Re: I have a seriouse, will not be removed SpyWare issue.
From: PA Bear (PABear_at_mvps.org)
Date: 08/09/04
- Next message: RoseW: "Re: strange file - Perflib_Perfdata_12c.dat"
- Previous message: Julie: "Password forgotten"
- In reply to: Jazmine: "I have a seriouse, will not be removed SpyWare issue."
- Next in thread: discussions_at_anonymous.microsoft.com: "I have a seriouse, will not be removed SpyWare issue."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 9 Aug 2004 17:47:29 -0400
Review:
Check your system for "hijackware":
Help with Hijackware
http://aumha.org/a/parasite.htm
http://aumha.org/a/quickfix.htm
http://mvps.org/winhelp2002/unwanted.htm
http://inetexplorer.mvps.org/Darnit.htm
CoolWebSearch Chronicles
http://www.spywareinfo.com/~merijn/cwschronicles.html
Run these tools in the following order with nothing else running in
background:
1. CWShredder (fix all found)
2. Ad-Aware (fix all found)
3. Spybot (RTFM but generally fix everything in red)
Important: You *must* seek updates for Ad-Aware, Spybot, etc., before each
and every use, even "right out of the box". But even they can't catch
everything, 24/7. When all else fails, HijackThis
(http://www.spywareinfo.com/~merijn/files/HijackThis.exe) is the preferred
tool to use. It will help you to both identify and remove any
hijackware/spyware. **Post your files to http://forums.spywareinfo.com/ or
http://forum.aumha.org/viewforum.php?f=30 for expert analysis, not here.**
[Alternate download pages for many of the above tools may be found at
http://aumha.org/a/parasite.htm.]
Also:
1. Download and run Stinger (http://vil.nai.com/vil/stinger/); then...
2. Update your virus definitions, enable Show Hidden Files
(http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2002092715262339)
and then run a full system scan in Safe Mode
(http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406)
with nothing else running in background. Note the files identified and
removed then find the corresponding page for the file at your AV maker's
online support pages (e.g.,
http://securityresponse.symantec.com/avcenter/venc/data/adware.winfavorites.html)
and follow all Removal steps.
WinXP Only (WinME similar): If this scan finds anything, create a new
Restore Point then Disk Cleanup > More options > Delete all but the most
recent Restore Point.
3. Check in at Windows Update.
So How Did I Get Infected Anyway?
http://boards.cexx.org/viewtopic.php?t=957
-- ~Robear Dyer (PA Bear) MS MVP-Windows (IE/OE), AH-VSOP Are You Ready for WinXP SP2? http://support.microsoft.com/default.aspx?pr=windowsxpsp2 What You Should Know About Spyware http://www.microsoft.com/athome/security/spyware/devioussoftware.mspx AumHa Forums http://forum.aumha.org Jazmine wrote: > O.K. Now, I have a security issue here. > > Let me explain: > > You know when you click on Tools,than open Internet > Options. There is a section at the top called "Home Page" > It says inside: "You can change which page to use for your > home page". Than there is a white box with address > labeled beside it. > > O.k. See, my normal homepage is Dockpoint.net (my > internet service provider) But, I use Yahoo.com as my > chosen, regularly used home page. > > Anyways, I have this problem with this page > called 'about.blank'. I know it is spyware, even my > internet service provider comformed that. I tell you > honestly, if I was not such a sweet, understanding, > mercyful, compassionate human being. I'd go kick their > hinnies. They have been a minis to me for almost a year. > 'about.blank' they dominate my internet explorer. > Everytime I go online, they are there. I have to > constantly go to Internet Options to change the address > back to yahoo.com. When I close a page, they are there, > when I open up a new page, they are there. If I left it > alone, after about 30 minutes to and hour. 'about.blank' > automatically changes the homepage themselves. Weather I > open up or close a page or not. So, you see where my > frusteration is coming from. > > Anyways, my internet service provider. She suggested that > I go install "Spy Sweeper" or something in that nature for > it has a free version. I tried installing it but, my > computer states that the installation files are corrupt > with the "SpySweeper". So, now I'm stuck. For I need to > get 'about.blank' off of my computer. I already tried > NoAdware and Spyware Killer. They do not work. They detect > o.k. but they do not permantly remove stuff like that. For > before 'about.blank' I had 'CoolWebSearch' to deal with. > I had to reformat my computer to get rid of them. But, > the last time I had my computer reformatted, > the 'about.blank' did not go away. I was told by my > computer guy, not to worry too much about > the 'about.blank' but I don't care. I did not > give 'about.blank' the permission to do this to me, let > alone install their stuff onto my computer. I want them > gone. I do have "Zone Alarm" now. Zone Alarm does do > very well so far on keeping other people off of my > computer. I just know once I get rid of 'about.blank' than > Zone Alarm will keep 'about.blank' off of my computer. > Along side other inconsiderate computer invaders. > > Anyways, I know this was alot to read. Please understand. > I hope someone can figure out something for me to do on > this issue. You all already have been wonderful to me on > my Outlook Express issue. I will never forget your alls > kindness to me. Micheal was the one who responded to me > on that issue. He'd know, if he reads this. Took me less > than 4 days to fix that issue. AMAZING!!!! > > Well, hope to hear from someone soon. > Sincerely, Jazmine
- Next message: RoseW: "Re: strange file - Perflib_Perfdata_12c.dat"
- Previous message: Julie: "Password forgotten"
- In reply to: Jazmine: "I have a seriouse, will not be removed SpyWare issue."
- Next in thread: discussions_at_anonymous.microsoft.com: "I have a seriouse, will not be removed SpyWare issue."
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
