Rameh.b trojan NOD canot remove

I've just downloaded the trial version after uninstalling NAV. NOD has found the following file C:\Windows\System\shnahiatt.dll-Win32/Trojandownloader.Rameh.B trojan. NOD says it cannot clean this file and gives me the option to delete, rename or leave.

Help please !

 

Hi Huwge can you follow the steps located here.

These steps are fairly comprehensive and should make sure your system is clean...

Lets us know how you go...

Cheers

 

Thanks for the fast reply. I run Win98SE which is not supported by Ewidio. I run Sygate FW. Will NOD be able to remove the infection if I run it in safe mode ?.

Thanks

 

Yes, that post is a good general one for cleaning and confirming that a system is clean, it also has some world class prevention and removal tools in regards to spyware...

Cheers

 

Thanks for the fast reply. Unfortunately it wasnt plain sailing. When I clicked on Nod32 I got the blue screen of death and then a black screen with a cursor and HDlight constantly on, had to reset. Any other suggestions please ?

Thanks

 

Nod32 gave you the option of deleting, use that option, then try another reboot into safe mode and a further scan...

Cheers

 

Failing this, there are further removal instructions here

Cheers

 

I deleted the item before I saw the last post. I still get the crash in Safemode with NOD but scan now shows up clean. Only other change I noticed is that the floppy light comes on for a few seconds just before the Desktop shos up on screen. Hopefully that trojan is gone now

 

As Nod32 has been placed on a compromised system, can you continue with the steps in the above thread, leave out Ewido and Safe Mode, download the other programs, update and run them, this will confirm your system is clean...

Let us know how you go...

Cheers

 

Everything shows all clear now.....thanks. One quick question, I dont see EMON anywhere. I am on broadband and run Outlook Express. Is it disabled in the Trial Version or am I missing something?

Thanks

 

Good to see everything is now clean.

EMON is for MS Outlook only.

Cheers

 

Just a suggestion. Since you are running Win9x, you might want to download and use A2 squared. It works on Win9x and is almost as good as ewido, and it is free.

You can find it here: http://www.emsisoft.com/en/software/free/

 

Thanks for that JayT, I'm adding it to that thread for Win98 users.

Cheers

 

You are more than welcome Blackspear. After all the help you guys have given me, I am happy to be able to contribute something to the forum.