Solved

sircam virus

Posted on 2001-07-26
6
234 Views
Last Modified: 2012-08-14
I'm trying to clean a machine that was infected with the sircam virus.

I ran through a dr solomon's scan
(updated to  virus def file 4.0.4150 scan engine 4140)

it found the virus, but couldnt clean, so i deleted the files instead.

Now when i try and run Word97 (or other.exe files)  - an error appears - sircam32.exe is needed to open file of this type

But if i run word by clicking on a word document instead, it runs ok. Outlook 2k also seems to seems to work, but i can't access anything in control panel, or run regedit or scandisk...

Any suggestions?

0
Comment
Question by:jlymn
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 20

Expert Comment

by:Dufo G. Belski
ID: 6322101
Have a look at this question which was posted to this topic area immediately before you posted yours.
 
http://www.experts-exchange.com/jsp/qShow.jsp?ta=virus&qid=20158227

It has a link to a lot of information about the virus, and on the linked page are more links to various  removal tools, like SCRMOVE2.ZIP, available here:

http://www.mcafeeb2b.com/naicommon/avert/avert-research-center/tools.asp

0
 

Author Comment

by:jlymn
ID: 6326080
The scrmove2.zip file didn't help. I stil have the problem of clicking on an exe and an error occuring.

Nothing i see on the web page mentions anything about this. The virus does seem to be removed, but the damage has been done - how could i fix this?
0
 
LVL 20

Expert Comment

by:Dufo G. Belski
ID: 6326467
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 20

Accepted Solution

by:
Dufo G. Belski earned 100 total points
ID: 6326470
"an error appears - sircam32.exe is needed to open
file of this type"

This comes up because the virus modifies the registry key

HKEY_CLASSES_ROOTexefile\shell\open\command

The tool above fixes the registry.

0
 

Author Comment

by:jlymn
ID: 6326840
that fixed it

Thanks!
0
 
LVL 20

Expert Comment

by:Dufo G. Belski
ID: 6326982
Great!!!
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
McAfee Client Proxy Removal 15 60
Right-Click in Explorer Very Slow in Windows 10 3 130
Ransom.CRYPTXXX Activity 2 9 123
Opinions of Sophos Intercept X and Endpoint Security 2 77
PREFACE The purpose of this guide is to provide information to successfully add specific IIS 7.0 role services for the Symantec Endpoint Protection Manager (SEPM) to function properly when installed on Windows 2008. AUDIENCE Information Technol…
PREFACE The purpose of this guide is to provide information to successfully install the MS SQL client tools for the Symantec Endpoint Protection Manager (SEPM) to function properly when installed on Windows 2008. AUDIENCE Information Technology…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question