RE: !!Infected with cool.exe Help!!
- From: Panda_man <Pandaman@xxxxxxxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 10 Aug 2006 02:53:02 -0700
"mismis29" wrote:
I apologize if this is was double-posted.
I seem to have picked up a nasty called cool.exe. No matter how many times I
kill it in task manager and remove it from the system32 folder, it always
comes back. I have Avira antivirus, which I find is quite crappy, and it
doesnt pick it up. Ive run spybot, highjackthis to no avail. Whats worse is
that everytime I try to run Adaware, my whole computer shuts down. I have
Ewido, but its only a trial version and it doesnt seem to help anyway. I had
Norton antivirus but I hated it, it ate up too much resources and it caused
problems.
I REALLY need help getting rid of this cool.exe and I have no idea how.
Anyone who can help me get rid of this thing I would be eternally indebted to.
No need to run HJT as a start . Avira AntiVir doesn't detect it , ok but
many thers should .
Please find this cool.exe and goto http://www.virustotal.com
and submit it there . VirusTotal is a free service which offers you to scan
a submitted sample with many reputable products with the latest definitions .
If you use a default settings and if a vendor doesn't recognise a threat ,
VirusTotal will automatically submit it there and thus many many compnaies
will have it .
Please , post your results after you have scanned with it .
To start with , I recommend you remove ALL security softwares you have
currently installed and download , install , * UPDATE * and use :
Spybot S&D
http://www.safer-networking.org/microsoft.en.html
Ad-Aware se Personal
http://www.lavasoftusa.com
Installed qualitive antivirus software/trial version . NOD32 or Panda
Antivirus 2007 are recommended
www.eset.com
www.pandasoftware.com
After you update the softwares mentioned above , boot in Safe Mode and
perform full scan . To boot in Safe Mode , continuesly press F8 button while
your computer is starting before the Windows logo appears . Choose Safe Mode
and press ENTER from the Windows Advanced Menu.
After you have scanned with all softwares and cleaned all the crap found ,
don't forget to disabled System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.aspx
If nothing still helps , run HiJackThis and post your log file into a forum
.. It doesn't matter if you are connected to the net or not :)
Good luck !
--
Panda_man
Bronze level Contributor
.
- Follow-Ups:
- RE: !!Infected with cool.exe Help!!
- From: mismis29
- RE: !!Infected with cool.exe Help!!
- Prev by Date: Re: !!Infected with cool.exe Help!!
- Next by Date: Re: TROJANS!!!!
- Previous by thread: Re: !!Infected with cool.exe Help!!
- Next by thread: RE: !!Infected with cool.exe Help!!
- Index(es):
