Whoa, there. I did not say you should install SP2, I asked if you had
installed it. I would not install SP2 until you get this problem squared
away, Greg.
Dealing with Trojans & Hijackware
A. Trojans
1. Check in at Windows Update and install all critical updates & reboot.
2. Download and run Stinger (
http://vil.nai.com/vil/stinger/); then...
3. Update your virus definitions, enable Show Hidden Files
(
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2002092715262339)
and then run a full system scan in Safe Mode
(
http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406)
with nothing else running in background. Note the files identified and
removed then find the corresponding page for the file at your AV maker's
online support pages (e.g.,
http://securityresponse.symantec.com/avcenter/venc/data/adware.winfavorites.html)
and follow *all* Removal steps, including editing the Registry if
directed.
WinXP Only (WinME similar): If this scan finds anything, create a new
Restore Point then:
Disk Cleanup > More options > Delete all but the most recent Restore
Point.
B. Hijackware
Help with Hijackware (MS MVP sites all)
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/Darnit.htm
http://www.mvps.org/sramesh2k/Malware_Defence.htm
CoolWebSearch Chronicles
http://www.spywareinfo.com/~merijn/cwschronicles.html
Run these tools in the following order with nothing else running in
background:
1. CWShredder v1.59.1 (no updates available currently; fix all found)
2. Ad-Aware SE (reconfigure per Post #2 in
http://aumha.org/forum/viewtopic.php?t=5877; fix all found)
3. Spybot (RTFM but generally fix everything in red)
Important: You must seek updates for Ad-Aware, Spybot, etc., before each
and every use, even "right out of the box". But even they can't catch
everything, 24/7. When all else fails, HijackThis
(
http://forum.aumha.org/downloads/hijackthis.zip) is the preferred tool
to
use. It will help you to both identify and remove any
hijackware/spyware.
**Post your files to
http://forums.spywareinfo.com/ or
http://forum.aumha.org/viewforum.php?f=30 for expert analysis, not
here.**
[Alternate download pages for many of the above tools may be found at
http://aumha.org/a/parasite.htm.]
So How Did I Get Infected Anyway?
http://boards.cexx.org/viewtopic.php?t=957
--
~PA Bear
Ironman571 wrote:
Dear Pa...
I just recieved my Windows XP SP2 CD in the mail but have not yet
installed
it. You have a point about following Yahoo tech support's suggestions.
I'll install SP2 and see if this would clear my problem. Thank you once
again for the help!
Greg F. (Ironman571)
:
Ironman571 wrote:
Thank you for your help! It was very helpful and I'll follow these
links.
YW & thanks for posting back.
The reason for trying to re-install IE is because Yahoo tech support
has
suggested that I re-install IE. The problem is that using IE to log
into
Yahoo mail does not work anymore. It used to. The password is not
recognized when logging into Yahoo mail. I would think that this is a
Yahoo
problem, but I can log in using Netscape Navigator without a problem.
<pft> That's Yahoo's canned answer for *any* problem. Why would you
take
the advice of an online content provider (who are themselves pretty
inept
when it comes to security) about problems involving your OS? (And you
can
tell Yahoo I said so, too.)
Have you installed SP2? Did the problem exist before installing SP2?
--
~PA Bear
If your problem is hijackware, reinstalling or repairing IE will
*not*
help: Windows, not IE, is infected.
"There is no 'silver bullet' solution."
http://go.microsoft.com/fwlink/?LinkId=33131