Results 1 to 4 of 4

Thread: atapi.sys Olmarik.PY virus

  1. #1
    Member me_ashman's Avatar
    Join Date
    Jan 2008
    Posts
    377
    Thanks
    240
    Thanked 18 Times in 9 Posts
    Rep Power
    216
    Reputation
    256

    Default atapi.sys Olmarik.PY virus

    Nod picked this up yesterday morning and I cant seem to clean it. Anyone come across this before?

    Win7

    Ash



Look Here ->
  • #2
    Senior Member
    ssrattus's Avatar
    Join Date
    Jan 2008
    Posts
    4,160
    Thanks
    515
    Thanked 821 Times in 490 Posts
    Rep Power
    455
    Reputation
    5922

    Default

    Have you tried booting into safe mode (press f9 on boot) and cleaning it in safe mode? Malwarebytes has a good cleaner...

  • #3
    Member me_ashman's Avatar
    Join Date
    Jan 2008
    Posts
    377
    Thanks
    240
    Thanked 18 Times in 9 Posts
    Rep Power
    216
    Reputation
    256

    Default

    yeah tried it..I'll keep reading

  • #4
    Senior Member
    ssrattus's Avatar
    Join Date
    Jan 2008
    Posts
    4,160
    Thanks
    515
    Thanked 821 Times in 490 Posts
    Rep Power
    455
    Reputation
    5922

    Default

    You are probably going to have to boot from your OS CD (what is it xp or vista?) into recovery console and expand atapi.sys from the cd and replace the existing atapi.sys.

    From the recovery console cmd window check where the infected atapi.sys is, ie it should be c:\windows\system32\drivers\


    Then from the recovery console cmd window change directory to the i386 directory on the cd and type in "expand -r atapi.sy_ c:\windows\system32\drivers\", without the quotes and this will write the clean atapi.sys over the infected atapi.sys.


    If this works reset your system restore to stop windows restoring it in the future...

    1. Turn off System Restore.
    On the Desktop, right-click My Computer.
    Click Properties.
    Click the System Restore tab.
    Check Turn off System Restore.
    Click Apply, and then click OK.

    2. Reboot.

    3. Turn ON System Restore.
    On the Desktop, right-click My Computer.
    Click Properties.
    Click the System Restore tab.
    UN-Check *Turn off System Restore*.
    Click Apply, and then click OK.

  • Similar Threads

    1. virus fighter
      By malo in forum Security and Privacy
      Replies: 0
      Last Post: 23-12-08, 10:14 AM
    2. Virus Fighter
      By crowbar in forum Security and Privacy
      Replies: 7
      Last Post: 23-08-08, 04:08 PM
    3. Virus help =S
      By jimbahh in forum PC Software
      Replies: 7
      Last Post: 13-03-08, 03:37 PM

    Bookmarks

    Posting Permissions

    • You may not post new threads
    • You may not post replies
    • You may not post attachments
    • You may not edit your posts
    •