View Single Post
  #94  
Old April 15th 04, 07:34 PM
roger
external usenet poster
 
Posts: n/a
Default programs stop reponding

Hi Kim,

Comments inline.

On Tue, 13 Apr 2004 19:31:03 -0700, Kim M.
wrote:

I was able to follow the directions on the pestpatrol page and delete the files from the registry keys. I also posted my HiJack This log and this was what they posted back so far...

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.com/0SEENUS/SAOS10
R3 - Default URLSearchHook is missing
O1 - Hosts: 217.116.231.7 aimtoday.aol.com12.129.205.209 search.netscape.com12.129.205.209 sitefinder.verisign.com

Am I supposed to delete these as well or not? I have posted the same question back to the site but have not yet received a reply. I am re-running the virus scans and adware and so far I still have these trojans:



Let's wait until you receive a reply.

File: C:\Documents and Settings\citrus\Local Settings\Temporary Internet Files\Content.IE5\OV5RMUNL\dw[1].exe

Virus: Tool:PornDialer.EA Status: Infected

File: C:\Temp\bii.cab-biprep.exe
Virus: TrojanSpy/Win32.BiSpy.A Status: Infected

File: C:\Temp\biprep.exe
Virus: TrojanSpy/Win32.BiSpy.A Status: Infected


These files in temporary folders are not used by the system and so
safe to delete.

File: C:\WINDOWS\system32\benceed.dll
Virus: TrojanDownloader:Win32/Rameh.A Status: Infected


I don't have this file in my system. If you're apprehensive about
deleting it, change its name and move it to a folder of your choosing
(like Pest folder or so) and wait for a few days, if your system works
fine, then delete it.


I am hesitant to delete or quarantine these files because of all the problems I ran into the last time I did so. Is there any way of telling if a file is required or not? Thank you,everyone, again for all the help.


If a file is in a temporary folder, it's not used by the system and
should be safe to delete. Files in the System32 folder are different,
though, and require searching the name of the file in google and
making sure they are not a system file.


P.S. I am now able to get into Yahoo games and Google so most of the bugs seem to be fixed.


Good, then we are on the right track

Good luck
Ads