Comments on: WinReanimator Removal Instructions (WinReanimator) http://www.xp-vista.com/spyware-removal/winreanimator-removal-instructions-winreanimator Your Ultimate Source for Windows Security Fri, 20 Nov 2009 02:55:09 -0500 http://wordpress.org/?v=2.8.4 hourly 1 By: Aunti-Civ http://www.xp-vista.com/spyware-removal/winreanimator-removal-instructions-winreanimator/comment-page-1#comment-25066 Aunti-Civ Sat, 19 Sep 2009 22:50:42 +0000 http://www.xp-vista.com/spyware-removal/winreanimator-removal-instructions-winreanimator#comment-25066 I used SDFIX in safemode, than created my own copies of Bravix.exe and braviax.exe (system32) and saved them, modified them to read only. Restarted and confirmed no activity using pc tools firewall plus. I used SDFIX in safemode, than created my own copies of Bravix.exe and braviax.exe (system32) and saved them, modified them to read only. Restarted and confirmed no activity using pc tools firewall plus.

]]> By: Aunti-Civ http://www.xp-vista.com/spyware-removal/winreanimator-removal-instructions-winreanimator/comment-page-1#comment-25065 Aunti-Civ Sat, 19 Sep 2009 21:05:55 +0000 http://www.xp-vista.com/spyware-removal/winreanimator-removal-instructions-winreanimator#comment-25065 I used SDFIX in safemode, than created my own copies of Bravix.exe and braviax.exe and saved them, modified them to read only. Restarted and confirmed no activity using pc tools firewall plus. I used SDFIX in safemode, than created my own copies of Bravix.exe and braviax.exe and saved them, modified them to read only. Restarted and confirmed no activity using pc tools firewall plus.

]]> By: Jonny http://www.xp-vista.com/spyware-removal/winreanimator-removal-instructions-winreanimator/comment-page-1#comment-24678 Jonny Mon, 17 Aug 2009 11:46:48 +0000 http://www.xp-vista.com/spyware-removal/winreanimator-removal-instructions-winreanimator#comment-24678 There's a better way around to these steps 9) If you delete it another ghost file just installs another one every time you start your computer. So we will delete the contents of it. 10) open a blank notepad application 11) drag the Bravix.exe into Notepad. This will show you what is in the file… It will be jumbled up characters and stuff. Just delete everything and type in some garbage in to it for the kicks. 12) Do the same thing to the other Bravix.exe file. Don't edit the file if it's protected it wont let you change it, either by system or the trojan, instead if you have NTFS file system (if not you shout convert it using convert C: /FS:NTFS) go to security to that file and add Everyone to it and check Deny for all options, this will render the file inaccessible on next access. There’s a better way around to these steps

9) If you delete it another ghost file just installs another one every time you start your computer. So we will delete the contents of it.
10) open a blank notepad application
11) drag the Bravix.exe into Notepad. This will show you what is in the file… It will be jumbled up characters and stuff. Just delete everything and type in some garbage in to it for the kicks.
12) Do the same thing to the other Bravix.exe file.

Don’t edit the file if it’s protected it wont let you change it, either by system or the trojan, instead if you have NTFS file system (if not you shout convert it using convert C: /FS:NTFS) go to security to that file and add Everyone to it and check Deny for all options, this will render the file inaccessible on next access.

]]>