I’m pretty sure I’ve been infected with the Krepper-Z as described at
http://www.sophos.com/virusinfo/analyses/trojkrepperz.html
I’m using Avast, any help on how I can remove this with Avast or anything else?
I’m pretty sure I’ve been infected with the Krepper-Z as described at
http://www.sophos.com/virusinfo/analyses/trojkrepperz.html
I’m using Avast, any help on how I can remove this with Avast or anything else?
First of all how do you know you are infected?Well i would suggest you run scans with avast! first(a boot time scan wouldn’t be a bad idea - right click somewhere in the skin and choose Schedule boot time scan) and if it doesn’t find it try these options.Download Ewido and try scanning with that(just the scanner is free ,the resident functions will work for 14 days but after that it will still work just the resident scanner won’t ).If that also doesn’t do the trick for you i would suggest these on line scanners. Trend Micro Housecall - Kaspersky on line scan - Bitdefender on line scan i’m sure one of these should find it, if it’s on your PC at all.If all of these find nothing you are most likely clean
P.S:Welcome to the forum!
Cheers
Mikey
I know I was infected because of all the Avast warnings I was receiving. After more investigation I dicovered it was linked to the Look2Me malware. I think I’ve now removed this using Look2Me Remover V.1.1.0
OK i’m glad you managed to remove it but just to be on the safe side run one of the on-line scanners i listed in my previous post.
Cheers
Mikey
Right Miha,
But he also should look at his reg files, so that he certainly has removed all traces of this Look2Me crap, don’t you thinks so? Else you have an entry point left for renewed infection, if the vulnerabilities still there, that means he has to install all the Windows updates and critical patches as well, so he will not be re-infected the second time around with other spy- or scumware. And he should install the three ad-/spyware “musketeers” like there are Ad Aware free, Spybot S&D, and Spyware Blaster, to keep his system cllean in the future. What I mention here, everybody should do after being compromised, because that means your security level is too low, else you would never be infected in the first place.
polonus
Yes well i wouldn’t recommend playing with the registry if he doesn’t know what he is doing, but if he will i suggest he backs it up first with ERUNT this one is a free reg backup utility(quite a legendary program).He should run the three online scanners i linked above and install Ewido and also scan with that.And like you said Spybot,Spyware Blaster,Ad-Aware are also essential to fighting spyware
Cheers
Mikey
thanks for all the input, ive been running daily, avast, adaware, spybot & microsoft antispyware scans and everything seems fine apart from the following. I’m getting avast Trojan horse warnings of Win32:Adloader-G [Trj], always in the System Volume Information folder. I delete it or send it to the chest and it crops up again an hour or two later.
You’ll have to disable SYSTEM RESTORE and delete your restore points.If you don’t know how to do that you can read my post HERE.After you’ve disabled system restore schedule another boot time scan with avast(it is avast that is finding it right?) avast! should clean it and you can go back and re-enable system restore.You could also post a HijackThis log so we can see if you are really clean
Regards
Mikey