About Brian Benosky Expertise I will help you in eradicating malware and all forms of virus/trojans/adware. I can answer all PC-related hardware issues. I can also troubleshoot Windows OS errors (including Vista) and other software problems. HijackThis logs are a MUST for virus related help. If you do not know how to do this, I have posted easy-to-follow instructions on the Ask a Question page. Every computer infection is different, so I will give you personal instructions on how to remove the malware, not a 'pat' answer. You can be assured of a prompt, polite, and knowledgeable response in all regards.
Experience I have over 25 years experience in using, building, and repairing computers. I have helped over a thousand people here on AllExperts, with consistent Top Feedback Scores. Please look at my answers here:
http://en.allexperts.com/q/Computer-Security-Viruses-1737/indexExp_84308.htm
I am also a Top Contributer of General Computing answers in Yahoo! Questions.
Education/Credentials College Educated
Self-taught Computer Skills
Question Hi Brian:
I live in Canada, so I don't know if this "allexperts" page works when sending questions from here.
My question is simple: a virus by the name of "Backdoor.Win32Xeol.g" has attached itself to two files in my XP operating system. The first file is C:\program files\BVE4\train\LT1995|OS_ATS\dll and the second file is really long, but starts off as C:\System Volume Info----and goes on and on, but ends .dll.
Thank you for your help - much appreciated.
Answer Hi JW
The C:\System Volume Info file is a System Restore file. Your safest bet is to turn off System Restore, then once the computer is clean, turn it back on again. Instructions for this can be found here: http://support.microsoft.com/kb/310405
After turning it off, follow my instructions below to remove the trojan:
Boot into safe mode. After pressing the power button, continuously tap the F8 key until a black screen with a menu appears. Choose to boot Vista into Safe Mode With Networking, then log on as usual. Then open up a browser and continue with the instructions:
Please download Malwarebytes' Anti-Malware to your desktop from here:
Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to
o Update Malwarebytes' Anti-Malware
* then click Finish.
* If an update is found, it will download and install the latest version.
*Run a Full Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad. Save that log and reboot normally.
Make sure you close EVERY open window and ALL browser windows. The only thing that should be open is the HijackThis program.
Double-click on the file you just downloaded.
Click on the "Install" button.
Upon install, HijackThis should open for you.
Should it not open, go to C:\Program Files\Trend Micro\HijackThis and double click on HijackThis.exe
Choose 'Do a system scan and save a log file'.
Copy the text file which opens in Notepad and paste it in your follow-up, along with the Malwarebytes log.
* Do not fix any entries in HijackThis, as they may be harmless.
