Re: Continued - Help Re: VBS.Redlof.A.
From: phil (pvandermeeren0522xyz_at_yrogers.com)
Date: 04/02/04
- Next message: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Previous message: Conor: "HomePageHijack/Dialers/Stress"
- In reply to: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Next in thread: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Reply: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 2 Apr 2004 08:35:55 -0500
Hello Anima,
I am no expert. I am just like you.I have just a little more
confidence,since a dealt with those problems a few times.Besides my firewall
and Norton I have an array of spyware fighting programs ready.
Again no reason to panic. Do you experience anything unusual, when you
operate your computer ?? If so I would suggest an online scan.
Hope someone with more technical advice will take over, if you have more
questions.
Greetings Phil
"Anima" <anonymous@discussions.microsoft.com> wrote in message
news:1764201c418ae$efe78480$a401280a@phx.gbl...
> Dear Phil,
>
> Thank you for your quick response. Yes I am panicked,
> lol. The warning of the virus was unlike the usual NAV
> window that pops up when it catches a virus in an email
> and automatically quarantines it. This particular notice
> popped up when I was on the net downloading graphics files
> for Paint Shop Pro and indicated that it could not repair
> the files. It was only after I subsequently ran a virus
> scan that the infected files were found.
>
> I hope you are correct that everything is ok now.
> However, according to the Symantec on site instructions
> this virus "searches for files that have the file
> ext.s .html, .htm, .asp, .php, .jsp, and infects them."
> http://securityresponse.symantec.com/avcenter/venc/data/htm
> l.redlof.a.html It goes on to say that after running a
> scan and deleting the detected infected files, one must
> reverse the changes the virus made to the registry. It
> gives instructions to delete "values" of particular "keys"
> and "subkeys." I understand that editing the registry is
> a delicate matter, especially for a novice.
>
> Question: Is there a method to verify that my computer
> has not been altered by this virus and is clean, other
> than to go ahead with editing the registry?
>
> FYI, I am running WindowsXP Home Edition and use NAV2003,
> Sygate Personal Fire Wall, Ad-Aware, AnalogX Cookie Wall
> and Windows Clean Up on a daily basis. I am at a loss how
> my computer became infected.
>
> I look forward to hearing from you or anyone else who may
> have some thoughts and/or advice.
>
> Warm regards,
> Anima
>
> P.S. Sorry for the novel! ;0) This is the first time I
> have asked for help online and I did not know how much
> detail to give. I figured too much is better than not
> enough?
>
>
>
> >-----Original Message-----
> >Hello Anima,
> >No need to panic.
> >
> >It seems that your antivirus program caught the virus and
> quarantined the
> >infected files.
> >
> >Open Norton, click on "reports" click on "view reports"
> and delete the
> >infected files.
> >That should take care of it. I always do a scan
> afterwards.
> >Good day. Phil
> >"Anima" <anonymous@discussions.microsoft.com> wrote in
> message
> >news:1796001c4189a$ef883d90$a101280a@phx.gbl...
> >> My NAV scan just completed and it found two infected
> files:
> >>
> >> index2[1].php VBS.Redlof.A Repair failed
> >> menu_brushes{1}.php VBS.Redlof.A. Repair failed
> >>
> >> It recommended that I quarantine them, which I did.
> >>
> >> Do I now have to change the registry per the
> instructions
> >> of NAV?
> >>
> >> Can I safely burn my graphics files to CD before doint
> >> this?
> >>
> >> I need to get some sleep but will check back in a few
> >> hours. This is all new to me and I would appreciate
> your
> >> help.
> >>
> >> Thank you,
> >> Anima
> >>
> >>
> >> >-----Original Message-----
> >> >Hello,
> >> >
> >> >Despite the fact that I scan every couple of days with
> >> NAV
> >> >3003 and update daily, this evening/morning a NAV
> warning
> >> >appeared saying it had detected that my computer was
> >> >infected with the VBS.Redlof.A. virus and was unable to
> >> >repair this file "c:/documents&settings, localsettings,
> >> >index 2[2}.php.
> >> >
> >> >This is the first virus I have ever gotten. I went to
> >> the
> >> >Symantec site and printed the instructions. As I type
> I
> >> >am running a system scan. (I did one just yesterday).
> >> >
> >> >This scan I assume will find the infected files?
> >> >
> >> >I am at a loss to know why this happened as I am
> vigilent
> >> >about computer security.
> >> >
> >> >Question: Can I burn files (my graphics files) before
> I
> >> >reverse the changes that the virus supposedly made to
> the
> >> >registry?? I have files I would hate to lose if I mess
> >> >up, but I don't want to burn infected files.
> >> >
> >> >Question: Am I correct in assuming I should not/cannot
> >> >send emails until this virus is erased?
> >> >
> >> >Any help or guidance you can give me would be greatly
> >> >appreciated.
> >> >
> >> >Thank you,
> >> >Anima
> >> >.
> >> >
> >
> >
> >.
> >
- Next message: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Previous message: Conor: "HomePageHijack/Dialers/Stress"
- In reply to: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Next in thread: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Reply: Anima: "Re: Continued - Help Re: VBS.Redlof.A."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
