NEWS
PARASITES
SOFTWARE
FORUM
DIRECTORY

 
 
 
 
 
 
  
February 13, 2012, 11:40:23 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: SMF - Just Installed!
 
   Home   Help Search Login Register  

Help really important


AddThis Social Bookmark Button AddThis Feed Button
Pages: [1]
« previous next »
  Print  
Author Topic: Help really important  (Read 1285 times)
joe_momma
Newbie
*
Posts: 2


View Profile
« on: July 04, 2009, 12:13:12 AM »
I just registered right now I don't know where to go I need assistance getting rid of a virus once and for all it's Sality I have seemed to picked it up I am currently using Avast for an antivirus and Zone Alarm pro for antispyware I'm getting a little annoyed of avast poping up every 3 seconds about Sality's infection I need help on how to remove it and FAST
Logged
rodi
Administrator
Newbie
*****
Posts: 245


View Profile
« Reply #1 on: July 04, 2009, 07:36:57 AM »
Hello,

first of all you should temporarily turn off System Restore.
Instructions for Windows XP: http://support.microsoft.com/kb/310405
Instructions for Windows Vista: http://windowshelp.microsoft.com/Windows/en-US/help/f0688925-5abe-4caf-b49a-018f8cfcaf4d1033.mspx

1. Delete the following files: oledsp32.dll, sysdll.dll, syslib32.dll, wmimgr32.dll.
Sality files can be found in one of the following folders:
C:\Windows\System
C:\Windows\System32
C:\Winnt\System32
 C:\Windows\Temp
C:\Winnt\Temp.

2. Delete values from the registry
 
Click Start > Run.
Type regedit
Click OK.

Navigate to and delete the following registry entry:

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\"[INFECTED FILE]" = "[INFECTED FILE]:*:Enabled:ipsec"

HKEY_CURRENT_USER\Software\[USER NAME]914
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_WMI_MFC_TPSHOKER_80
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Enum\Root\LEGACY_IPFILTERDRIVER

If the manual removal fails, then I strongly recommend you to download an automatice Sality virus remover form here: http://www.2-spyware.com/remove-sality.html
This tool will rempove the virus and any related malware.

Good luck!
Logged
joe_momma
Newbie
*
Posts: 2


View Profile
« Reply #2 on: July 05, 2009, 05:00:00 AM »
Thank you I did worked out perfectly (I download the software) although I have noticed that my computer is a little slower doees this have to do with the removal of files at all
Logged
rodi
Administrator
Newbie
*****
Posts: 245


View Profile
« Reply #3 on: July 05, 2009, 08:20:03 AM »
Don't forget to enable System restore.

Scan your computer with Spyware Doctor again and make sure that your system is absolutely clean. (If the scan results are fine, that means your PC is clean)

Then download CCleaner from http://www.ccleaner.com
CCleaner is a freeware system optimization, privacy and cleaning tool. It removes unused files from your system - allowing Windows to run faster and freeing up valuable hard disk space.

After that, download the a disk defragmenter from http://www.kessels.com/Jkdefrag/
This tool is more effective than the native Windows defragment tool. (also free to use)

Finally, you may repair the system with your Windows CD. Just boot the disk and choose Windows Repair option.
Logged
Pages: [1]
  Print  
« previous next »
 
Jump to:  




Recommended software:
STOPzilla
(90/100)
STOPzilla is a powerful anti-spyware program that detects, blocks, and removes malicious software allowing users to surf the Web not worrying about spyware, Trojan horses,...
Malwarebytes Anti Malware
(88/100)
There are loads of malware removers on the net today and most of them are lightweight applications, which usually means they’re fast and don’t...
Spyware Doctor
(87/100)
Spyware Doctor is a very powerful, but yet highly user-friendly spyware remover, made by PC Tools, reputable computer security experts. This product provides effective and...
SpyHunter
(86/100)
SpyHunter is a quite simple, but yet highly effective spyware remover with an easy-to-use interface. This program is an excellent choice for users, who are...
XoftSpySE Anti Spyware
(84/100)
XoftSpySE, an anti-spyware program made by ParetoLogic, Inc., is a simple, but effective on-demand scanner with the typical set of functions but very easy to...
Encyclopedia of parasites:

Spreading the knowledge:

It is very hard to fight Computer parasites alone in internet space. If you have a website we would be more than happy if you would help us to spread the knowledge about latest threats. You can help your visitors to manage their Computer system manually without aditional expences. Knowledge is the power, we just need to spread it.
add text box
rss feed
help other
Latest Spyware Threats: Internet Security 2012 | Win 7 Total security 2012 | System Check | Win 7 Internet Security 2012 | Win 7 Home Security 2012 | Win 7 Antivirus 2012 | Win 7 Antispyware 2012 | Vista Security 2012 | Vista Antivirus 2012 | Vista Antispyware 2012 | XP Antispyware 2012 | XP Antivirus 2012 | XP Security 2012 | XP Home Security 2012 | Security Shield
Agreement of Use | Privacy policy | Webmasters | Contact us | RSS Feeds
© 2001-2011 2-spyware.com All Rights Reserved. Reproduction in part or whole without written permission is prohibited. Powered by: eSolutions.