windows cannot delete virus
JacquieCC
I have McAffee security centre which uopdates automatically - I have
broadband.
It did non detectt the virus which the Microsfot beta system detected. I see
it also uses McAffee. Every time I turn my computer off and then turn it on
again - it says my antivirus subscription should be checked - I check it even
though I know it is Ok, I then check to see if the firewall is on - it has
strangely been turned off as has the antivirus software - this has only
happened in the last few days. I have reinstalled McAffe antivirus twice and
scanned but it does not detect a virus - I have tried restore point - that
doesn't work but then again I do not know when this virus got on the computer
- all I know is I have had problems in the last few days.
However the Beta system says it cannot delete the virus - is there any
remedy for this?
regards,
Jacquie
Malke
I'm not convinced you have a virus. It sounds like your computer is
infested with malware. MSAS is a good program, but it is still in beta
(not finished yet) and you need more than one tool to remove malware.
Go through the following removal steps systematically:
http://www.elephantboycomputers.com/page2.html#Removing_Malware
Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User
David H. Lipman
For non-viral malware...
Please download, install and update the following software...
* Ad-aware SE v1.06
http://www.lavasoft.de/
http://www.lavasoftusa.com/
* SpyBot Search and Destroy v1.4
http://security.kolla.de/
After the software is updated, I suggest scanning the system in Safe Mode.
I also suggest downloading, installing and updating BHODemon for any Browser Helper Objects
that may be on the PC.
* BHODemon
http://www.definitivesolutions.com/bhodemon.htm
For viral malware...
* Download MULTI_AV.EXE from the URL --
http://www.ik-cs.com/programs/virtools/Multi_AV.exe
To use this utility, perform the following...
Execute; Multi_AV.exe { Note: You must use the default folder C:\AV-CLS }
Choose; Unzip
Choose; Close
Execute; C:\AV-CLS\StartMenu.BAT
{ or Double-click on 'Start Menu' in C:\AV-CLS }
NOTE: You may have to disable your software FireWall or allow WGET.EXE to go through your
FireWall to allow it to download the needed AV vendor related files.
C:\AV-CLS\StartMenu.BAT -- { or Double-click on 'Start Menu' in C:\AV-CLS}
This will bring up the initial menu of choices and should be executed in Normal Mode.
This way all the components can be downloaded from each AV vendor's web site.
The choices are; Sophos, Trend, McAfee, Kaspersky, Exit this menu and Reboot the PC.
You can choose to go to each menu item and just download the needed files or you can
download the files and perform a scan in Normal Mode. Once you have downloaded the files
needed for each scanner you want to use, you should reboot the PC into Safe Mode [F8 key
during boot] and re-run the menu again and choose which scanner you want to run in Safe
Mode. It is suggested to run the scanners in both Safe Mode and Normal Mode.
When the menu is displayed hitting 'H' or 'h' will bring up a more comprehensive PDF help
file. http://www.ik-cs.com/multi-av.htm
* * * Please report back your results * * *
--
Dave
http://www.claymania.com/removal-trojan-adware.html
http://www.ik-cs.com/got-a-virus.htm
JacquieCC
I spent quite a long time downloading and scanning - more than once .- the
Spybot software and the Ad-Aware SE Personal from lavasoft. I have them both
installed on the computer. However I have today scanned with the Micrsoft
beta scanning facility and it found that flippin malware again -
Win32/NewMalware.E how can I get rid of it.
I have had a bit of problem scanning in safe mode as when iI hit the F8
button on my Italina keyboard it comes up that my jkeyboard is not instaled
properly (are the keys different in different languages?) I have no ports
open to abuse as I checked via Mcaffee firewall, my antivirus updates
automatically and I have no viruses as far as McAffe Security centre is
concerned. However when I turned the computere on this morning my Firewall
was turned to off again and I acn't understand how this is being done.
Obviously the Malware is coded to do this but I can't get rid of it and am
not sure how it got on the computer in the first place - could I bug you all
again and ask you to help me?
regards,
JacquieCC
David H. Lipman
| Hi there,
| I spent quite a long time downloading and scanning - more than once .- the
| Spybot software and the Ad-Aware SE Personal from lavasoft. I have them both
| installed on the computer. However I have today scanned with the Micrsoft
| beta scanning facility and it found that flippin malware again -
| Win32/NewMalware.E how can I get rid of it.
| I have had a bit of problem scanning in safe mode as when iI hit the F8
| button on my Italina keyboard it comes up that my jkeyboard is not instaled
| properly (are the keys different in different languages?) I have no ports
| open to abuse as I checked via Mcaffee firewall, my antivirus updates
| automatically and I have no viruses as far as McAffe Security centre is
| concerned. However when I turned the computere on this morning my Firewall
| was turned to off again and I acn't understand how this is being done.
| Obviously the Malware is coded to do this but I can't get rid of it and am
| not sure how it got on the computer in the first place - could I bug you all
| again and ask you to help me?
|
| regards,
|
| JacquieCC
I hope that you have ad-aware SE v1.06 and SpyBot S&D v1.4. If not, I suggest removing the
old versions, installing the new versions, updating them and scanning with them.
Win32/NewMalware.E is a heuristic detection by Microsoft as I was discussing with Rany Treit
of Microsoft earlier Today, the Beta AV scanner web site will not delete Heuristically
detected malware. The followeing should detect and remove remove what was found.
Use at least the McAfee and Kaspersky scan modules.