How do you remove mevio virus?

June 6, 2011 at 18:23:20
Specs: Windows XP
When using IE, various web sites redirect you to this site called

See More: How do you remove mevio virus?

Report •

June 6, 2011 at 20:12:12

Please download Malwarebytes’ Anti-Malware (black button with green and white icon) Save to the Desktop:

Double-click mbam-setup.exe and follow the prompts to install the program. (For Vista or Windows 7, select: Run as Administrator)

Run Malwarfebytes’ AntiMalware and update the program.
Once updated, select Perform Full Scan and click the scan button.

When the scan finishes, click OK in the message box, and you will see the results of the scan.

Click the Remove Selected button to get rid of the malware.

When Malwarebytes finishes, you may be prompted to reboot. If so, reboot.

Please post the Malwarebytes log in your reply so we can see where we are at, and plan any additional removal strategy, if necessary.

Report •

June 8, 2011 at 06:00:28
Followed above instructions, and found 4 viruses which were then removed. After the reboot, getting an error indicating "dqant32.dll" is missing and cannot be loaded. Not sure what this file is related to.


Malwarebytes' Anti-Malware

Database version: 6796

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

6/7/2011 2:39:31 PM
mbam-log-2011-06-07 (14-39-31).txt

Scan type: Full scan (C:\|)
Objects scanned: 425319
Time elapsed: 3 hour(s), 42 minute(s), 16 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 4

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\system volume information\_restore{ee03df12-9e4f-4bd6-8037-3cec8235025f}\RP1\A0000093.exe (Trojan.Downloader) -> Quarantined and deleted successfully.
c:\system volume information\_restore{ee03df12-9e4f-4bd6-8037-3cec8235025f}\RP2\A0000260.dll (Trojan.Hiloti) -> Quarantined and deleted successfully.
c:\system volume information\_restore{ee03df12-9e4f-4bd6-8037-3cec8235025f}\RP2\A0000274.dll (Trojan.Hiloti) -> Quarantined and deleted successfully.
c:\system volume information\_restore{ee03df12-9e4f-4bd6-8037-3cec8235025f}\RP2\A0000296.exe (Backdoor.Bot) -> Quarantined and deleted successfully.

Report •
Related Solutions

Ask Question