + BAG [message #257650 is a reply to message #257403] Mon, 07 May 2007 01:05 Go to previous message
puddle_splasher is currently offline  puddle_splasher
Messages: 595
Registered: May 2006
Location: Scotland, UK
Karma: 0
Colonel
Sophos found it and repaired the worm.

Can someone supply a link "how to reformat Windows XP" when the OS was pre-installed?

System restore would not work on any date, probably due to the nature of the worm. Its purpose is to attack anti-virus programmes.

For the moment it seems that her PC is safe. It took a few attempts in DOS with Sophos to attain the results.

Thanks for the help, all that replied.

ps. It was not in the start-up folder @ msconfig and I could not find it in the registry. Possibly because I did not know where to look.

[Updated on: Mon, 07 May 2007 01:10]

Report message to a moderator

Previous Topic: Anyone else has this problem with the C&C3 Demo?
Next Topic: Moniter Shaking.
Goto Forum:
  


Current Time: Tue Dec 03 11:03:16 MST 2024

Total time taken to generate the page: 0.00688 seconds