|
Posted by =?Utf-8?B?RHVuY2Fu?= on November 11, 2007, 5:38 am
If you were Registered and logged in, you could reply and use other advanced thread options
Can someone tell me how I can remove the "win32.popcap.a" virus ?
Thanks
|
|
Posted by Malke on November 11, 2007, 7:39 am
If you were Registered and logged in, you could reply and use other advanced thread options
Duncan wrote:
> Can someone tell me how I can remove the "win32.popcap.a" virus ?
>
> Thanks
Go through these general malware removal steps systematically -
http://www.elephantboycomputers.com/page2.html#Removing_Malware
Include scanning with David Lipman's Multi_AV and follow instructions to
do all scans in Safe Mode. Please see the special Notes regarding using
Multi_AV in Vista.
http://www.elephantboycomputers.com/page2.html#Multi-AV - instructions
http://www.pctipp.ch/downloads/sicherheit/35905/multi_av_scanning_tool.html
- download site
The site is in German but David's tool is in English so don't let that
worry you. Scroll all the way down to almost the bottom of the page and
you'll see a box titled "Infos Zum Download - Multi-AV Scanning Tool".
You'll see "Download von www pctipp.ch" and the live link to download
Multi_AV.
You can also check to see if there are targeted removal steps for your
malware here:
Bleeping Computer removal how-to's -
http://www.bleepingcomputer.com/forums/forum55.html
When all else fails, run HijackThis and post your log in one of the
specialty forums listed at the first link above (not here, please).
Not all tools used will work in Vista and you will need to run them
elevated. Since Vista is so new, it will be a while before removal
techniques and tools are developed. If you are unable to remove the
infection by following the general steps, register at one of the
HijackThis forums as suggested.
Standard caveat: If the procedures look too complex - and there is no
shame in admitting this isn't your cup of tea - take the machine to a
professional computer repair shop (not your local version of
BigComputerStore/GeekSquad). Please be aware that not all local shops
are skilled at removing malware and even if they are, your computer may
be so infested that Windows will need to be clean-installed. Have all
your data backed up before you take the machine into a shop.
Malke
--
Elephant Boy Computers
www.elephantboycomputers.com
"Don't Panic!"
MS-MVP Windows - Shell/User
|
|
Posted by PA Bear on November 11, 2007, 11:45 am
If you were Registered and logged in, you could reply and use other advanced thread options
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE, OE, Security, Shell/User)
AumHa VSOP & Admin http://aumha.net
DTS-L http://dts-l.org/
Duncan wrote:
> Can someone tell me how I can remove the "win32.popcap.a" virus ?
>
> Thanks
|
|
Posted by =?Utf-8?B?RHVuY2Fu?= on November 11, 2007, 2:18 pm
If you were Registered and logged in, you could reply and use other advanced thread options
"PA Bear" wrote:
> How do you know "win32.popcap.a" is present on the machine?
> --
> ~Robear Dyer (PA Bear)
> MS MVP-Windows (IE, OE, Security, Shell/User)
> AumHa VSOP & Admin http://aumha.net
> DTS-L http://dts-l.org/
>
> Duncan wrote:
> > Can someone tell me how I can remove the "win32.popcap.a" virus ?
> >
> > Thanks
>
|
|
Posted by PA Bear on November 11, 2007, 3:32 pm
If you were Registered and logged in, you could reply and use other advanced thread options
the name similarity to the legit Ad-Aware. What prompted you to
download/scan with NoAdware in the first place?
win32.popcap.a points to a well-known type of adware associated with an
ActiveX Control downloaded to play certain online games. You can delete it
but the next time you approve such an ActiveX Control, it will return.
Checking for/Help with Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://aumha.net/viewtopic.php?t=5878
http://wiki.castlecops.com/Malware_Removal_and_Prevention:_Introduction
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/data/prevention.htm
http://inetexplorer.mvps.org/tshoot.html
http://www.mvps.org/sramesh2k/Malware_Defence.htm
http://defendingyourmachine2.blogspot.com/
http://www.elephantboycomputers.com/page2.html#Removing_Malware
When all else fails, HijackThis v2.0.2
(http://aumha.org/downloads/hijackthis.exe) is the preferred tool to use.
It will help you to both identify and remove any hijackware/spyware with
assistance from an expert. **Post your log to
http://forums.spybot.info/forumdisplay.php?f=22,
http://castlecops.com/forum67.html,
http://forums.subratam.org/index.php?showforum=7,
http://aumha.net/viewforum.php?f=30, or other appropriate forums for expert
analysis, not here.**
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE, OE, Security, Shell/User)
AumHa VSOP & Admin http://aumha.net
DTS-L http://dts-l.org/
Duncan wrote:
> i ran a Noadweare scan, but then when looking to remove it they wanted a
> fee !!
>
>
>
> "PA Bear" wrote:
>
>> How do you know "win32.popcap.a" is present on the machine?
>> --
>> ~Robear Dyer (PA Bear)
>> MS MVP-Windows (IE, OE, Security, Shell/User)
>> AumHa VSOP & Admin http://aumha.net
>> DTS-L http://dts-l.org/
>>
>> Duncan wrote:
>>> Can someone tell me how I can remove the "win32.popcap.a" virus ?
>>>
>>> Thanks
|
| Similar Threads | Posted | | Re: virus | January 26, 2006, 7:01 pm |
| A virus, or not? | June 15, 2005, 9:02 pm |
| Virus | February 22, 2006, 5:46 pm |
| i might have a virus... | March 21, 2006, 10:40 pm |
| What virus is this? | April 6, 2006, 10:47 am |
| Virus or not? | May 9, 2006, 4:01 pm |
| says i have a virus, but cant get rid of it. | September 10, 2006, 6:18 pm |
| virus... | October 24, 2006, 6:35 am |
| help with virus | May 22, 2007, 4:11 pm |
| help with virus | May 22, 2007, 4:11 pm |
|
XML site map