 |
27th Jun 2008, 10:22 PM
| #1 (permalink) |
| Little Kiki  Join Date: 5 Jan 2003 Location: Ohio,usa
Posts: 6,783
Reputation: 5297   Rep Power: 64 |  Spools.exe My sis-n-law has this NASTY virus on her lappy. "Spools.exe". It is a very evil virus!  I have googled all over for an easy fix, but no dice... Short of a reformat,,, How to get the s hit off of her pc...? You cannot run any exe. files... And the safe mode delete did not work either...  Whoever created this virus needs to be hung by his nuts! 
__________________ E6600, P5B-D, 1Gbx2 Crucial PC2-8500, 7600GT, WD 500GbHDD Conroe Bay-Bee! (\__/) (-. - ) (> < ) |
|  |
| SPONSOR |
| |
|
27th Jun 2008, 10:51 PM
| #2 (permalink) |
| Active  Join Date: 28 Dec 2007 Location: Melaka
Posts: 859
Reputation: 558 Rep Power: 6 |  really can't run .exe ?? so, can not enter windows?? can run hijackthis or not? if can, give the log  -------------------------------------------------------- could try this, 1. extract it 2. run Ansav.exe 3. choose PLUGINS - DEEP SLAYER 4. choose TAMBAH TARGET - select spools.exe 5. press EKSEKUSI! 6. wait, and it will delete all spools.exe
__________________  Last edited by lee_what2004 : 27th Jun 2008 at 10:57 PM. Reason: extra :) |
|
| |
|
27th Jun 2008, 11:06 PM
| #3 (permalink) |
| Little Kiki Join Date: 5 Jan 2003 Location: Ohio,usa
Posts: 6,783
Reputation: 5297 Rep Power: 64 | Thing is, you cannot even open IE. FF works... but the second you try to run anything... you get this "open with this" prompt, that will not work with anything.
__________________ E6600, P5B-D, 1Gbx2 Crucial PC2-8500, 7600GT, WD 500GbHDD Conroe Bay-Bee! (\__/) (-. - ) (> < ) |
|
| |
|
27th Jun 2008, 11:11 PM
| #4 (permalink) |
| Active Join Date: 28 Dec 2007 Location: Melaka
Posts: 859
Reputation: 558 Rep Power: 6 | http://securityresponse.symantec.com...UnHookExec.inf save as, then right click, install, try to run program
__________________ |
|
| |
|
30th Jun 2008, 09:46 AM
| #7 (permalink) |
| Newbie Join Date: 21 Jun 2008 Location: China
Posts: 15
Reputation: 0  Rep Power: 0 | you change regedit.exe to regedit.com,then rusn regedit.com,change the key value of HKEY_LOCAL_MACHINE\Software\CLASSES\exefile\shell\ open\command to "%1" %* you can run *.exe. you can download this tool "System Repair Engineer" and post the scan log here .I think I can help you to clean the Trojan not virus |
|
| |
|
2nd Jul 2008, 01:56 AM
| #8 (permalink) |
| Warming up  Join Date: 14 Apr 2008 Location: Montréal,Québec,Canada
Posts: 145
Reputation: 71 Rep Power: 1 | If you cannot delete this virus... normaly it's clone itself... so check in TaskManager... disengage the DLL and check on the startup programs... and if you see the virus... put it out... reboot and it can work... i alredy had this virus 2 months ago and i did this for get it out of my system
__________________ ---Stealth-Box--- Case: Antec Sonata 3 / Mobo: Gigabyte MA790FX-DQ6 / CPU : AMD ATHLON X2 6000+ w/t Zalman 9700 / GPU : ATI 4850 / Ram: (4X2GB) OCZ AM2 Optimised DDR2-667 / PSU: Antec EarthWatts 500W / HDDs:4X Western Digital 250GB 2500 AAKS SATA2 (RAID 0) / Mouse:Logitech MX1000 / Keyboard: Logitech G11 / Speakers: Altec Lansing Satelite 300.1 (2.1) + Creative CS 120 (2.0)  |
|
| |
