I have a virus that I am unable to remove
Printable View
I have a virus that I am unable to remove
Download the latest version of AVPTool: [url]http://ftp.kaspersky.com/devbuilds/AVPTool/[/url] and repeat the automatic healing.
Close/unload all the programs excepted AVZ and Internet Explorer
Switch off:
- Antivirus and and, if you have - Firewall.
- System Restore
- [URL="http://virusinfo.info/showthread.php?t=9207"]Execute following script[/URL]
[CODE]begin
SearchRootkit(true, true);
SetAVZGuardStatus(True);
QuarantineFile('C:\Documents and Settings\Others\Start Menu\Programs\Startup\smss.lnk','');
QuarantineFile('C:\WINDOWS\system32\rzbjtd\smss.exe','');
QuarantineFile('s42e0.dll','');
DeleteFile('s42e0.dll');
DeleteFile('C:\WINDOWS\system32\s42e0.dll');
DeleteFile('C:\WINDOWS\system32\rzbjtd\smss.exe');
DeleteFile('C:\Documents and Settings\Others\Start Menu\Programs\Startup\smss.lnk');
BC_ImportAll;
ExecuteSysClean;
BC_Activate;
RebootWindows(true);
end.
[/CODE]
After reboot:
- [URL="http://virusinfo.info/showthread.php?t=9207"]Execute following script[/URL] in Manual Healing
[CODE]begin
CreateQurantineArchive('C:\quarantine.zip');
end.
[/CODE]
- Remove Bonjour: [url]http://virusinfo.info/showthread.php?t=42263[/url]
- Clean Temp-Maps, Cache of Browsers, Recycler. Use Windows service tool [URL="http://support.microsoft.com/?scid=kb%3Ben-us%3B315246&x=17&y=6"]cleanmgr[/URL] or [URL="http://www.ccleaner.com/"]CCleaner[/URL] or [URL="http://www.clearprog.de/"]ClearProg[/URL]
- Close all the programs and start only Internet Explorer!!!
- Repeat a log file.
- Switch Antivirus and, if you have - Firewall, on.
- Go On-Line
- Upload the C:\quarantine.zip here: [url]http://virusinfo.info/upload_virus_eng.php?tid=43845[/url]
- Attach a new log to your new post..
thanks for your help. Everything seemed to work out perfectly. I have uploaded the requested file.
[QUOTE=bongofury;387798]Everything seemed to work out perfectly. .[/QUOTE]Pls. repeat the logfile.
[QUOTE=bongofury;387798]I have uploaded the requested file.[/QUOTE]No, you didn't.
here is the file - I had trouble saving it correctly. Thanks in advance for all of your help
Bongofury
For the last time:
1. Pls. upload the quarantine
2. Pls. make a log file [B]avptool_syscheck.zip[/B]
I hope that I have successfully uploaded the file this time
We still have not received either your quarantine or your log file.
when running the manual cure the report comes up blank
[QUOTE=bongofury;389349]when running the manual cure the report comes up blank[/QUOTE]Do you do it in this way: [url]http://avptool.virusinfo.info/en/AVPTool_manual.htm[/url] ?
Yes I am using [url]http://avptool.virusinfo.info/en/AVPTool_manual.htm[/url] ? , but the system information comes up blank
[size="1"][color="#666686"][B][I]Добавлено через 47 минут[/I][/B][/color][/size]
hopefully this time I have had success with uploading the zip file
No, we did not get any quarantine from you. Try from different browser, for example: [url]http://portableapps.com/apps/internet/firefox_portable[/url]
Download from my signature avz and make 2 logs according to rules:[url]http://virusinfo.info/showthread.php?t=9184[/url] ( don't need to update)