Locating and Deleting Viruses Need Help

[biffo]

Hi,

Have just run the Antivirus test and it has located 3 viruses, two of them Trojans, but I cannot find the folder they are located in. What makes it worse is that my computer crashes if I use Search in Windows, so I can't locate it that way.
Nor can I use my own antivirus checker because it closes down for some unknown reason after about 30 secs, this may also be some sort of virus doing this.

They are as follows:


The Trj/W32.FTPBack Virus was found in file C:\System Volume Information\_restore{11B4CBB0-31B0-483C-A4FE-D6E9E8C1A928}\RP64\A0024350.exe
The Trj/W32.FTPBack Virus was found in file C:\System Volume Information\_restore{11B4CBB0-31B0-483C-A4FE-D6E9E8C1A928}\RP64\A0024351.exe
The Bck/Optix.04 Virus was found in file C:\WINDOWS\olefiles\

http://www.WINUPDATE.com

Any help to me finding them and deleting them will be very much appreciated.


Thanks. Biffo, the Godfather of making mistakes in life. Although, his Tek-Tips answers and questions are no mistakes.

 

[michigan]

biffo -

Had something very similar a while back. Sounds like a KLEZ virus got through.

Go to symantec's web site, and down load the KLEZ removal tool from

http://www.symantec.com

(on a PC not infected)

Throw it on a floppy. Once your at the infected PC, turn the PC on in Safe Mode. Be sure to unplug in from your network. Copy & Run the removal tool.

Afterwards you may have to install your AV software again, but should install right over top of your current version.

Good Luck.

 

[biffo]

Hello again,

I have run another virus scan online and it has discovered more viruses all with the word "BackDoor" in them. For example New BackDoor1 and BackDoor-RS. As I said earlier there is no way I can delete these files by cleaning them with an anti-virus software because I have discovered that it is the BackDoor-RS virus that is shutting down my anti-virus software. Is there anyway I can get help on deleting these viruses or using a free removal tool on the Internet, seeing as I can't exactly update my virus software and clean them from that.

So, if anyone knows a way I can delete the viruses without having to subscribe to an anti-virus software, i would ber very grateful. Biffo, the Godfather of making mistakes in life. Although, his Tek-Tips answers and questions are no mistakes.

 

[michigan]

Biffo -

Sorry if I was misleading. Those downloadable fixes from symantec's web site are free. No subscriptions required.

The infected PC will continue to shut down your normal antivirus - the viruses can mutate. You may be seeing the same virus, simply renamed. That's why you must download the cleaning file to a floppy disk, and run it from there.

First file to download is called FixKlez.com
2nd file to download is called FxBgbear.exe

Both will fit on a floppy disk.


Good Luck.

 

[biffo]

Michigan,

Neither the Klez virus or Bugbear virus were found on my computer, like I said it is the BackDoor-RS virus that is causing me the problems with my anti-virus software. Biffo, the Godfather of making mistakes in life. Although, his Tek-Tips answers and questions are no mistakes.

 

[michigan]

biffo -

My bad. Sorry 'bout that. I just assumed with the symptoms it must have been the Klez or bugbear.

Here's the fix-link for the virus you have:

http://securityresponse.symantec.com/avcenter/venc/data/backdoor.optix.04.html

Good Luck.

 

[MIKEFLorida]

Try booting in safe mode and running the scan.

 

[yngwie]

i guys!!
I've got several threats a minute from my firewall that's telling me i got some outcome from backdoor subseven trojan.
I scan the HDD and do not have any positive reponses from the virus scan.
How can i make sure that i do not have the trojan on my computer and how can i have the 'cleaner' file that i read in a thread earlier??
Thanx for all your help cos' is relly need it.
Cya