« previous next »
Pages: [1]   Go Down

Author Topic: Virus removal  (Read 3107 times)

0 Members and 1 Guest are viewing this topic.

Phifer69

  • Guest
Virus removal
« on: October 08, 2007, 04:29:15 AM »
cve-2007-0038
http://flash.958167.com/ani.c.

How do I remove it... the pop-up notifications are killing me.

avast cleaner does not see it. ??? ???
Logged

Online DavidR

  • Avast Überevangelist
  • Certainly Bot
  • *****
  • Posts: 89162
  • No support PMs thanks
Re: Virus removal
« Reply #1 on: October 08, 2007, 04:54:33 AM »
Effectively you don't have to because it isn't on your system (which is why it can't be found), but the internet URL, which you should modify in your post so as to avoid accidental exposure as it is an animated file exploit, e.g. http :// flash . 958167.com/ani.c so it isn't an active link.

What you do have to do is find what is trying to contact that URL with the intention of infecting your system. This could be an undetected trojan downloader.

If you haven't already got this software (freeware), download, install, update and run it, preferably in safe mode.
1.  If using winXP AVG anti-spyware (formerly Ewido) Resident scanner during trial On-Demand after trial ends. Or SUPERantispyware On-Demand only in free version. Or Spyware Terminator Resident scanner. Or a-Squared free On-Demand only with free version(if using win98/ME).
Logged
Windows 10 Home 64bit/ Acer Aspire F15/ Intel Core i5 7200U 2.5GHz, 8GB DDR4 memory, 256GB SSD, 1TB HDD/ avast! free 24.4.6112 (build 24.4.9067.762) UI 1.0.803/ Firefox, uBlock Origin, uMatrix/ MailWasher Pro/ Avast! Mobile Security

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67194
Re: Virus removal
« Reply #2 on: October 08, 2007, 05:48:38 PM »
If a virus is replicant (coming and coming again), you could follow the general cleaning procedure:

1. Disable System Restore on Windows ME or Windows XP. System Restore cannot be disabled on Windows 9x and it's not available in Windows 2k. After boot you can enable System Restore again after step 3.

2. Clean your temporary files. You can use CleanUp or the Windows Advanced Care features for that.

3. Schedule a boot time scanning with avast. Start avast! > Right click the skin > Schedule a boot-time scanning. Select for scanning archives. Boot. Other option is scanning in SafeMode (repeatedly press F8 while booting).

4. It will be good if you download, install, update and run the antispyware tools posted by David. If any infection is detected, better and safer is send the file to Quarantine than to simple delete than.

5. If you still detecting any strange behavior or even you're sure you're not clean, maybe it will be good to test your machine with anti-rootkit applications. I suggest AVG or Panda.

6. Also, if you still detecting strange behaviors or you want to be sure you're clean, maybe making a HijackThis log to post here and, specially, scan and submit to on-line analysis the RunScanner log would help to identify the problem and the solution.

7. After you're clean, use the immunization of SpywareBlaster or, which is better, the Windows Advanced Care features of spyware/adware cleaning and removal.

8. Finally, when you're clean, check for insecure applications with Secunia Software Inspector to update insecure applications and avoid reinfection.
Logged
The best things in life are free.
Pages: [1]   Go Up
« previous next »