Hard to find fixes for those done gone stubborn problems you encounter in every day tech life.
Are you having a hard time trying to remove a file called koos.exe? The symptoms are: your firewall tells you koos.exe is trying to call out. Along with antivirus programs telling you koos.exe is a virus.
Koos.exe is a Trojan and it acts like a rootkit. You’re going to want to use AVG’s Anti-Rootkit software to remove it. I used it tonight and it worked well.
Crazy stuff. Anyhow, I get this box upon trying to run the AVG Anti-Spyware installer on a Windows XP Home box. This box is not running the 64-bit version of Windows either. I’ve Googled high and low and can’t find an answer to my problem. I tried getting in contact with their support via their website but it appears to me that they only support their paid versions. That is understandable. So, here’s hoping that in the case you get this error message and you KNOW you don’t have Windows XP Pro 64-bit version and you are trying to get Ewido or AVG Anti-Spyware to install, you can comment on whether or not you figured out a way to fix this. If I do, I will, of course, help you out and post the fix here.
In other news, I found out about AVG’s new Anti-Rootkit removal tool. I used it tonight on a family member’s PC. It had the Koos.exe or Trojan/rootkit installed and every time Windows would start I’d experience a Data Execution Prevention error. I finally tried this program and it found several masked files. It removed them and I rebooted and no more DEP error!
So this week I’ve worked on five computers so far all infected with some type of spyware. Majority of them have numerous Trojans, worms, botnets, spambots, the works. It’s unbelievable. Also the normal routine that I use to remove these infections IS NOT WORKING! These guys are getting very smart. To the point that backup/clean install is becoming the ONLY option for these computers.
As I browse through the various antispyware forums and take a look at what is going on, majority if not all of the people needing help are doing it without having to do a backup/clean install. I must be doing something wrong or am using the wrong tools to get the job done. Anyhow, I take my hat off to those who do this stuff for free. I’d end up punching a wall or two if I had to do this for free. And I’d love to punch the spyware makers straight in the eye although if that happened and they stopped making spyware I’d lose my job.