Are you sure they are not being detected in the Microsoft Antispyware
Quarantine Folder ? If they are you can clear these by opening MS Antispyware
and going to "Tools" on the top bar, Goto "Spyware Scan" and then to "Manage
Spyware Quarantine" and clear that folder,
Any program that offers RealTime Protection can prevent Malware from being
removed as they can restore the settings when they detect changes so there
could be a conflict which is stopping the malware from being fully removed,
Running scans in safe mode where the real time protection isnt active or
disabling the real time protection while removing the malware would be the
best option, The real time protection applies to all these programs (
Winpatrol, Spywareguard, Spybot s&d (Teatimer option), Ad-Aware's Adwatch,
Microsoft Antispyware's Real Time Protection, SpySweeper, Counterspy, Spyware
Doctor etc.. )
IEPlugin and Imiserv.F relate to the same malware, Use the Removal Tool from
Symantec in safe mode to remove this
Win32.SillyDl.LC is a trojan downloader and will attempt to install malware
on the system untill its removed, This could be how the infections keep
coming back but there could also be a conflict with Real Time protection
restoring the settings after removal,
Cussifide.A is another trojan downloader but this is connected to
SurfSideKick and tries to install files onto the system direct from the
surfsidekick site. SSK hide files in temp folders so using Ccleaner would
clear them once the malware is removed.
Download Ewido, IEPlugin Remover and Ccleaner
Download Symantecs IEPlugin Remover
http://securityresponse.symantec.com/avcenter/FxIeplgn.exe
Save it to desktop and run in safe mode.
Download Ewido (Its a 14 day trial but its performs fine after this expires
as a standard scanner and remover)
http://www.ewido.net/en/download/
Install ewido. During the installation, under "Additional Options"
uncheck "Install background guard" and "Install scan via context menu".
Launch ewido , On the left side of the main screen click update
Click on Start and let it update.
DO NOT run a scan yet. You will do that later in safe mode.
Download Ccleaner
http://download.ccleaner.com/download124bin.asp
Install Then close
Copy and save this to notepad if needed so you can view it in safe mode
Reboot into safe mode (Reboot and keep tapping F8 then choose safe mode from
the list)
Once in safe mode run the IEPlugin remover by double clicking FxIeplgn.exe
from the desktop and let it finish scanning the system,
Run Ewido again.
From the main menu click on 'scanner' then click 'Complete System Scan'
Run Ewido again. From the main menu click on 'scanner' then click 'Complete
System Scan' When ewido finds something, it will pop up a notification.
Select "Remove" and check the boxes "Perform action with all infections" and
"Create encrypted backup" then click on ok.When the scan finishes, click on
"Save Report" and save it to your desktop or c:/drive incase you need it
again.
Run Ccleaner and Press "Run cleaner"
While still in safe mode reset the Internet Settings : Goto Start Menu then
Control Panel then to Internet Options, Click the Programs Tab and press
"Reset Web Settings" and include the homepage then press Yes, Then goto the
General Tab and enter the homepage you want to use into the space provided
and press Apply .
Reboot back to normal mode
Let Us know if you have more problems
Regards Andy
