Author Topic: Win32:Qqpass.ak help plz! (Read 3057 times)

viBlast · « **on:** March 14, 2007, 05:19:37 AM »

first of all hello, dudes it's me again hehe well this is the problem i have:
i have a flash drive and i conected it to a pc that is infected with this troyan win32:Qqpass.ak so when i click on the direct acces icon Avast! begins flashing and i cant remove it, can somebody help me plz!?

polonus · « **Reply #1 on:** March 14, 2007, 01:22:30 PM »

Hi viBlast,

Delete the following files: agetlke.exe & rastnlio.dll, then delete the following reistry value: RavUptets

That is all for manual removal,

polonus

viBlast · « **Reply #2 on:** March 14, 2007, 04:50:11 PM »

thanks replying polonus mmmmmmm

you mean that those files are in my USB flash drive

?

greetings: Jhonattan

polonus · « **Reply #3 on:** March 14, 2007, 08:14:36 PM »

Hi viBlast,

The registry value must be on the machine that infected the flash drive, there must be traces of it on the flash drive, or something must direct to it on the machine through which the malware came in the first place, an infection vector direct(ion) found. For instance when I have Tellitamper (by some considered riskware if not self-installed) downloaded onto my flash drive through my computer, I do not have malware on my C: drive, but a scan with a-squared on C says it finds a direct to riskware there (while my USB scan is not scanned). Do you understand the complexity of this, and the way it works now? So scan all where you might suspect the files and regitry value to reside!!

polonus

Author Topic: Win32:Qqpass.ak help plz! (Read 3057 times)

viBlast

Win32:Qqpass.ak help plz!

polonus

Re: Win32:Qqpass.ak help plz!

viBlast

Re: Win32:Qqpass.ak help plz!

polonus

Re: Win32:Qqpass.ak help plz!