IPB

Welcome Guest ( Log In | Register )

[ Outline ] · Standard · Linear+

> W32virut.cf is killing me, W32Virut.cf

artzelda
post Jul 20 2009, 05:32 PM
Post #1


The MAN
****

Group: Private Member
Posts: 455
Joined: 18-March 04
Member No.: 26



I would appreciate some help in getting rid of this virus. It is a b-s-t-r-d. PLEASE anyone.
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
 
Reply to this topicStart new topicStart Poll
Replies
Audiyoda
post Jul 22 2009, 04:57 AM
Post #2


Houston, we have a problem...
****

Group: Moderator
Posts: 340
Joined: 23-March 04
From: S of Superior-E of Michigan-W of Huron-N of HERE.
Member No.: 64



QUOTE(artzelda @ Jul 20 2009, 01:32 PM)
I would appreciate some help in getting rid of this virus.  It is a b-s-t-r-d.  PLEASE anyone.
*


Got this from a memo here at MSU:

1. Temporarily Disable System Restore (Windows Me/XP).
2. Update the virus definitions.
3. Reboot computer in SafeMode
4. Run a full system scan and clean/delete all infected file(s)
5. Delete/Modify any values added to the registry.
Navigate to and restore the following registry subkey if necessary:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Shared Access\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List
6. Exit registry editor and restart the computer.
7. In order to make sure that threat is completely eliminated from your computer, carry out a full scan of your computer using AntiVirus and Antispyware Software.

The memo also suggests that an on-line scanner will do the trick since W32virut.cf only kills resident AV programs - not programs run through a browser.
User is offlineProfile CardPM
Go to the top of the page
+Quote Post
artzelda
post Jul 22 2009, 12:23 PM
Post #3


The MAN
****

Group: Private Member
Posts: 455
Joined: 18-March 04
Member No.: 26



Unfortunately, I have tried this and it didn't work. I eventually used Antimalbytes, trojan remover, super antispy to and PSEXCSI to find all the infected files. The infection was located in Creative audio shortcuts. I deleted them and the next thing I couldn't reboot in normal or safe mode. So obviously the virus had infected the operating system and I now need to start all over again.
User is offlineProfile CardPM
Go to the top of the page
+Quote Post

Posts in this topic


Reply to this topicTopic OptionsStart new topic
2 User(s) are reading this topic (2 Guests and 0 Anonymous Users)
0 Members:
 

Lo-Fi Version Time is now: 28th March 2024 - 01:31 PM