Solved

Virus Issue (Win.exe - error)

Posted on 2009-07-05
2
445 Views
Last Modified: 2013-12-09
Hi,

We are facing a problem with our client machine, till now 5 machine have been affected with this issue, for which i have attached the screen shot.

We are using symantec End point protection which are up to date on the infected machine.

This error is getting pop up ever  5 mts, even we are not able to access registry / task manager and unable to enable the hidden files & folder.

This win.exe file is there in c:\windows\win.exe which is not the system file, when we are trying to delete it its getting deleted but again coming back after some time, we tried to contact with symatec still the case is in progress after 12 days ,

If any quick solution will be appreciated.

Regards,

Syed tanveer hussain.


error.doc
0
Comment
Question by:tanveer_hussain
2 Comments
 
LVL 13

Accepted Solution

by:
JeremySBrown earned 500 total points
ID: 24782669
Hi tanveer_hussain,

Try running the following:

   1. Combofix
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

   2. Dr. Web Anti-Virus
http://www.freedrweb.com/

However...there's also SUPERAntiSpyware and Malwarebytes' Anti-Malware...but these are meant for spyware and malware removal...but scan these as well...

http://www.superantispyware.com/
http://www.malwarebytes.org/mbam.php

Also before running Combofix...temporarily disable your firewall...and any other anti-virus to prevent any conflicts...
0
 

Author Comment

by:tanveer_hussain
ID: 24783167
Mr. JeremySBrown:,


Thanks a lot, i tried running combofix after that regedit /task manager / hidden folders started working, even now i am not getting that error message.

Thanks for your quick reply and support.


regards,

Tanveer.
 
0

Featured Post

What Is Threat Intelligence?

Threat intelligence is often discussed, but rarely understood. Starting with a precise definition, along with clear business goals, is essential.

Join & Write a Comment

As more computers now shipped with 64-bit version of Windows, more users are now using this Operating System.  So it's important to be aware how some 32-bit diagnostic tool works on these systems, so we know what to expect when analyzing the logs an…
Some site administrators might be considering how to filter incoming traffic to a site by identifying the domains or networks of the traffic source, in the same way that a spam filter does on an email server, such as blocking all emails sent from th…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now