From: Wilmer (iampogi_at_discussions.microsoft.com)
Date: Sun, 1 May 2005 08:22:02 -0700
> Wilmer wrote:
> > "Malke" wrote:
> >> Wilmer wrote:
> >> > I need help!!!
> >> >
> >> > my computer has a red screen with a message in the middle inside a
> >> > block box saying "Danger Spyware" that does not want to gom away,
> >> > and i have two of each on all of my icons in my dasktop and i can't
> >> > use my right click on my mouse. If i delete one it deletes both and
> >> > if i add one, it adds two.
> >> >
> >> > I have already ran Microsoft AntiSpyware Beta, Adaware SE, and
> >> > Spybot SD in safe mode and have deleted all spyware and virus that
> >> > it has detected and still the same result. have already cleaned the
> >> > files in the regestry under khlm and hkcu and still did not solved
> >> > the problem. I tried creating a new profile but still negative
> >> > result.
> >> >
> >> The screen with the message is just a picture. To remove it, go to
> >> the Display applet in Control Panel and look on the Desktop tab.
> >> Click on Customize Desktop, and then click on the Web tab. You will
> >> see that there are checkmarks next to "My Current Home Page" and
> >> probably "Lock Desktop Items". Uncheck these. By highlighting the "My
> >> Current Home Page" and clicking on the Properties button, you will be
> >> able to determine the name of the file that is the message. It might
> >> be called something like "security.html" or the like.
> >> Of course you want to click Apply and OK out when you've made your
> >> changes. Then you want to find the *.html malware file and delete it.
> >> In your cleaning procedures which you detailed, I don't see mention
> >> of scanning in Safe Mode with an antivirus program. Which antivirus
> >> are you using - name and version?
> >> Malke
> >> --
> >> Elephant Boy Computers
> >> www.elephantboycomputers.com
> >> "Don't Panic!"
> >> MS-MVP Windows - Shell/User
> > Malke,
> > Thanks for your reply, but unfortunately I forgot to mention that I
> > tried that already and it still did not work. Everything possible that
> > can be done on Display Properties I have done it. If you have any
> > another suggestions I woul appreciate it very much.
> You still haven't answered my question - what antivirus are you using?
> Name and version, please.
> Elephant Boy Computers
> "Don't Panic!"
> MS-MVP Windows - Shell/User
I used Nortons AV 2005 which was updated before I did the scan and when that
did not took out the trojan I also used housecall.trendmicro.com and
pandaantivirus online scan but both did not also took out the trojan.