So. . . I tried downloading the full version of a fun typing game called air typer. Wouldn't you know, I failed to scan the .exe file and wouldn't you know, there was a trojan in it, according to AVG.

Now, neither mozilla nor IE can find any websites, nor can MSN messenger log in. When I boot the computer, there is an error message concerning a module that can't be found. . . RunDLL error, it says, and the module in question is located in program files. . . newdot~1.dll, so god knows what the full name is.

Am I looking at a windows re-install, or can this be fixed?

Edit: I tried searching for *newdot*.dll on my wife's computer, and nothing came up. I figured I could just copy it. . . no such luck.

Probably not enough information to tell... but since you can boot, it should be recoverable.

If you have a boot disk/cd, I recommend started from there and running your AV(s).

---

Failing that, or having no idea what I just said, click on "Start"->"Run". Type in "msconfig".

On the right of the tabs up top, click on the services tab (? Doing this from memory). It should be the very right one. Sort by Manufacturer and unclick everything that is already clicked off that isn't microsoft or your videocard. Then click on the 'Startup' Tab. Unclick everything that you don't know what it is, like video cards etc. Remove everything you can - it is fully changable on the next boot so don't be too worried.

Reboot and rerun your virus scanner. Try running IE again. If you can, download Spybot here: http://projects.securitywonks.net/projects/download.php?file=2 (if you don't have it already). If you can't access pages, try dling it and brining it to your computer on a CD...

Ermm... Other than that, need more details. This works with 90% of the stuff I have seen though...

It'll be easier when I'm at home and have enough rights to actually run msconfig >_<

Oh, and...

http://www.neuber.com/taskmanager/process/newdot~2.dll.html

So its not that bad. Probably just need to remove the registry entry.

From another computer... download this, and transfer to your stricken one:
A2 ( A-Squared )
http://www.emsisoft.com/en/

Free version ( cleans only: no online guard )
http://www.emsisoft.com/en/software/free/

After downloading, you'll have to then download the latest updates, naturally.

AV programmes aren't meant to stop trojans.

If the worst comes to the worst, download HiJackThis from anywhere on the web, and generate a report you can submit to the normal malware fora, they will help anyone free, such as:

CCleaner Forums -> Introduction To Anti-Malware & Cleaning (http://forum.ccleaner.com/index.php?showtopic=2347)

TomCoyote Forums -> HijackThis Logs and Spyware/Malware Removal (http://forums.tomcoyote.org/index.php?showforum=27)

Merijn is the best expert around, but doesn't analyse himself, so he provides a list of those who do here:
http://www.spywareinfo.com/~merijn/forums.html (http://www.spywareinfo.com/%7Emerijn/forums.html)

Claverhouse http://intpcentral.com/forums/images/smilies/ninja.gif

Yeah, just a bit of malware. Much to my horror, I realized I had no internet connection and hadn't updated Ad-aware in 341 days. Damn my hide!

But yes, I just had to delete the fscker from the registry.

For the record, I thought this problem would be more difficult to fix.

Having come across this particular piece of malware before, it might be worth doing a bit more research into it to find out what other files are associated with it. From memory there are a number of others that don't tend to get picked up by the anti spyware program's but could still linger around.

If you come across any more, use Hijack this to delete them on reboot, reboot, then remove any entries from that you can find from the registry and check to make sure none come back :)

I'm suprised that AVG didn't pick up on the trojan side of it when you ran the exe/or even just viewed the directory it was in, that would be the normal behavour for AVG

Dunno: AVG is strange, I've had it isolate files in it's vault: then refuse to let me delete them through it's own mechanism...


Claverhouse http://intpcentral.com/forums/images/smilies/ninja.gif

On the other hand it can't screw up your system as Norton can ( or could, according to some. )