W3.spybot.worm
CB
Ƹ̵̡Ӝ̵̨̄ƷDer Millionendorf- Icrontian
My Norton active scanner tells me that I have W3.SPYBOT.WORM and that it cannot delete it.
I went to the Symantec site, and followed their removal instructions, but even in safemode, windowsXP wouldn't let Norton delete the infected file because the infected file is iexplore.exe
Norton is unable to remove, quaranteen, or delete this infection.
Has anybody heard anything about it?
Do I even need to worry about it, since I don't use IE?
I went to the Symantec site, and followed their removal instructions, but even in safemode, windowsXP wouldn't let Norton delete the infected file because the infected file is iexplore.exe
Norton is unable to remove, quaranteen, or delete this infection.
Has anybody heard anything about it?
Do I even need to worry about it, since I don't use IE?
0
Comments
Yes, you need to worry about it, because it:
All of these actions are security risks, which allow someone to exploit your computer unless you are protected by a firewall. Even if you are, someone else can be infected by you, as the worm seeks to spread from your system to someone else's via Kazaa if you use it. Plus, all these activities take resources, RAM and CPU, as well as generate a lot of network activity, all of which will make your computer and your internet connection run slower.
Post a HJT log (use version 1.98 from our downloads page) and let's take a look at it, perhaps it has mutated from the known values on Symantec's site.
Dexter...
Okay, when I get home from work today, I'll post a HJT log.
Dexter...
It says to update the Norton definitions, then run the scanner from safe mode. After the scanner repairs the infection, delete certain keys in the reg. to keep it from putting itself back on right away.
When I run the scanner in safemode, it finds the virus and tells me that repair is impossible and that it is going to quarantine instead. Then it says that quarantine is not possible and that it is going to just delete the infected file, instead. Then windows tells me that I'm not allowed to delet iexplore.exe (and rightly so...)
GH told me to delete iexplore from DOS-mode, but I'm very weary to do such things. I know that windows uses explorer for a lot of functions.