Author Topic: Can't remove virus  (Read 12414 times)

0 Members and 1 Guest are viewing this topic.

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Can't remove virus
« on: November 04, 2007, 06:58:27 AM »
Hi, I have a virus I can't seem to remove every time I boot up when I get to my desktop avast is flashing virus
so I do the recommended action and put it in the chest,but when I restart my computer its there again,
this is what avast says Malware name VBS:Malware-gen type virus/warm VPS version 071103-0 11/03/2007
I have done a male scan with spy-bot search and destroy and found and removed a allot of stuff,
I have winxp
The more you know the more you know that you don't know

Offline oldman

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 4143
  • Some days..... MOS...this bug's for you
Re: Can't remove virus
« Reply #1 on: November 04, 2007, 07:47:20 AM »
Start with a boot time scan. Move anything found to the chest. You can schedule a boottime scan from the menu on the simple user interface. (right click the "a" icon, start avast, right click on the skin)

After the boot time scan is complete and you are up and running, again do the following and post the results of the boot time scan.

Create a new restore point

You must be logged on to an administrator account
Go to Start - All Programs - Accessories - System Tools System Restore.
Click Create a restore point, and then click Next.
In the text box labeled Restore Point Description, type a name for this restore point

Remove old restore points

Disk Cleanup - Launch the Disk Cleanup tool and then select the more options tab. On this tab you will find a section for System Restore. If you press the Clean Up button for that section, Windows will delete all restore points except for the most recent one.
« Last Edit: November 04, 2007, 08:29:34 AM by oldman »

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Re: Can't remove virus
« Reply #2 on: November 04, 2007, 10:15:01 AM »
thanks for the prompt reply I did the boot scan, after the scan avast showed the same virus
I did what said about system restore, but its still the same when I boot up its showing the same virus, I move it to the chest, restart its there again it doesn't seem to effect what I'm doing with the computer but it is worrying every time I boot up its there.
The more you know the more you know that you don't know

Offline FreewheelinFrank

  • Avast Evangelist
  • Ultra Poster
  • ***
  • Posts: 4872
  • I'm a GNU
    • Don't Surf in the Nude!
Re: Can't remove virus
« Reply #3 on: November 04, 2007, 10:48:47 AM »
Hi Desperate-Dan,

Here are some more free anti-malware scanners you can try:

Look for and remove rootkits (hidden malware):

Panda Antirootkit
Blacklight
AVG Anti-Rootkit

Try a scan with DrWeb CureIT!

Try the usual free adware/spyware scanners.

AVG Anti-Spyware Free (Requires Win2k/XP)
Ad-Aware Free
SUPERAntiSpyware Free
a-Squared Free

Download, install and update the programs. Disconnect from the internet (pull the plug) before running scans in Safe Mode if possible.

Always select the option to quarantine any malware found rather than delete it, then you will be able to restore files or registry entries wrongly identified as malware- a rare but not unknown event for any malware scanner.

Try some online scans. (Disable avast! while scanning.)

F-Secure
BitDefender
Panda
Trend Micro Housecall

When you have finished, scan for out-of-date and insecure software using Secunia Software Inspector and update any vulnerable software: this will help to prevent future infections.
     Bambleweeny 57 sub-meson brain     Don't Surf in the Nude Blog

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Re: Can't remove virus
« Reply #4 on: November 04, 2007, 12:40:15 PM »
Brilliant , curit did the trick,I've updated every thing on my computer,
thanks again for your help and time, I'm one happy chappy ;D
The more you know the more you know that you don't know

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67255
Re: Can't remove virus
« Reply #5 on: November 04, 2007, 01:35:01 PM »
Panda Antirootkit

Panda
I do recommend Panda antirootkit for XP (does not work on Vista).
But I do NOT recommend its online scanning due to its leftovers.
The best things in life are free.

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Re: Can't remove virus
« Reply #6 on: November 04, 2007, 01:50:06 PM »
Thanks for that, I have winrar I got it to open a rar file but now it seems to want open all the files I download I don't really understand whats going on is winrar ok.
The more you know the more you know that you don't know

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67255
Re: Can't remove virus
« Reply #7 on: November 04, 2007, 01:52:36 PM »
Thanks for that, I have winrar I got it to open a rar file but now it seems to want open all the files I download I don't really understand whats going on is winrar ok.
Are you saying that clicking a RAR file makes opening a lot of other files? ???
The best things in life are free.

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Re: Can't remove virus
« Reply #8 on: November 04, 2007, 02:00:57 PM »
No its just since I.ve had winrar some of the file have the winrar icon now, a stack of three books,
i don't know allot about computers as you can tell 
The more you know the more you know that you don't know

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67255
Re: Can't remove virus
« Reply #9 on: November 04, 2007, 02:04:23 PM »
No its just since I.ve had winrar some of the file have the winrar icon now, a stack of three books
This icon is legit, I mean, winrar will put this icon on every file (archive file) associated with it, i.e., each archive file winrar could open/manage. It's perfectly normal.
The best things in life are free.

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Re: Can't remove virus
« Reply #10 on: November 04, 2007, 02:10:51 PM »
thanks for clarifying that, by the way is that the brazilian flag I see?
The more you know the more you know that you don't know

Offline Lisandro

  • Avast team
  • Certainly Bot
  • *
  • Posts: 67255
Re: Can't remove virus
« Reply #11 on: November 04, 2007, 02:13:02 PM »
thanks for clarifying that, by the way is that the brazilian flag I see?
Yes it is. You can add one for you too 8)
Just click on the link below and place your pin in the appropriate part of the map.
http://forum.avast.com/index.php?action=mm
You flag will show in your profile after you have done this.
The best things in life are free.

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Re: Can't remove virus
« Reply #12 on: November 04, 2007, 02:35:02 PM »
I worked in Rio in the naval dock yard working on a drill ship for 8 weeks at a time I've been there two times I saw two carnivals, I love Brazil we where all broken hearted when had to go home
The more you know the more you know that you don't know

Offline oldman

  • Avast Evangelist
  • Massive Poster
  • ***
  • Posts: 4143
  • Some days..... MOS...this bug's for you
Re: Can't remove virus
« Reply #13 on: November 04, 2007, 06:28:52 PM »
Glad you got it. Would you mind posting what the name of the trojan was?

Offline Desperate-Dan

  • Jr. Member
  • **
  • Posts: 24
  • I'm a llama!
Re: Can't remove virus
« Reply #14 on: November 04, 2007, 06:41:40 PM »
Hi its in my first post,  VBS:Malware-gen type virus/warm VPS version 071103-0 11/03/20
that all it had in avast
The more you know the more you know that you don't know