viruses that cant be healed or sent to vault as it says cant send system files to vault they are
Generic 3qls
trojan horse lop.bl
trojen horse collected.11.b
even though it said couldnt send to vault they are there. There were many other things coming up on avg to do with
c\windows\downloaded files\240234.exe
its saying they are not healable any ideas?
win98 system
Answers:
delete the whole folder from a command boot ....... it will be recreated.
Or use the HJT delete on reboot util tool.
use Ccleaner.exe - see malware post above
Answers:
c\windows\downloaded files\240234.exe
its saying they are not healable any ideas? Delete that .exe file
EDIT: as GreennotM said....
Answers:
Did the ccleaner it warned straight away, healed it and it came back and warned again but dont know how to delete on boot up. There are lots of different files names coming up on the ccleaner it said generic.bxz recycled c file. I guess it just means its coming back with a different name everytime but now I'm nit sure what file I have to delete on boot up if its changing names
Answers:
How do I delete on reboot is it easy?
Answers:
try deleting them in safe mode
to access safe mode, keep tapping f8 at boot
Answers:
Which files exactly do I have to delete coz there are lots of different names coming up is this because its changing the names
Answers:
There are quite a few shaded files in the windows explorer would they be viruses?
Answers:
files that have changed are not viruses ....... in AVG .... just changed -- unless you mean the virus is morphing ... ?
shaded how - can you do a screen print ?
Answers:
Its my daughters pc and shes struggling at the comp with a broken leg so I'm going to go down to her house and see if I can do it for her so I'm putting the things shes telling me I'll get a better idea when im there. I havent had any experience of morphing myself but she just gives a different file name everytime, shes looked in the win explorer for the wdl file240234.exe and cant find it. She just says in the windows explorer in dl program files that a file stands out from the others as shaded out but I'll find out more when I'm there, I've never used HJT either so trying to avoid that of poss
Answers:
boot to command prompt
delete the recycle bin folder from the c:\ do cd .. till you get to c:\ then dir for the name of the folder eg... type dir /ah
1.Restart to a command prompt. F8 ( maybe Ctlr key )
2.Type attrib -s -h recycled.
3.Type del recycled.
4. then change to windows directory - type cd windows
5. Type attrib -s -h "downloaded files"
6. Type del "downloaded files"
7. restart pc...
Answers:
is the only free trojan detector/remover I know of - I use it
Answers:
This is what it says in avg virus vault:
C:\WINDOWS\TEMP\CXOMLAAH.DLL BACK UP COPY INFECTED
C:\WINDOWS\TEMPORY INTERNET FILES\CONTENT.IE5\WPIR45UV\LO1[3] BACK UP COPY INFECTED
C:\WINDOWS\SYSTEM\URSTQ.DLL BACK UP COPY INFECTED
C:\WINDOWS\SYSTEM\HGGEB.DLL BACK UP COPY INFECTED
C:\WINDOWS\SYSTEM\AWTQO.DLL BACK UP COPY INFECTED
C:\WINDOWS\SYSTEM\MLLIH.DLL BACK UP COPY INFECTED
C:\WINDOWS\SYSTEM\RELVEYNP.DLL BACK UP COPY INFECTED
C:\RECYCLED\DCO.EXE BACK UP COPY INFECTED
C:\RECYCLED\DC1.EXE BACK UP COPY INFECTED
C:\RECYCLED\DC2.EXE BACK UP COPY INFECTED
C:\RECYCLED\DC5.EXE BACK UP COPY INFECTED
C:\WINDOWS TEMPORARY INTERNET FILES\CONTENT.IE5\WPIR45UV\L01[2] BACK UP COPY INFECTED
C:\WINDOWS TEMPORARY INTERNET FILES\CONTENT.IE5\E6CXUK8B\LO1[2] BACK UP COPY INFECTED
C:\WINDOWS TEMPORARY INTERNET FILES\CONTENT.IE5\OPQN3RDG\LO1[1] BACK UP COPY INFECTED
C:\WINDOWS TEMPORARY INTERNET FILES\CONTENT.IE5\WTUR85MR\LO1[1] MOVED OBJECT INFECTED
Answers:
boot to command prompt
delete the recycle bin folder from the c:\ do cd .. till you get to c:\ then dir for the name of the folder eg... type dir /ah
1.Restart to a command prompt. F8 ( maybe Ctlr key )
2.Type attrib -s -h recycled.
3.Type del recycled.
4. then change to windows directory - type cd windows
5. Type attrib -s -h "downloaded files"
6. Type del "downloaded files"
7. restart pc...
I'm not sure what this bit means
delete the recycle bin folder from the c:\ do cd .. till you get to c:\ then dir for the name of the folder eg... type dir /ah
Do you mean go into win explorer and delete bin contents? I dont know what a cd is? or dir? Do I do this before rebooting with f8?
And I 'm not quite sure where I have to type intructions between 1-7? would that be somewhere on boot up before windows starts?
Answers:
I'm not sure what this bit means
delete the recycle bin folder from the c:\ do cd .. till you get to c:\ then dir for the name of the folder eg... type dir /ah
Do you mean go into win explorer and delete bin contents? I dont know what a cd is? or dir? Do I do this before rebooting with f8?
And I 'm not quite sure where I have to type intructions between 1-7? would that be somewhere on boot up before windows starts? cd and dir are commands to type at the command line. the / are command line options /ah will show hidden files ... so you can see the file you are deleting - it is just guilding - follow the numbered instructions - just type the bold items in the black screen - and note the s p a c e s..... you should see c:\> or sim....
You will not be able to delete the folder in explorer as as it will be in use ... that is why you need to boot to dos mode....
Answers:
Just thought I'd add that in windows explorer at the top of the list some files that loo a bit sus these folders are all more noticeable because they are half of the colour strength of the other folders so stand out they are:
folder named $vault$.avg
folder called config msi
folder called wutemp
one more folder is normal colour but just looked a bit odd called is ~qtwtemp.tmp
some other faded files in there too but I wont list them yet unless its ncessary
Answers:
press the F8 key as you reboot select command prompt or as you close W98 select start in dos mode.... ... as you do not want to use the HJT delete on reboot tool....
How to use the Delete on Reboot tool
At times you may find a file that stubbornly refuses to be deleted by conventional means. HijackThis introduced, in version 1.98.2, a method to have Windows delete the file as it boots up, before the file has the chance to load. To do this follow these steps:
- <LI nd="47">Start Hijackthis <LI nd="48">Click on the Config button <LI nd="49">Click on the Misc Tools button <LI nd="50">Click on the button labeled Delete a file on reboot... <LI nd="51">A new window will open asking you to select the file that you would like to delete on reboot. Navigate to the file and click on it once, and then click on the Open button.
- You will now be asked if you would like to reboot your computer to delete the file. Click on the Yes button if you would like to reboot now, otherwise click on the No button to reboot later.
Answers:
The colour probably means compressed.
Your daughter sound like she is very unlucky! One crisis after another.
might save you some petrol
Answers:
system folders - hidden files - compressed - to stop users deleting essential files and worrying about them.....
Delete just the files that AVG can't either by going to command mode or using hijackthis .. or ccleaner will do the tmp files ... disk cleaner will also help remove temp files start >> all progs >> accessories >> system tools >> disk clean up
Answers:
Does anyone have a link to the hjt thing as it might be easier than doing it that way. She doesnt have a printer so I cant print this out to check If I'm doing the right thing.
PS
its not my student nurse daughter thats had all the probs its my other daughter but seeing as shes also just recovering from a broken leg broken anckle and sprained other ankle she iisnt doing too bad either