Avast WEBforum
Other => Viruses and worms => Topic started by: Flee on March 07, 2004, 02:02:33 AM
-
i have a serious problem with this worm, avast says it cant delete it.. I hope you guys can help me out.. I would really apreciate that
-
this is a generic detection. in order to help with removal I need a specific name. run housecall http://housecall.trendmicro.com (http://housecall.trendmicro.com) and tell me the name of the trojan it finds.
-
i runned the housecall and it found: win3d:Dialui[trj] (filename C:\DOCUME~1\Even\LOCALS~1\Temp\V4OG3Ca02340)...last day avast said that a file under the name "kernel.exe" was infected.. im not so sure with this + I am n00b ::)
-
tell house call to delete this file or tell avast to delete it either way
let avast delete kernel.exe.
-
its not that easy, i've tried over and over to delete the trojan(delphi), avast just gets errors when I try to delete it..but,the other trojan(win32:dialui[trj]) was no problem to remove.. what can i do to get rid of that other ignoring trojan? ::)
-
have you tried to scan with avast in safe mode?
-
I scanned in safe mode, found the trojans and got stuck with error when trying to delete..
-
Hi,
reboot the PC in safeMode, login as Admin, make sure that avast resident shield is not running (pause it if necessary).
THen navigate with file explorer to the TEMP-folder in your first posting, and delete ALL files in it
do a thorough scan (including archives) of the whole system while still in safemode
if the trojan is gone, reboot normally
if not: please post the full/complete/exact path to the file that avast finds the trojan in
- apply all Windows updates
- check/close/secure your network shares
- Install, update, scan and fix with:
spybot, ad-aware, cwshredder (DL-Links here via the board search)
- secure IE-Browser: /disable/restrict ActiveX & scripting
-exercise caution when surfing in the future
;)
-
yeah :)
it worked! ;D
thanks so much for helping me
-
Hehe you'd just have to terminate trojan process running in the background ;)