Dear group,
More on the cntinuing saga of Zohar and the Dell...the only av scan I found that cured anything was bitdefender which eliminated me from having Trojan Backdoor. IzRam1.7, backdoor SBot.Gen, and Downloader Keeval.E
But they are not the main culprits..they are invited guests of this file...
wrar30b5.exe [WinCon.SFX=>{Upx}..and this file is resistant to delete in any mode by any service.
In fact even though ..and immediately as ...bitdefender found it, the screen altered leaving me only the choices to ignore or apply to all.
When you delete it it loads itself into the _restore files in C:\SystemVolume Information\ directory..and kills all restore points ...loads into the HKLM on reboot [Run\..& RunServices]
Also corrupts the Prefetch folder...and takes over internet service. This bug aims at AV's, disabling them if it is targeted..and furthermore it loads a prog called WAUCLT.EXE into your startup processes..and brings taskmger.exe with it. They take over the Standard and Local settings Folders.
I used RegClean to get rid of invalid entries and immediately lost my internet [again].
Tried booting in safe mode but now I get the error message 0x0000009a Violation Of License Agreement. Went to microsoft and they told me that's what i get for trying to tamper with licensed product on say, a 30 day trial..[!!!] they also said if I screwed up the registry with a third party product there was nothing they could do.
So now I'm really, really screwed.
Other than ritual suicide is there something someone can suggest.
[And Please DO pass this warning around to anyone on p2p ]
Thanks
-Zohar