Archived from groups: alt.sys.pc-clone.dell (More info?)
Greetings! Last weekend I visited a web site that installed a Trojan
on my system. I am not really sure how seeing how I run Norton's AV
and Firewall but after visiting that site I started getting notices
from Start Up Monitor that certain .DLL's were trying to register
themselves during startup. I then ran Spy Bot Search and Destroy,
Ad-aware, and Webroot's Spy Sweeper finding several ad-ware types that
Norton's (updated) has missed and a Trojan that I then deleted. I
also found that some files were trying to access the Internet without
permission. It seems my Norton's Firewall and AV have been
compromised. I have since stopped using IE and have only been using
Firefox for browsing but I am still getting alerts that my computer is
trying to access the Internet without my permission. I assume I have
a Trojan again. Question is how do I get rid of it? I can delete
traces of it by finding files that it creates but how do I find the
actual file that is causing my problems? I have run Hijackthis and
found a few items that I delete, but after a reboot most show up
again. I have run Norton's many times in Safe Mode. Any ideas?
Thanks.
I am running WinXP SP2 on a Dimension 8400. I have Norton's Internet
Security, Zone Alarm, and Spy Sweeper running on startup. I also
downloaded Port Explorer which allows me to see when my computer tries
to dial home. Any information would be appreciated!
Mike
Greetings! Last weekend I visited a web site that installed a Trojan
on my system. I am not really sure how seeing how I run Norton's AV
and Firewall but after visiting that site I started getting notices
from Start Up Monitor that certain .DLL's were trying to register
themselves during startup. I then ran Spy Bot Search and Destroy,
Ad-aware, and Webroot's Spy Sweeper finding several ad-ware types that
Norton's (updated) has missed and a Trojan that I then deleted. I
also found that some files were trying to access the Internet without
permission. It seems my Norton's Firewall and AV have been
compromised. I have since stopped using IE and have only been using
Firefox for browsing but I am still getting alerts that my computer is
trying to access the Internet without my permission. I assume I have
a Trojan again. Question is how do I get rid of it? I can delete
traces of it by finding files that it creates but how do I find the
actual file that is causing my problems? I have run Hijackthis and
found a few items that I delete, but after a reboot most show up
again. I have run Norton's many times in Safe Mode. Any ideas?
Thanks.
I am running WinXP SP2 on a Dimension 8400. I have Norton's Internet
Security, Zone Alarm, and Spy Sweeper running on startup. I also
downloaded Port Explorer which allows me to see when my computer tries
to dial home. Any information would be appreciated!
Mike