Scott said:
I have A Backdoor roxy virus on my system that I can't
seem to get rid of with Norton Anti-Virus with the new
definitions.. Can anyone tell where I might beable to
manually get rid of it?
Thanks Scott
try ... this is from the F-Secure site for an older variant but may still be pertinent
"When the worm is first run on a system it copies itself to the system directory with the name
'gesfm32.exe'. This copy of the worm is then added to the registry to the following locations:
'HKLM\Software\Microsoft\Windows\CurrentVersion\Run\Microsoft Netview'
'HKLM\Software\Microsoft\Windows\CurrentVersion\RunServices\Microsoft Netview'
To clean this worm these registry keys must be removed and the worm copies mentioned above deleted.
"