Solved

ms32dll.dll.32 virus removal

Posted on 2007-04-05
9
5,997 Views
Last Modified: 2013-11-22
I have removed ms32dll.dll.vbs from my system with a combination of nod32 and manually deleting registry entries.

I have deleted all instances of autorun.inf.

I did a repair reinstall of xp sp2.

but when i double-click on any drive i still get "can't find ms32dll.dll.vbs" message.

it's driving me crazy !!!
0
Comment
Question by:chrisfixit
  • 5
  • 3
9 Comments
 
LVL 22

Accepted Solution

by:
Bartender_1 earned 100 total points
Comment Utility
Have you turned off your system resotre when doing this?

See here for steps to follow in removal:
http://www.symantec.com/security_response/writeup.jsp?docid=2006-112416-3424-99&tabid=3

Hope this helps!

:o)

Bartender_1
0
 
LVL 1

Author Comment

by:chrisfixit
Comment Utility
yeah did that, but still same problem. there are NO registry entries containing MS32dll.dll.vbs.

Now however when I double-click on the D: Drive I get there is no file associated with... at least i think that'swhat it saysas its my girlfriends laptop wiuth german windows ;-)
0
 
LVL 27

Assisted Solution

by:Asta Cu
Asta Cu earned 400 total points
Comment Utility
Checked start-run-msconfig for start ups to see if something there is calling this?
0
 
LVL 27

Assisted Solution

by:Asta Cu
Asta Cu earned 400 total points
Comment Utility
Excerpt and link (friend had the same intrusion) .....  but another Expert above also cited a link that may already have helped resolve this (I hope).
RecommendationsSymantec Security Response encourages all users and administrators to adhere to the following basic security "best practices":

Turn off and remove unneeded services. By default, many operating systems install auxiliary services that are not critical, such as an FTP server, telnet, and a Web server. These services are avenues of attack. If they are removed, blended threats have less avenues of attack and you have fewer services to maintain through patch updates.
If a blended threat exploits one or more network services, disable, or block access to, those services until a patch is applied.
Always keep your patch levels up-to-date, especially on computers that host public services and are accessible through the firewall, such as HTTP, FTP, mail, and DNS services (for example, all Windows-based computers should have the current Service Pack installed.). Additionally, please apply any security updates that are mentioned in this writeup, in trusted Security Bulletins, or on vendor Web sites.
Enforce a password policy. Complex passwords make it difficult to crack password files on compromised computers. This helps to prevent or limit damage when a computer is compromised.
Configure your email server to block or remove email that contains file attachments that are commonly used to spread viruses, such as .vbs, .bat, .exe, .pif and .scr files.
Isolate infected computers quickly to prevent further compromising your organization. Perform a forensic analysis and restore the computers using trusted media.
Train employees not to open attachments unless they are expecting them. Also, do not execute software that is downloaded from the Internet unless it has been scanned for viruses. Simply visiting a compromised Web site can cause infection if certain browser vulnerabilities are not patched.

Writeup By: Kazumasa Itabashi
Source for more: http://www.symantec.com/security_response/writeup.jsp?docid=2006-112416-3424-99&tabid=2

Asta
0
Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

 
LVL 1

Author Comment

by:chrisfixit
Comment Utility
thx read that tho' - still no luck ;-(
0
 
LVL 27

Assisted Solution

by:Asta Cu
Asta Cu earned 400 total points
Comment Utility
Tried MS Windows Defender, or some of these other tools?
http://www.microsoft.com/athome/security/spyware/software/default.mspx
Security/home
http://www.microsoft.com/athome/security/default.mspx
Get a free safety scan for your computer
Windows Live OneCare safety scanner helps tune up your computer
http://www.microsoft.com/athome/security/update/windows_live_safety_center.mspx?wt.svl=body
0
 
LVL 27

Assisted Solution

by:Asta Cu
Asta Cu earned 400 total points
Comment Utility
Malicious Software Removal Tool
Published: January 11, 2005 | Updated: March 13, 2007
http://www.microsoft.com/security/malwareremove/default.mspx
0
 
LVL 1

Author Comment

by:chrisfixit
Comment Utility
ok, thanks all - ran bitdefebder online scanner - found another instabce - all's ok now.
0
 
LVL 27

Expert Comment

by:Asta Cu
Comment Utility
Thanks for the good news.  Hopefully the next few reboots will still find things resolved.
Best wishes,
":0)  Asta
0

Featured Post

Do You Know the 4 Main Threat Actor Types?

Do you know the main threat actor types? Most attackers fall into one of four categories, each with their own favored tactics, techniques, and procedures.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
How Dangerous is TeamViewer right now? 4 297
ACAS / Nessus 2 82
Ransomware 9 59
Spam mails from a compromised internal computer 5 24
Malicious software is nothing new. Viruses have been created and spread since before physical networks became popular; back then viruses spread via floppy disk and modem connections with shared systems. Viruses weren't so rampant and protecting your…
Transferring data across the virtual world became simpler but protecting it is becoming a real security challenge.  How to approach cyber security  in today's business world!
Illustrator's Shape Builder tool will let you combine shapes visually and interactively. This video shows the Mac version, but the tool works the same way in Windows. To follow along with this video, you can draw your own shapes or download the file…
Access reports are powerful and flexible. Learn how to create a query and then a grouped report using the wizard. Modify the report design after the wizard is done to make it look better. There will be another video to explain how to put the final p…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now