|
Edited on Sun Nov-21-04 02:49 PM by PoohStuff
I'm assuming you have windows XP, which is slightly easier to deal with. Go step by step to remove the virus via Symantec's recommendations:
If you are networked, disconnect from the network by unplugging all other Ethernet cables from the back of those computers.
1. Try closing all your un-needed services Click on Start, Control Panel, Administrative Tools, Services.
You'll get a list in alphabetical order, Start with Windows Messenger (it's not the IM Service). Double click on it, and click the Stop Button then you'll see a drop down box click on that and disable it, click apply then OK.
Do the same with Telnet. You don't need those, they are for advanced networking and won't interfere with your network, and plus leaves you open for these types of attacks.
Turn on Windows XP firewall, if you download something new you'll have to restart the computer for it to take effect and that's what we don't want. Click on Start, Control Panel, Network Connections. You see your connections there, Local Area Connection, or Dial UP whatever is enabled, just right click on it and Click Properties.
Click the Advanced Tab then enable firewall. Click OK.
Then Run Live Update, do another system scan.
Scroll down symantec's website and Print out and follow the instructions on how to back up and restore the system registry (the entire one) then follow the instructions on how to remove the infected keys.
After that re run the system scan.
Spybot, Adaware are neat programs, but it wont help only detect.
If none of symantec's removal instructions help then you want to back up all files and restore the system (worst Case)
If it does work I can suggest two sites. www.pcpitstop.com and grc.com (no www. on grc.) Sign up for the free account on PC Pitstop and run full tests. Then follow the instructions if you don't get a checkered flag. They have automated repairs. Then grc.com click on sheilds up then click on it again and click common ports. This will test if you still have open ports on your system. You want to have stealth when the results come back.
Hope this helps, I couldn't post in the Techie group cause I can't afford to donate. Sorry. Let me know if you need any additional help.
|