XP Internet Security 2012 Can you

XP Internet Security 2012 Came in to day and was sandboxed by Como.

Checked all the usual items, dumped the temp files, and then deleted the two files.

Program cleared up and the virus logo disappeared and CR-- quit showing on the computer.

Question: Any where else to look before rebooting for hidden copies? I downloaded Chase's information but wonder if I got lucky and it is gone before I have to take all day to get rid of it.

Anything else to check or do? All the scans and spybot all show nothing. Machine was protected and I was changing out Comodo to the suite?


Thanks,

Jim

 

K13

The luck of fools. Mainly me.

I was trying to change out the Comodo from suite to the firewall and antivirus and they kept over writing each other. Went bk to suite and just did a custom install. My bad at 3:15 when the program asked about a program to allow on line. Guess what. XP "cr-- 12".

Any way had nothing to lose so deleted the two programs in sandbox, cc, look in msconfig for anything visible and rebooted.

Lucked out. Looks like "hopefully" that the program is gone. The icon in the bottom right box deleted after removal of the the two sandboxed programs. Guessing that sandbox isolated the two programs and kept one or both from replicating and hiding all over the machine. It has not reappeared.

About 6 years ago my office machine got about:blank and I spent 2-3 weeks with Chase on it. This was worth the gamble for me to save the time since I know when it came on board and had done no reboot or anything.

We will see. I did not throw Chase's hand out away yet.

 

Not that lucky after all. Posted and here it came back.

Here goes the day trying to get all those log files done.

comodo caught them again and sandboxed then deleted and icon disappeared again.

cocuments and Settings\jims\local settings\application data\dln.exe

and c and S\jims\local settings\temp\958.3200.exe

 

K13

The computer that is infected is an old windows xp core2 quad q8200 @ 2.33 that I brought home to do this surf and some paperwork on because I like the big screen and office 07 will run on it. When it got the bug I was redoing it for security and another lap top and one for the office. I got surprised on one of the comodo type searches afaik.

I have all the major files duplicated along with the restore disks.

Would it be easier and quicker to just wipe the drive and start over vs run the logs and look for the office 12 infection? comodo is trapping the two new files each morning but the bug is still there just not showing up on the screen every 5 minutes.

It is back to work today and not much time to fight this problem.

Thanks again,

Jim