Re: iozcumgj.exe
From: Andrew Z Carpenter [Newsgroup Groupie] (azc_at_FILTERcirencester.ac.uk)
Date: 10/04/03
- Next message: jayjwa: "Re: Web Page Hack!!"
- Previous message: Andrew Z Carpenter [Newsgroup Groupie]: "Re: Memory Violation at Kernel 32"
- In reply to: Bill: "iozcumgj.exe"
- Next in thread: Bill Sanderson: "Re: iozcumgj.exe"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Sat, 4 Oct 2003 12:26:03 +0100
> "Bill" <wconsidine@esatclear.ie> wrote in message
> news:0c6e01c38a64$599a1a20$a301280a@phx.gbl...
>
> I have Win 98. I got one of these MS spoof up-dates last
> week. I quickly pressed delete but it was already opening
> an attachment. I ran AVG7 and it quarantined a number of
> system programmes with Sven or Bugbears including
> iozcumgj.exe. They are in the Virus Vault but resisting
> healing and my computer says it cannot run applications
> without iozcumgj.exe. WHAT CAN I DO. HELP
It if automatically opened the attachment, it means your
version of Outlook Express was out of date, as that particular
vulnerability has been fixed for a long time now. We'll
come back to this later.
Firstly, try Symantec's removal tool for Swen, for that is
most likely what has infected your computer:
http://www.symantec.com/avcenter/venc/data/w32.swen.a@mm.removal.tool.html
You can also try the manual removal instructions listed at
the Symantec site, which recommends the following:
Restart the computer.
Do one of the following:
Windows 95: When "Starting Windows 95..." appears on the screen,
press F8. The Windows 95 Startup Menu appears.
Windows 98: As the computer restarts, press and hold down the Ctrl
key until the Windows 98 Startup Menu appears.
-------------------------------------------------------------------
Note: On some computers, a keyboard or other error may appear during
restart as you hold down the Ctrl key. If this happens, then follow
the prompts to press a key to continue (for example, the message may
prompt you to press the Esc key), then immediately press the Ctrl key
again.
-------------------------------------------------------------------
Select "Command Prompt only."
Type the following and press Enter after typing each line:
cd\
cd windows
edit repair.reg
The DOS text editor opens.
Type the following lines into the DOS text editor exactly as shown here:
REGEDIT4
[HKEY_CLASSES_ROOT\exefile\shell\open\command]
@="\"%1\" %*"
[HKEY_CLASSES_ROOT\regfile\shell\open\command]
@="regedit.exe \%1\"
Press Alt and F at the same time to access the File menu, and then press
X to exit the DOS text editor. When prompted, press Enter to confirm that
you want to save the file. This returns you to the command prompt.
Type the following and press Enter after typing each line. You must type
them exactly as shown here:
regedit /e backup.reg hkey_classes_root\exefile
regedit /d hkey_classes_root\exefile\shell\open\command
regedit /d hkey_classes_root\regfile\shell\open\command
regedit repair.reg
Restart the computer.
With any luck you should now be able to run the removal tool.
Once you have cleaned your computer of viruses, you should ensure you
keep it up to date with all the latest security fixes that are provided
officially by Microsoft (not ones sent to you via email!)
This is achieved by opening Internet Explorer, clicking the Tools menu,
and choosing Windows Update. Once there, it may ask you to install
software. Read the information it gives you to confirm it is signed
by Microsoft, and agree to it's installation. Once this is done,
click on 'Scan Now' to begin scanning your computer for any updates it
requires. Apply all Critical Updates it finds. I also recommend
applying all Windows 98 updates too.
If you have trouble with any of the above, please post back.
-- AZC --- Checked by AVG anti-virus system (http://www.grisoft.com). Version: 6.0.521 / Virus Database: 319 - Release Date: 23/09/2003
- Next message: jayjwa: "Re: Web Page Hack!!"
- Previous message: Andrew Z Carpenter [Newsgroup Groupie]: "Re: Memory Violation at Kernel 32"
- In reply to: Bill: "iozcumgj.exe"
- Next in thread: Bill Sanderson: "Re: iozcumgj.exe"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
