computingdoc
Posts: 7 +0
I've been reading the "preliminary instructions ..." document with interest. I'm working on an infected computer as a "pro bono" favor. The machine's Norton Security Center was allowed to lapse in August, 2007. I persuaded the owner to renew his Norton software and it now runs on the computer. The computer is plagued with popups, some of which seem to be security warnings from the Windows XP system and others from a Internet Explorer which pops up by itself occasionally. The "security warning" popups sometimes have misspellings in them. One of them talks about "black door" trojans. Most all of the popups try to get the user to click to download some sort of software remedy for malware or viruses. Now that Norton is running, it is trapping various viruses every couple of minutes and mentioning a "downloader" as the type. I cannot get the computer to boot into Safe Mode, but I can get it to go into Safe Mode with Command Prompt. I found a suspicious DLL file with a random looking name, but I couldn't delete it, even in Safe Mode with Command Prompt. I was going to try to use KillBox, but then I discovered your step-by-step process and decided to work through that. Tools 2 and 3 in Step 10 seemed to fix some things and Norton had mentioned the Vundo virus on occasion. When I was looking at the problem more haphazardly, I think that I saw some things mentioning the CoolWebSearch trojan (right term?). The IE popups have been pornagraphic a couple of times, but usually are "security" websites, trying to encourage downloads.
I really appreciate the availability of tools for this type of problem. Thanks to all that contribute to the effort.
I really appreciate the availability of tools for this type of problem. Thanks to all that contribute to the effort.