Re: clon.biz Hijacker
From: David H. Lipman (DLipman~nospam~_at_Verizon.Net)
Date: 04/25/05
- Next message: Catamount: "Re: clon.biz Hijacker"
- Previous message: Marques Johnson via WindowsKB.com: "clon.biz Hijacker"
- In reply to: Marques Johnson via WindowsKB.com: "clon.biz Hijacker"
- Next in thread: Catamount: "Re: clon.biz Hijacker"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 25 Apr 2005 15:23:18 -0400
From: "Marques Johnson via WindowsKB.com" <forum@nospam.WindowsKB.com>
This ios NOT the place for posting HJT logs !
You can submit it to the following parsers...
http://hjt.iamnotageek.com/
http://www.hijackthis.de/en
However, I would say that you are most likely infected with an Internet worm !
Dump the contents of the IE Temporary Internet Folder cache (TIF)
Start --> Settings --> Control Panel --> Internet Options --> Delete Files
Dump the contents of the Mozilla FireFox Cache
Tools --> Options --> Privacy --> Cache --> Clear
1) Download TrendMicro Sysclean by one of the following 2 methods
Trend Sysclean Method 1
---------------------------------------
Trend Sysclean Package
http://www.trendmicro.com/download/dcs.asp
Latest Trend signature files.
http://www.trendmicro.com/download/pattern.asp
Create a directory.
On drive "C:\"
(e.g., "c:\sysclean")
Download SYSCLEAN.COM and place it in that directory.
Download the signature files (pattern files) by obtaining the ZIP file.
For example; lpt598.zip
Extract the contents of the ZIP file and place the contents in the same directory as
SYSCLEAN.COM.
Trend Sysclean Method 2
---------------------------------------
Download the utility SYSCLEAN_FE at the following URL --
http://www.ik-cs.com/got-a-virus.htm
SYSCLEAN_FE automates the download and execution process of the Trend Sysclean Package.
Direct URL --
http://www.ik-cs.com/programs/virtools/Sysclean_FE.exe
2) Download McAfee Stinger -- http://vil.nai.com/vil/stinger/
3) Download and install Ad-aware SE (free personal version v1.05)
http://www.lavasoftusa.com/
4) Update Adaware with the latest definitions then exit the software.
5) Disable System Restore
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
6) Reboot your PC into Safe Mode and shutdown as many applications as possible
7) Using the Trend Sysclean, Stinger and Ad-aware SE utilities, perform a Full Scan of
your platform and clean/delete any infectors found
8) Restart your PC and perform a "final" Full Scan of your platform using both Trend
Sysclean, Stinger and Ad-aware SE
9) Re-enable System Restore and re-apply any System Restore preferences,
(e.g. HD space to use suggested 400 ~ 600MB),
10) Reboot your PC.
11) Create a new Restore point
* * * Please report back your results * * *
-- Dave http://www.claymania.com/removal-trojan-adware.html http://www.ik-cs.com/got-a-virus.htm
- Next message: Catamount: "Re: clon.biz Hijacker"
- Previous message: Marques Johnson via WindowsKB.com: "clon.biz Hijacker"
- In reply to: Marques Johnson via WindowsKB.com: "clon.biz Hijacker"
- Next in thread: Catamount: "Re: clon.biz Hijacker"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
