« previous next »
Pages: 1 2 [3]

Author Topic: CWS.hiddendll  (Read 10081 times)

Guest

  • Guest
CWS.hiddendll
« Reply #40 on: December 10, 2004, 01:20:25 PM »
Hi,
Ran the AVG software as a matter of course and it found a virus and 4 infected files
c:\ied.exe_s7m.cab (another cab file?) and 3 files in c:restore/ called A0001408.CPY and two others with different numbers. All trojan downloader infections. THe cab file was a downloader.mediket.D? Put the cab file through the Jottis program and it said it was infected /malware - can I delete it? And the others?

Regards
Logged

Offline guestolo

  • Site Donator
  • Administrator
  • Hero Member
  • *****
  • Posts: 16034
  • Karma: +1/-0
    • View Profile
    • http://
CWS.hiddendll
« Reply #41 on: December 11, 2004, 09:34:47 PM »
Go ahead and delete the files detected by AVG
But first, you won't be able to remove any entries in this location
c:restore
That's your system Restore folder and AV software can't touch that folder, just detect it

Do this
Check for updates with AVG
Disable system Restore
Link will explain how
http://vil.nai.com/vil/SystemHelpDocs/Disa...eSysRestore.htm

RESTART into SAFE MODE
Do a Full System Virus scan with AVG
Let it fix what if finds or try and delete what it can't

Restart back into Normal Mode
Enable System Restore

I better see one more hijackthis log, why do you keep getting infected?
Hmmm
Logged

Do you want to post your own logs from FRST?

Follow the instructions posted http://www.thetechguide.com/forum/index.php/topic/22942-please-read-how-to-post-logs-from-frst/\'>Click Here

Squashjunky

  • Guest
CWS.hiddendll
« Reply #42 on: December 19, 2004, 11:21:15 AM »
Use Firefox and your problems will be over...  http://images.thetechguide.com/forum/public/style_emoticons/<#EMO_DIR#>/biggrin.gif\' class=\'bbc_emoticon\' alt=\':D\' />
Logged
Pages: 1 2 [3]
« previous next »