Thread: add/remove, system restore failure
View Single Post
  #12  
Old 01-05-2006, 03:58 AM
PA Bear
 
Posts: n/a
Default Re: add/remove, system restore failure
Please post the URLs linking to your forum threads & we'll have a look/see.
--
~Robear Dyer (PA Bear)
MS MVP-Windows (IE/OE, Security, Shell/User)

seanpaul99 wrote:
> hi pa bear.
> your advice has been followed, used hijack this and posted the log in the
> various places but unfortunately still no joy, my problem still exists.
> any
> further advice?
> seasons greetings to all.
>
>> When all else fails, HijackThis v1.99.1
>> (http://aumha.net/downloads/hijackthis.zip) is the preferred tool to use.
>> It will help you to both identify and remove any hijackware/spyware.
>> **Post your log to http://forums.spywareinfo.com/,
>> http://castlecops.com/forum67.html or http://aumha.net/viewforum.php?f=30
>> for expert analysis, not here.**
>>
>> Post your log to one of the above forums.
>> --
>> ~PA Bear
>>
>> seanpaul99 wrote:
>>> well hopefully you have helped me to identify and remove the cause of my
>>> problem. now how do i get system restore to restore and how do i get
>>> ad/remove programs to change /remove programs?
>>> thanks for your help.
>>> merry xmas
>>>
>>>> What Malke said.
>>>>
>>>> This is one of the Bad Guys:
>>>>
>>>>> C:\Program Files\WinAce\WinAce.exe
>>>>
>>>> <QP>
>>>> W32.HLLW.Yoof is a worm that spreads by using the KaZaA file-sharing
>>>> program. It tricks KaZaA users into downloading and executing the worm.
>>>> </QP>
>>>> http://securityresponse.symantec.com...hllw.yoof.html
>>>>
>>>> P2P file sharing is not without its risks: Though you may not use KaZaA
>>>> yourself, any files you got from a KaZaA user may be infected with
>>>> W32.HLL.Yoof (AKA W32/Duload.worm [McAfee], W32/Duload-A [Sophos],
>>>> WORM_DULOAD.A [Trend]).
>>>> --
>>>> ~Robear Dyer (PA Bear)
>>>> MS MVP-Windows (IE/OE, Shell/User, Security), Aumha.org VSOP, DTS-L.org
>>>>
>>>> seanpaul99 wrote:
>>>>> not sure if i am posting this in the correct place, have been advised
>>>>> to
>>>>> scan my system with "hijack this" and wait for a kind hearted expert
>>>>> to
>>>>> analyse and advise.
>>>>> Logfile of HijackThis v1.99.1
>>>>> Scan saved at 04:13:38, on 20/12/2005
>>>>> Platform: Windows XP SP2 (WinNT 5.01.2600)
>>>>> MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
>>>> <snip>

Reply With Quote