How to get rid of 2u923g01.exe, herss.exe and cvasds0.dll virus infected files?

Recently, it seems that few PCs in my company were having  the virus trail of the above files, suspected of infected by virus. For example, in the symantec endpoint antivirus, I saw c:\2u923g01.exe was detected. Other than this, herss.exe and cvasds0.dll were found in user profile temp folder.

What are these? How to entirely get rid of them?
BalackAsked:
Who is Participating?
 
sb7785Connect With a Mentor Commented:
In addition to the other great suggestions posted; if they all fail, try creating a bootable antivirus CD. If that doesn't fix it, then you've got some serious problems. It's always good to keep on hand at anytime:
http://www.experts-exchange.com/Software/Internet_Email/Anti-Virus/Q_25347695.html 
http://www.experts-exchange.com/articles/Storage/Misc/Creating-a-bootable-CD-USB.html
0
 
CPetrich12Commented:
Malwarebytes has saved my customers more times than I can remember. Download, Install and then run a full system scan. It will reboot after the scan if it finds any viruses so that they can be forecefully removed.

http://download.cnet.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?tag=contentMain;contentAux
0
Never miss a deadline with monday.com

The revolutionary project management tool is here!   Plan visually with a single glance and make sure your projects get done.

 
notacomputergeekCommented:
To check an individual file for a virus, go to :
http://virusscan.jotti.org/en

Also, search the registry for these filenames to see if/how they are referenced and run msconfig to see if they are there.

ccleaner (free) will delete all temp/misc files:
http://www.piriform.com/ccleaner/download
0
 
rpggamergirlCommented:
Use another scanners like MBAM as alrady suggested or ComboFix if SEP isn't able to remove them.
ComboFix:(We need to look at the log to make sure it's clean.)

http://www.bleepingcomputer.com/combofix/how-to-use-combofix 
 
0
 
BalackAuthor Commented:
I ran combofix in one desktop, and at the end, the system encounters blue screen and I have to reboot it.
0
 
optomaCommented:
BSOD?
Could you upload the minidump file from:
c:\windows\minidump
0
 
c_a_n_o_nCommented:
If your system is infected with a pest, malware, trojan, or virus your system will behave unexpectedly.  The best method to attempt resolution is to completely rule out the operating system by bypassing it.  To do so, you will need a rescue CD.  There are several that are out there, you might be able to create one, there are instructions and sites that can assist with that.  But the easiest way is to use a product that is FREE, and I have used successfully for several of my clients and on many workstations.

BitDefender (FREE Downloadable Rescue CD).  Available Here.
http://download.bitdefender.com/rescue_cd/

Instructions on the product.
http://www.bitdefender.com/KB417-en--Using-the-BitDefender-Rescue-CD.html

Hope this helps.

PS.  This may sound like a "canned" response, it just might be.  However, it is the easiest and most effective method to resolve a situation like this.
0
 
BalackAuthor Commented:
Not bad
0
All Courses

From novice to tech pro — start learning today.