i have a virus (TROJ_CONHOOK.AA) located in C:\WINDOWS\system32.icwiew.dll, and security program (trend micro pc-cillin) says that it needs to be manually deleted. I don't know very MUCH about things like this, and I'm not sure if the file it's located in (icwiew.dll) is important or not, but each time i attempt to delete it, it says that it is being used by another program or person. even when i close all the PROGRAMS on my computer, halt internet traffic, ect. the message still comes up. i need to know how to delete icwiew.dll, or clean out the virus if this file is too important to delete. please help! thank you. echinococcosis...... First of all , it's a trojan ....... So if your using win XP , the first thing to do is to turn off system restore on all drives. Go to the control panel and click on the [highlight]system icon [/highlight] ( make sure you have the control panel set to display the classic view ....... When the system properties BOX opens ....click the [highlight]System restore tab [/highlight]( up top ) when the new window opens , put a check mark in the box in front of "turn off system restore on all drives" then click apply and ok and close up the control panel and exit . Now reboot your machine into "SAFE mode" ..... Once it shuts down ,and just as it starts to reboot, repeatedly tap the F8 key until you are offered various options to start ....select SAFE mode .........
once it finishes loading , go into C drive / programs / windows ......... then scroll down to the system32 folder ....... open it and go down to [highlight]icwiew.dll[/highlight] right click it and select delete and it should delete. Now run a scan with your anti virus program , it should now be clean. Assuming it is , reboot back into Normal and you should be good to go.

dl65 If you then still cannot get rid of it, read-up here. 8-)DLoad, update and run the FOLLOWING:

Ewido
Stinger
Aswclnr

Do this in Safe Mode with system restore turned as per Dusty's instructions above...

patio. 8-)thanks for the advice. dl65, i tried that but it didn't work. same with those programs you suggested patio. fffreak, i went to the link and tried many of the options it gave. i finally found one that worked: i downloaded a program that allowed me to see the specific process that was using the file and end it. the process was called winlogon.exe, and my computer said it was critical but i ended it anyway. the screen went blue and said something about a fatal error, but then when i restarted it everything was normal. icwiew.dll has dissapeared... no idea where it went, but i never actually deleted it manually. i went to run and typed winlogon.exe again, and now it's back under processes. so the virus is gone, but i'm a bit worried that i may have messed something up by ending winlogon.exe. i know i must sound like such an idiot when it comes to computers. i mean, i know the internet inside out and i can use all the graphic design and photo editing programs but when it comes to figuring out all of this internal working stuff i'm really at a loss. so do you think that by ending (and restarting) winlogon.exe, i destroyed some important files or something? and if so, what should i do?You didn't do anything, all you did was end that process which is your logon application into windows, when you rebooted everything went back to normal.Quote

DLoad, update and run the following:

Ewido
Stinger
Aswclnr

Do this in Safe Mode with system restore turned as per Dusty's instructions above...

patio. 8-)