Thread: Socrates.com
View Single Post
Old 01-03-2004, 17:00   #3
anarres
anarchist butcher
 
Join Date: Mar 2003
Location: United States of Whatever.
Posts: 4,677
Default

krys, here are the manual removal instructions for your virus. Note that McAfee and Adaware a more than enough to stop 95% of virus'/spyware/adware, etc, but you have to keep them UPDATED, and you have to RUN THEM. McAfee should stay running, always. Adaware should be run at least once a week. BOTH products must be updated once a week (at least) to keep them protected.

Quote:
quote:
Terminating the Malware Program

This procedure terminates the running malware process from memory. You will need the name(s) of the file(s) detected earlier.

1: Open Windows Task Manager.
On Windows 95/98/ME systems, press CTRL+ALT+DELETE
On Windows NT/2000/XP systems, press CTRL+SHIFT+ESC, then click the Processes tab.
2: In the list of running programs*, locate the malware file or files detected earlier.
3: Select one of the detected files, then press either the End Task or the End Process button, depending on the version of Windows on your system.
4: Do the same for all detected malware files in the list of running processes.
5: To check if the malware process has been terminated, close Task Manager, and then open it again.
6: Close Task Manager.

Removing Autostart Entries from the Registry

Removing autostart entries from the registry prevents the malware from executing during startup.

1: Open Registry Editor. To do this, click Start>Run, type Regedit, then press Enter.
2: In the left panel, double-click the following:
HKEY_LOCAL_MACHINE>Software>Microsoft>Win dows>CurrentVersion>Run
3: In the right panel, locate and delete the entry:
service = %Windows%\services.exe -serv
4: In the left panel, double-click the following:
HKEY_CLASSES_ROOT>CLSID>{E6FB5E20-DE35-11CF-9C87-00AA005127ED}
5: Right-click the following key and add a new subkey named:
InProcServer32
6: In the right panel, double-click the (Default) entry and change its value to:
%System%\WEBCHECK.DLL
7: Close Registry Editor.
__________________
<b>Calculate the probability of culture flips: Flip Calc</b>
anarres is offline   Reply With Quote