Do you know skp66.exe malware? This virus is infecting all computers in my institution. CIS can found it but can’t remove it (nor send it to quarantine).

When Comodo found skp66.exe, if I click in Remove or quarantine, then the computer restarts. And the virus remains.

Can you give the location of this malware?
Where is it detected?

have you tried scanning on safe mode?

Hey Bardo… look at
Comodo → Defense+ → Active procceses. If you find skp666.exe terminate the process.

Now try removing it…

Please post back!

Lord Ami: Comodo gives us in a dialog window this virus in the following path:

C:\Documents and settings\margara\Configurações Locais\Temporary Internet Files\Content.IE5\KRG6H314\skp66.exe

ganda 32bit: Yes, I has tried in safe mode, no sucess.

add it to My Blocked files in D+

Please post back results

It appears to be a temp file, so can probably be removed with CCleaner.

Download CCleaner from here to clean temp files from your computer.

[]Double click on the ccsetup.exe file to start the installation of the program.
]Select your language and click OK, then next.
[]Read the license agreement and click I Agree.
]Click next to use the default install location.
[]Under Install Options, choose all the default settings except I would recommend that you unclick/untick install the Yahoo! Toolbar, unless you want it. You can also Uncheck the ‘Automatically check for updates’ box.
]Click Install then finish to complete installation.
[]Double click the CCleaner shortcut on the desktop to start the program.
]On the “Windows” tab, under “Internet Explorer,” uncheck “Cookies” if you do not want them deleted. (If deleted, you will likely need to reenter your passwords at all sites where a cookie is used to recognize you when you visit).
[]If you use either the Firefox or Mozilla browsers, the box to uncheck for “Cookies” is on the Applications tab, under Firefox/Mozilla.
]Click on the “Options” icon at the left side of the window, then click on “Advanced.”
deselect “Only delete files in Windows Temp folders older than 48 hours.”
[]Caution: It is not recommended that you use the “Issues” feature unless you are very familiar with the registry as it has been known to find legitimate items. Click on Issues and make sure Registry Integrity is UNchecked!
]Click on the “Cleaner” icon on the left side of the window, then click Run Cleaner to run the program.
[*]After CCleaner has completed its process, click Exit.