Billy said:
Clean up the spyware first. You don't want added problems when installing
SP2. Try booting into SAFE MODE to run Ad Aware and remove the spyware in
SAFE MODE. You may have better success.
:
Elsewhere in this NG are instructions for a free clean up. It takes
some time, but it works. It involves several different programs, run in
safe mode with System Restore turned off. Panda, Housecall, Spybot S/D,
Adaware, CWShredder should do it.
This was posted by D. Lipman. Copy it and save it in a file somewhere
for future reference.
+++
First, don't listen to those that say reinstall the OS. That's way too
draconian and is NOT
needed at this time.
Second, there are anti virus News Groups specifically for this type of
discussion.
microsoft.public.scripting.virus.discussion
microsoft.public.security.virus
alt.comp.virus
alt.comp.anti-virus
Finally, Please perform the following.
1) Download the following two items...
Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp
Latest Trend signature files.
http://www.trendmicro.com/download/pattern.asp
Create a directory.
On drive "C:\"
(e.g., "c:\New Folder")
or the desktop
(e.g., "C:\Documents and Settings\lipman\Desktop\New Folder")
Download SYSCLEAN.COM and place it in that directory.
Download the Trend Pattern File by obtaining the ZIP file.
For example; lpt285.zip
Extract the contents of the ZIP file and place the contents in the same
directory as
SYSCLEAN.COM .
2) Disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
3) Reboot your PC into Safe Mode
4) Using the Trend Sysclean utility, perform a Full Scan of your
platform and
clean/delete any infectors found
5) Restart your PC and perform a "final" Full Scan of your platform
6) Re-enable System Restore and re-apply any System Restore preferences,
(e.g. HD space to use suggested 400 ~ 600MB),
7) Reboot your PC.
8) Create a new Restore point
9) Please report back your results
Dave
| My anti-virus has found 68 different variations of this trojan most of
them
| satrting with downloader.agent. Most of these infected files are exes.
I ran
| the computer in safe mode and used ad-aware, spy-bot, anti-virus software,
| cwshredder and god knows what else to no avail. These infections are still
| remaining on my computer. Please help me in what to do to rid these.
I'm at
| of my tether and am genuinely seeking somebody's help.
|
| Thank you.
|
|
+++