How to Solution Here

From my previous posts, the recommended methods should do the trick for most generic and
straight forward Trojan viruses. However, some of these wproxp.exe, dxdlg.exe and boot.vbs
can be quite a pain in the neck and need a stronger dose of solution to get it right.

The advanced steps below require the use of Trend Micro which I used to eradicate it completely but the steps are quite complicated. As a precautionary step, you MUST own a copy of TrendMicro Internet antivirus software first. You may get one here so that the latest virus data file is there.

 RUN SYSCLEAN:

1. Create a new folder on your Desktop named “SYSCLEAN”
2. Click on his link then save it to your Desktop:
http://www.trendmicro.com/ftp/products/tsc/sysclean.com
3. Once finish, copy the sysclean.com file to the “SYSCLEAN” folder.
4. Click on his link then save it to your Desktop:
http://www.trendmicro.com/ftp/products/pattern/cpr/lpt465.zip
5. Open lpt465.zip file then right click on the lpt$vpn.465 then choose Copy.
6. Right click on the “SYSCLEAN” folder then choose Paste.
7. Open the “SYSCLEAN” folder then you should have two files in it [sysclean.com and lpt$vpn.465]
8. Click on his link then save it to your Desktop:
http://www.trendmicro.com/ftp/products/pattern/spyware/ssapi/

ssapiptn671.zip
9. Open ssapiptn671.zip file then right click on the ssapiptn.da5 then choose Copy.
10. Right click on the “SYSCLEAN” folder then choose Paste.
11. Open the “SYSCLEAN” folder then you should have three files in it [sysclean.com, lpt$vpn.465 and ssapiptn.da5]
12. Under safe mode, double click on sysclean.com then complete the scan.

Restart back to Normal Mode.

Go to this link and download Process Explorer and save it to your Desktop:
http://technet.microsoft.com/en-us/sysinternals/bb896653.aspx
Extract the file to your Desktop

Go to this link and download the AutoRuns and save it to your Desktop:
http://technet.microsoft.com/en-us/sysinternals/bb963902.aspx
Extract the file to your Desktop

Run Process Explorer and Kill the Following Processes:
wscript.exe
dxdlg.exe

Run Autoruns and under logon tab, remove
C:\WINDOWS\system32\wscript.exe C:\WINDOWS\system32\boot.vbs
Search for entries named wproxp and remove it

Remove the following files from your PC:
C:\WINDOWS\system32\dxdlg.exe
wproxp.exe (Most probably in your system32 or windows folder)
C:\WINDOWS\system32\boot.vbs

Restart back to normal mode.

Enjoy a virus free PC secured environment.

Refer to my previous post on what you can do to get rid of the viruses using disk cleanup steps.

To further clean your system, clear your browser cache:

To clear the browser cache:
1. Open Internet Explorer
2. Click Tools button from menu on top
3. Select Internet Options
4. Click Delete Cookies and click OK.
5. Click Delete Files, put a check mark on “Delete all offline contents” if there is such line, then click OK.

My computer was infected with WProxp.exe and I used the Trend Micro antivirus software to find that out. However, it was only able to identify the files not able to get rid of it. The message information was that you  have to delete these files yourself but the antivirus software was not able to do that for you. They were able to quarantine some files but the WPROXP.EXE is a very virulent one and not going to go away so easily.

This is what I find out :

Do a disc cleanup, by following these easy steps:
1. Click on Start.
2. Go to Programs>>Accessories>>System Tools>>Disc Cleanup
Note: If disc cleanup is not present from the step above, kindly open My Computer, right-click the harddisk drive (for example: Local Disk (C:) and click on Properties. Disk Cleanup would be right at the bottom.
3. You will see that it will calculate for free space, so please wait.
4. Then, you’ll see a checkbox list. Please check all boxes.
5. Then, click on Ok.

This is the first step. Watch out for my next post if this step doesn’t do the trick.