i have a worm on my computer, and i have run the Mcaffree's software to get rid of it. However, i have quarentened several files that were unable to be cleaned. i have forgotten the name of the worm (i am at work and forgot to write it down, but i can get it later), but how do people get rid of these things if the virus program cannot clean certain IMPORTANT files? thanks john
Find the name of the worm and go to Symantec.com and download the removal tool. Or do a google search to find the removal tool. Many times you need to disable system restore, unplug the PC from the network (or cable modem) and reboot in safe mode before running the removal tool. Right now I'm being hammered at work with Netsky. I just cleaned 5 PCs for a client last night with a Netsky removal tool.
We got hammered with one too at work, and had to run McAfee's "Stinger" program to get rid of it. Personally, I use AVG on my home system and it works great. It's a free version, it just doesn't give you all the rights of the full version, but most of them you'd never use anyway. You can get it from www.grisoft.com if you decide to change. I used to use Norton, and had a subscription, until I got a virus that it didn't detect. I tried AVG's free version, on the advice of a friend of mine. It found and removed the virus as soon as it started, and I've been a user ever since. Scott
Booting in safe mode might do it - when you boot that way, only the core (needed) processes will boot. So, if the virus/worm process isn't running, your antivirus may be able to remove it. If you are comfortable with the registry, you could go to H_Key Local Machine, Software, Microsoft, Windows, Current Version, Run, and find the key that launches the worm... and delete it. It won't get rid of the program, but may prevent it from running when you boot. I'd back up the registry before attempting this, though (in case you goof up). I'd try Safe Mode first. You might also want to get a firewall (or use XP's, though few people I know trust the M$ firewall). This can prevent a lot of things from coming in the holes of windows. I use Kerio Personal Firewall (the free version). I've also switched primarily to linux, so have few problems with worms.
Like was said before, your system restore is probably keeping copies of the virus in it's protected folder. I had norton try over and over to delete them but it couldn't until I turned system restore off. start>settings>control panel>system>performance>file system>troubleshooting Check the box that says "disable system restore". You'll have to restart your computer before it'll take effect though. As soon as you startup, run the anti-virus and it should be able to delete them now. Just remember to turn it back on after you're done though.
