Firstly thanks a lot for advises. Through various step by step advises I
have succeeded to identify the malwares in the system, rundll and in the
config, via HJT.
However the question remains how to remove them?
After the scan in HJT and going through every single one I know which are
causing me the grief. I selected them and clicked fix. And I was happy that
they were gone. But as it seems they just copied themselves. I have kept them
contained by disabling via the MSCONFIG and via spybot but that is not the
solution. I want them off my laptop.
I tried to go to the individual file through the window explorer and menus
to delete them manually but some are not showing where they supposed to be.
Either they are invisible or I am making some mistakes.
You just say "spybot". Above is the link for Spybot Search & Destroy.
To your problem; you can NOT delete files that are being used!
The malware is running, and being used!
Empty Temp internet files, cookies, etc.
Reboot, hit F8, and go into Safe Mode.
Run the scan again, and you will be able to remove them permanently.
"Roy" wrote:
> Hi
>
> Firstly thanks a lot for advises. Through various step by step advises I
> have succeeded to identify the malwares in the system, rundll and in the
> config, via HJT.
> However the question remains how to remove them?
>
> After the scan in HJT and going through every single one I know which are
> causing me the grief. I selected them and clicked fix. And I was happy that
> they were gone. But as it seems they just copied themselves. I have kept them
> contained by disabling via the MSCONFIG and via spybot but that is not the
> solution. I want them off my laptop.
>
> I tried to go to the individual file through the window explorer and menus
> to delete them manually but some are not showing where they supposed to be.
> Either they are invisible or I am making some mistakes.
>
> Please help.
>
> Thanks
>
> Roy
Mick Murphy wrote:
> http://www.spybot.info/en/index.html
>
> You just say "spybot". Above is the link for Spybot Search & Destroy.
>
> To your problem; you can NOT delete files that are being used!
> The malware is running, and being used!
>
> Empty Temp internet files, cookies, etc.
>
> Reboot, hit F8, and go into Safe Mode.
> Run the scan again, and you will be able to remove them permanently.
>
>
>
> "Roy" wrote:
>
>> Hi
>>
>> Firstly thanks a lot for advises. Through various step by step advises I
>> have succeeded to identify the malwares in the system, rundll and in the
>> config, via HJT.
>> However the question remains how to remove them?
>>
>> After the scan in HJT and going through every single one I know which are
>> causing me the grief. I selected them and clicked fix. And I was happy that
>> they were gone. But as it seems they just copied themselves. I have kept them
>> contained by disabling via the MSCONFIG and via spybot but that is not the
>> solution. I want them off my laptop.
>>
>> I tried to go to the individual file through the window explorer and menus
>> to delete them manually but some are not showing where they supposed to be.
>> Either they are invisible or I am making some mistakes.
>>
>> Please help.
>>
>> Thanks
>>
>> Roy
Roy wrote:
> Hi
>
> Firstly thanks a lot for advises. Through various step by step advises I
> have succeeded to identify the malwares in the system, rundll and in the
> config, via HJT.
> However the question remains how to remove them?
>
> After the scan in HJT and going through every single one I know which are
> causing me the grief. I selected them and clicked fix. And I was happy that
> they were gone. But as it seems they just copied themselves. I have kept them
> contained by disabling via the MSCONFIG and via spybot but that is not the
> solution. I want them off my laptop.
>
> I tried to go to the individual file through the window explorer and menus
> to delete them manually but some are not showing where they supposed to be.
> Either they are invisible or I am making some mistakes.
Since you didn't tell us what the malware is that you think you've
identified, I can't give you specific removal instructions. Obviously
you have not cleaned it out and you've got something that is respawning.
This is common. Go through these general malware removal steps
systematically - http://www.elephantboycomputers.com/...moving_Malware
Include scanning with David Lipman's Multi_AV and follow instructions to
do all scans in Safe Mode. Please see the special Notes regarding using
Multi_AV in Vista.
The site is in German but David's tool is in English so don't let that
worry you. Scroll all the way down to almost the bottom of the page and
you'll see a box titled "Infos Zum Download - Multi-AV Scanning Tool".
You'll see "Download von www pctipp.ch" and the live link to download
Multi_AV.
When all else fails, run HijackThis and post your log in one of the
specialty forums listed at the first link above (not here, please).
Not all tools used will work in Vista and you will need to run them
elevated. If you are unable to remove the infection by following the
general steps, register at one of the HijackThis forums as suggested.
Standard disclaimer: I can't see and test your computer myself, so these
are just suggestions based on many years of being a professional
computer tech; suggestions based on what you've written. You should not
take my suggestions as a definitive diagnosis. If you can't do the work
yourself (and there is no shame in admitting this isn't your cup of
tea), take the machine to a professional computer repair shop (not your
local equivalent of BigComputerStore/GeekSquad). Please be aware that
not all local shops are skilled at removing malware and even if they
are, your computer may be so infested that Windows will need to be
clean-installed. If possible, have all your data backed up before you
take the machine into a shop.
In Folder Options>View make sure everything that enables you to see all
files is checked or unchecked as required.
"Roy" <Roy@discussions.microsoft.com> wrote in message
news:F10F5E62-45CF-4F37-AD9C-D528972DABC8@microsoft.com...
> Hi
>
> Firstly thanks a lot for advises. Through various step by step advises I
> have succeeded to identify the malwares in the system, rundll and in the
> config, via HJT.
> However the question remains how to remove them?
>
> After the scan in HJT and going through every single one I know which are
> causing me the grief. I selected them and clicked fix. And I was happy
> that
> they were gone. But as it seems they just copied themselves. I have kept
> them
> contained by disabling via the MSCONFIG and via spybot but that is not the
> solution. I want them off my laptop.
>
> I tried to go to the individual file through the window explorer and menus
> to delete them manually but some are not showing where they supposed to
> be.
> Either they are invisible or I am making some mistakes.
>
> Please help.
>
> Thanks
>
> Roy
> Alias wrote:
>
>
> ...lying SPAMMING bigoted linux troll.
> No more SPAM!
> Frank
How is he lying Frankie Boy? Roy says he has malware on his Vista box. Vista
fanboys claim that Vista is secure and its new security features will
protect ones computer from malware. Obviously both notions can't be
correct. Others have replied on how to remove malware from Vista. The liar
around here and the village idiot is YOU Frankie Boy. Do tell Roy how to
get rid of that malware if you're such a Vista expert, rather than calling
Alias a liar. This newsgroup is here to help people and you are simply a
troll.
AlexB: "If it is Business or Ultimate open Command Prompt as administrator
and type lusrmgr.msc."
^^^^^
I must say the developers at Microsoft do have a sense of humour.
NoStop wrote:
> Frank wrote:
>
>> Alias wrote:
>>
>>
>> ...lying SPAMMING bigoted linux troll.
>> No more SPAM!
>> Frank
>
> How is he lying Frankie Boy? Roy says he has malware on his Vista box. Vista
> fanboys claim that Vista is secure and its new security features will
> protect ones computer from malware. Obviously both notions can't be
> correct. Others have replied on how to remove malware from Vista. The liar
> around here and the village idiot is YOU Frankie Boy. Do tell Roy how to
> get rid of that malware if you're such a Vista expert, rather than calling
> Alias a liar. This newsgroup is here to help people and you are simply a
> troll.
>
> Cheers.
>
Frank can't help himself. He sees my name, doesn't read what I wrote and
posts his usual troll crap. Frank has never helped anyone here because,
well, he isn't capable of anything but lies, insults, profanity and bluster.
Frank wrote:
> Alias wrote:
>
>> NoStop wrote:
>>
>>> Frank wrote:
>>>
>>>> Alias wrote:
>>>>
>>>>
>>>> ...lying SPAMMING bigoted linux troll.
>>>> No more SPAM!
>>>> Frank
>>>
>>>
>>> How is he lying Frankie Boy? Roy says he has malware on his Vista
>>> box. Vista
>>> fanboys claim that Vista is secure and its new security features will
>>> protect ones computer from malware. Obviously both notions can't be
>>> correct. Others have replied on how to remove malware from Vista. The
>>> liar
>>> around here and the village idiot is YOU Frankie Boy. Do tell Roy how to
>>> get rid of that malware if you're such a Vista expert, rather than
>>> calling
>>> Alias a liar. This newsgroup is here to help people and you are simply a
>>> troll.
>>>
>>> Cheers.
>>>
>>
>> Frank can't help himself. He sees my name, doesn't read what I wrote
>> and posts his usual troll crap. Frank has never helped anyone here
>> because, well, he isn't capable of anything but lies, insults,
>> profanity and bluster.
>>
>> Alias
>
> Still having to lie I see.
> Figures!
> Loser.
> Frank
Another meaningless knee-jerk reaction from our resident troll. Ho hum.
Frank wrote:
> Alias wrote:
>> Frank wrote:
>>
>>> Alias wrote:
>>>
>>>> NoStop wrote:
>>>>
>>>>> Frank wrote:
>>>>>
>>>>>> Alias wrote:
>>>>>>
>>>>>>
>>>>>> ...lying SPAMMING bigoted linux troll.
>>>>>> No more SPAM!
>>>>>> Frank
>>>>>
>>>>>
>>>>>
>>>>> How is he lying Frankie Boy? Roy says he has malware on his Vista
>>>>> box. Vista
>>>>> fanboys claim that Vista is secure and its new security features will
>>>>> protect ones computer from malware. Obviously both notions can't be
>>>>> correct. Others have replied on how to remove malware from Vista.
>>>>> The liar
>>>>> around here and the village idiot is YOU Frankie Boy. Do tell Roy
>>>>> how to
>>>>> get rid of that malware if you're such a Vista expert, rather than
>>>>> calling
>>>>> Alias a liar. This newsgroup is here to help people and you are
>>>>> simply a
>>>>> troll.
>>>>>
>>>>> Cheers.
>>>>>
>>>>
>>>> Frank can't help himself. He sees my name, doesn't read what I wrote
>>>> and posts his usual troll crap. Frank has never helped anyone here
>>>> because, well, he isn't capable of anything but lies, insults,
>>>> profanity and bluster.
>>>>
>>>> Alias
>>>
>>>
>>> Still having to lie I see.
>>> Figures!
>>> Loser.
>>> Frank
>>
>>
>> Another meaningless knee-jerk reaction from our resident troll. Ho hum.
>>
>> Alias
>
> Having trouble hiding?
"Roy" <Roy@discussions.microsoft.com> wrote in message
news:F10F5E62-45CF-4F37-AD9C-D528972DABC8@microsoft.com...
> Hi
>
> Firstly thanks a lot for advises. Through various step by step advises I
> have succeeded to identify the malwares in the system, rundll and in the
> config, via HJT.
> However the question remains how to remove them?
>
> After the scan in HJT and going through every single one I know which are
> causing me the grief. I selected them and clicked fix. And I was happy
> that
> they were gone. But as it seems they just copied themselves. I have kept
> them
> contained by disabling via the MSCONFIG and via spybot but that is not the
> solution. I want them off my laptop.
>
> I tried to go to the individual file through the window explorer and menus
> to delete them manually but some are not showing where they supposed to
> be.
> Either they are invisible or I am making some mistakes.
>
> Please help.
>
> Thanks
>
> Roy
malware identified but can not remove 
Linear Mode
