Results 1 to 8 of 8

Thread: Can't remove Win32.Palevo

  1. #1
    Junior Member
    Join Date
    Sep 2011
    Posts
    17

    Default Can't remove Win32.Palevo

    Problem:
    Win32.Palevo
    Kind:
    1 entries TrojansC-02
    Registry Value:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Taskman=...C:\RECYCLER\*\*.exe...

    Hi,
    Search and Destroy keeps coming up with above problem after I "Fix selected problem" multiple times.
    1. Does this mean it is not removed or do I keep going to sites or.. from where this is put on my machine again and again?
    2. What does this Win32.Palevo do, i.e. how severe is it?
    3. What can be done to permanently remove it?

    Thanks for your reply in advance!
    Last edited by tashi; 2011-09-06 at 23:12. Reason: Moved from the Malware forum for the moment. :-)

  2. #2
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello vanboe,

    Please open Spybot Search & Destroy > Help > About and let us know the version and date of last definitions.

    Also, have you tried running Spybot-S&D while in safe mode?

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  3. #3
    Junior Member
    Join Date
    Sep 2011
    Posts
    17

    Default Win32.Palevo

    Thanks for your reaction tashi.

    In answer to your Qs
    1. version 1.6.2.46
    Latest detection update :8/17/2011 (=date of last definitions?)
    2. I run S&D in Default mode. How do I run it in Safe mode, is this under Advanced mode?

    Back to you...

  4. #4
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello vanboe,
    Quote Originally Posted by vanboe View Post
    Latest detection update :8/17/2011 (=date of last definitions?)
    Need to update. Updates: 2011-08-31

    2. I run S&D in Default mode. How do I run it in Safe mode, is this under Advanced mode?
    For future reference: http://forums.spybot.info/showpost.p...29&postcount=2

    But I am going to link you to the Malware Removal Forum sticky which includes guidelines and instructions in post #2 on how to provide preliminary "DDS" logs used for analysis.

    "BEFORE You POST"(Please read this Procedure Before Requesting Assistance)

    Then start a new topic in that forum posting the logs as shown and a volunteer analyst will advise you when available.

    Best regards.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  5. #5
    Junior Member
    Join Date
    Sep 2011
    Posts
    17

    Default Win32.Palevo

    OK, I will proceed as instructed.

  6. #6
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hi there,

    Log split off and moved to the malware forum.

    http://forums.spybot.info/showthread.php?t=63816
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

  7. #7
    Junior Member
    Join Date
    Sep 2011
    Posts
    17

    Default Win32.Palevo

    tashi.
    I will proceed from the new location -malware forum- and wait for a volunteer analyst to advise further.

  8. #8
    Member of Team Spybot tashi's Avatar
    Join Date
    Oct 2005
    Location
    USA
    Posts
    30,955

    Default

    Hello vanboe,

    Ken has responded.
    Microsoft MVP Reconnect 2018-
    Windows Insider MVP 2016-2018
    Microsoft Consumer Security MVP 2006-2016

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •