Win32:Doeb [Wrm]" has been found in “C:\WINDOWS\system32\Inf\13 years Merrit Cabal && Pamela Anderson slut --Video Collection–.zip\Codec DIVX 5.1.1.exe” file.
21/09/2004 4:05:04 AM NT AUTHORITY\SYSTEM 1696 Sign of “Win32:Doeb [Wrm]” has been found in “C:\WINDOWS\system32\Inf\13 years Merrit Cabal && Pamela Anderson slut --Video Collection–.zip\Codec DIVX 5.1.1.exe” file.
21/09/2004 4:05:07 AM NT AUTHORITY\SYSTEM 1696 Sign of “Win32:Doeb [Wrm]” has .
Will Avast Antivirus Pro 4.1.418 with latest definitions 20/09/2004 0439-0 remove these Virii ?
What is the virus and how dangerous is it to my system ? I can’t find much info on the net to tell me how dangerous it is
there are multiple entries in my windows\system32\inf directory of this same virus
In fact, it is a worm added at VPS 0427-1 on 02.07.2004.
If you try to repair (maybe there were not infected files as it is a worm) or move the files to Chest you will be ok.
You can schedule a boot time scanning too (if you have Windows 2k/XP).
Wellcome to forums
how dangerous is it and what damage can it do to my system ? I can find much info on it
thanks for the prompt reply
Do I have to disable the Win XP SP2 “system restore” at all ?
I will do the boot time scanning as suggested . I am doing a “thorough scan” of my system (slider all to the right in simple interface) and also checking compressed files. I deleted the infected files from within the folder titled “infected” in the Advanced User Interface , they weren’t system files
Sorry, I did not find more either :-
Google returned nothing…
Depends on the results of your scanning. Sure, for boot time scanning you do not have to disable it. After scanning, you could/should enable it again. So, I don’t understand if you say ‘at all’ instead of ‘for ever’. You can enable System Restore after scanning and cleaning. You have to disable it just to clean ‘locked’ infected files there.
If your scanning returns nothing… so, enjoy, you’re clean 8)
Send files to Chest is a wise decision
I am trying to open it from My Computer , not too sure I understand your question as to “when” what are you trying to ask ? The Avast Icons are in the System Tray (VRDB & On Access Scanner)
if you can’t delete the file
C:\WINDOWS\system32\Inf\13 years Merrit Cabal && Pamela Anderson slut --Video Collection–.zip
manually or with avast (in SAFEMODE → F8-Boot),
then please post a hijackthis-Log for diagonosi: → ttp://hjt.klaffke.de
Makes no difference. Deleted that file and all others in this folder , they were all compressed “Winrar” files that had no similarity to Windows OS files and were for similar pornos
Still can’ t open the report file from Avast “reports” folder
Well just try repairing avast then (via Unisntall/Reapir)
and please follow the other advice above…e.g.:
hijackthis-Log
VGREP
→
For Cleaning:
best Disable all your Filesharing processes/Startups, and block/disable all sharing (I hope you didn’t share your whole C: drive…)
Also Check/Secure/block your other network shares
WebLink_4u2read
→ go to the red links for Symantec & Trendmicro and Clean up
secure your system better
Onlinescans by Trend, RAV & COD might also help (-> see “VirusRemoval” below…)
Stay away from Porn/Cracks/warez/other dubious stuff & keep that nervous mouseclickfinger under control
Logfile of HijackThis v1.97.7
Scan saved at 6:21:26 PM, on 22/09/2004
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)