Re: Cannot remove virus
From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 04/29/05
- Next message: slartyb: "mcafee home vers 9 .... no command [dos] files"
- Previous message: Stuart Reed: "Cannot remove virus"
- In reply to: Stuart Reed: "Cannot remove virus"
- Next in thread: Stuart Reed: "Re: Cannot remove virus"
- Reply: Stuart Reed: "Re: Cannot remove virus"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 29 Apr 2005 07:37:05 -0400
From: "Stuart Reed" <sr@stureed.co.uk>
| I have acquired Trojan.Vundo.B (Object Name:
| C:\Windows\REGIST~\cabplay.dll)
|
| I have followed the Symantec removal procedure in Safe Mode, including
| regedit, without success. I also tried reverting my hard drive with Norton
| GoBack but it would not revert to a time prior to the infection.
|
| Any help gratefully appreciated.
| Stuart Reed
|
Dump the contents of the IE Temporary Internet Folder cache (TIF)
Start --> Settings --> Control Panel --> Internet Options --> Delete Files
Dump the contents of the Mozilla FireFox Cache
Tools --> Options --> Privacy --> Cache --> Clear
1) Download TrendMicro Sysclean by one of the following 2 methods
Trend Sysclean Method 1
---------------------------------------
Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp
Latest Trend signature files.
http://www.trendmicro.com/download/pattern.asp
Create a directory.
On drive "C:\"
(e.g., "c:\sysclean")
Download SYSCLEAN.COM and place it in that directory.
Download the signature files (pattern files) by obtaining the ZIP file.
For example; lpt604.zip
Extract the contents of the ZIP file and place the contents in the same directory as
SYSCLEAN.COM.
Trend Sysclean Method 2
---------------------------------------
Download the utility SYSCLEAN_FE at the following URL --
http://www.ik-cs.com/got-a-virus.htm
SYSCLEAN_FE automates the download and execution process of the Trend Sysclean Package.
Direct URL --
http://www.ik-cs.com/programs/virtools/Sysclean_FE.exe
2) Download and install Ad-aware SE (free personal version v1.05)
http://www.lavasoftusa.com/
3) Update Adaware with the latest definitions then exit the software.
4) Disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
5) Reboot your PC into Safe Mode and shutdown as many applications as possible
6) Using the Trend Sysclean and Ad-aware SE utilities, perform a Full Scan of your
platform and clean/delete any infectors found
7) Restart your PC and perform a "final" Full Scan of your platform using both Trend
Sysclean and Ad-aware SE
8) Re-enable System Restore and re-apply any System Restore preferences,
(e.g. HD space to use suggested 400 ~ 600MB),
9) Reboot your PC.
10) Create a new Restore point
* * * Please report back your results * * *
-- Dave http://www.claymania.com/removal-trojan-adware.html http://www.ik-cs.com/got-a-virus.htm
- Next message: slartyb: "mcafee home vers 9 .... no command [dos] files"
- Previous message: Stuart Reed: "Cannot remove virus"
- In reply to: Stuart Reed: "Cannot remove virus"
- Next in thread: Stuart Reed: "Re: Cannot remove virus"
- Reply: Stuart Reed: "Re: Cannot remove virus"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
