virus clean up, pull out hd and put in a clean system to clean up?

[nerd1]

I've been given a machine to clean up. Its been infected with a virus after playing a network game. Now it just shuts down when the computer is turned on.

Can I simply pull the HD out (Win XP) and plug it into my system (VISTA) and run Avat, Search & destroy etc etc?

Will I break anything on the WinXP system? ... might be a bit late now i've started. what I'm worried about is file premissions etc.

what else should I do?

[nerd1]

Avast has found VBS.Solow but its not able to delete it/repair it/move to chest. I think its got to do with file permissions

Is there a boot cd that has antivirus software that can clean this up?

[nerd1]

hmm the boot cd will probably have the same problem with file permissions...

[tagg]

VBS.Solow.B propagates on computers via removable media drives. It modifies Web Browser title to "Taga Lipa Are"



Technical Name: VBS.Solow.B



Threat Level: Low



Type: Worm



Systems Affected: Windows All


Tagg

[tagg]

HOW TO REMOVE VBS.Solow.B :

1. Temporarily Disable System Restore (Windows Me/XP).
2. Update the virus definitions.
3. Reboot computer in SafeMode

4. Run a full system scan and clean/delete all infected files

5. Delete related files:

a) Open My Computer -> Tools Menu -> Folder Options -> View Tab:
b) Select: Show hidden Files and Folders
c) Uncheck: Hide Extensions for known file type and Hide Protected operating system
d) Click Yes Then OK.
e) Delete autorun.inf and FS6519.dll.vbs in all your hard drive. Commonly found in root of Drive C. Use your Windows "Search" function to find all.


6. Delete any values added to the registry.
Navigate to and delete the following registry entries:
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Run\"FS6519" = "%Windir%\FS6519.dll.vbs"
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Window Title" = "TAGA LIPA ARE!"



7. Exit registry editor and restart the computer.
8. In order to make sure that the threat is completely eliminated from your computer, carry out a full scan of your computer using AntiVirus and Antispyware Software. Another way to delete the virus using various Antivirus Program without the need to install can be done with Online Virus Scanner.

Tagg

[nerd1]

Thanks Tagg, will take the drive out and put it back in.

That doesnt explain why the computer's rebooting on start up. i'll see how it goes in safe mode.

[tagg]

you may have a power supply or memory problem


Tagg

[BCNZ]

It wasn't running Norton's by any chance was it?