Solved

how to remove "Generic Downloader X" Virus.

Posted on 2008-10-22
5
2,620 Views
Last Modified: 2013-11-22
A guy in my office has a newer Windows XP Pro pc that was having alot of pop-ups urging him to buy an anti-virus solution.  His PC allready had an active subscription of Sonic WALL Enforced Antivirus running on it.

I ran some anti virus scan and deleted all the files that I could.  I could not deleted the following file however "ocicx.dll" which was located in Windows/System32.

How do I get rid of this anoying virus?  
0
Comment
Question by:Gary Gordon
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
5 Comments
 
LVL 4

Author Comment

by:Gary Gordon
ID: 22780061
Correction,  the name of the infected file was "obicx.dll".
0
 
LVL 23

Accepted Solution

by:
phototropic earned 500 total points
ID: 22780138
The file is related to Zlob Trojan which installs the VirusResponse Lab 2009 rogue anti-spyware program :

http://www.bleepingcomputer.com/startups/obicx.dll-24088.html

I would recommend scanning with Malwarebytes' Antimalware:

http://www.malwarebytes.org/mbam.php

Download the trial version, update it fully, then click on "Perform a quick scan".  Show results then click on "remove selected". Post the log here.

I would also run Smitfraudfix:

http://siri.geekstogo.com/SmitfraudFix.php

Run option 2 in safe mode.  Post the log.

If you still have problems after that, download and run SDFix:

http://www.bleepingcomputer.com/files/sdfix.php

It would also be a good idea to reset your hosts file:

http://www.mvps.org/winhelp2002/hosts.htm

Good luck!!!
0
 
LVL 4

Author Comment

by:Gary Gordon
ID: 22781468
Wow -  the Anti Mal Ware and the Smit Fraud Fix were very effective.
0
 
LVL 4

Author Closing Comment

by:Gary Gordon
ID: 31508901
wow
0
 
LVL 23

Expert Comment

by:phototropic
ID: 22798828
Glad you got it sorted.

Thanks for the points and grade...
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

These are on the increase and getting more common these days. Users who use the Google search engine may complain of having their search redirected to unwanted sites, regardless of what browser is used. This happens when the system is infected with…
Setting up a Microsoft WSUS update system is free relatively speaking if you have hard disk space and processor capacity.   However, WSUS can be a blessing and a curse. For example, there is nothing worse than approving updates and they just have…
Established in 1997, Technology Architects has become one of the most reputable technology solutions companies in the country. TA have been providing businesses with cost effective state-of-the-art solutions and unparalleled service that is designed…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question