Jump to content

pskelley

Trusted Malware Techs
  • Content Count

    1,759
  • Joined

  • Last visited

Everything posted by pskelley

  1. Thanks for taking the time to let us know, here is some information that may help you in the future. Happy New Year Here is some great information from experts in this field that will help you stay clean and safe online. http://users.telenet.be/bluepatchy/miekiem...prevention.html http://forums.spybot.info/showthread.php?t=279 http://russelltexas.com/malware/allclear.htm http://forum.malwareremoval.com/viewtopic.php?t=14 http://www.bleepingcomputer.com/forums/topict2520.html http://cybercoyote.org/security/not-admin.shtml Thanks...pskelley http://pcpitstop.com/about/supportus.asp If you are reading this information...thank a teacher, If you are reading it in English...thank a soldier.
  2. Sorry to be the bearer of bad news but you have some very bad trojans here: C:\WINDOWS\system32\ntos.exe http://www.symantec.com/security_response/...-99&tabid=1 Infostealer.Banker.C is a Trojan horse that may steal sensitive information from the compromised computer. C:\WINDOWS\repair\smrs.exe http://www.sophos.com/virusinfo/analyses/w32agobotrc.html Turns off anti-virus applications Allows others to access the computer Steals information Downloads code from the internet Reduces system security Records keystrokes There is more that I can't identify! A Backdoor is a software program that gives an attacker unauthorized access to a machine and the means for remotely controlling the machine without the user's knowledge. A Backdoor compromises system integrity by making changes to the system that allow it to by used by the attacker for malicious purposes unknown to the user. One or more of the identified infections is a backdoor trojan. This allows hackers to remotely control your computer, steal critical system information and Download and Execute files I would counsel you to disconnect this PC from the Internet immediately. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation. Though the Trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer can ever again be trusted. Many experts in the security community believe that once infected with this type of Trojan, the best course of action would be a reformat and reinstall of the OS. Please read these for more information: How Do I Handle Possible Identify Theft, Internet Fraud and CC Fraud? http://www.dslreports.com/faq/10451 When Should I Format, How Should I Reinstall http://www.dslreports.com/faq/10063 Please let us know what you have decided to do in your next post. Thanks
  3. I am not seeing any evidence of malware in the HJT log. Any symptoms on your end? http://www.symantec.com/security_response/...-050111-3914-99 http://www.bleepingcomputer.com/forums/topic90734.html Do you own AVG Anti-Spyware? Thanks...Phil
  4. Looks good, follow the instructions to clean your System Restore files and review the links I posted, they will give you good advice to help you stay clean. Safe surfing
  5. Looks great I see you updated the Java but the Java scheduler does not appear to be working: C:\Program Files\Java\jre1.5.0_10\bin\jusched.exe I turn it off on my computer, it does not work and uses resources. You can make that call. The HJT log looks clean, how is the computer running? If it is ok with you, I would like to run one more scan to check for hidden junk. First remove Vundofix and Vundofix backups from your computer, the scan will see those as infected. You may also rename HJT if you wish. Run this online scan using Internet Explorer: Kaspersky Online Scanner from http://www.kaspersky.com/virusscanner Next Click on Launch Kaspersky Online Scanner You will be prompted to install an ActiveX component from Kaspersky, Click Yes. * The program will launch and then begin downloading the latest definition files: * Once the files have been downloaded click on NEXT * Now click on Scan Settings * In the scan settings make that the following are selected: * Scan using the following Anti-Virus database: * Standard * Scan Options: * Scan Archives * Scan Mail Bases * Click OK * Now under select a target to scan: * Select My Computer * This will program will start and scan your system. * The scan will take a while so be patient and let it run. * Once the scan is complete it will display if your system has been infected. * Now click on the Save as Text button: * Save the file to your desktop. Then post it here. ________________________________________________________ If the computer is running fine and you do not think the scan is needed, then do this: System Restore does not know the good files from the bad. In case bad stuff has gotten into your System Restore files, follow the instructions in this link to get clean System Restore files. Turn it off, reboot then turn it back on: http://www.microsoft.com/windowsxp/using/h...ps/mcgill1.mspx Some good information for you: http://users.telenet.be/bluepatchy/miekiem...owcomputer.html http://users.telenet.be/bluepatchy/miekiem...prevention.html Here is some great information from Tony Klein, Texruss, ChrisRLG and Grinler to help you stay clean and safe online: http://forums.spybot.info/showthread.php?t=279 http://russelltexas.com/malware/allclear.htm http://forum.malwareremoval.com/viewtopic.php?t=14 http://www.bleepingcomputer.com/forums/topict2520.html http://cybercoyote.org/security/not-admin.shtml Thanks...pskelley Safer Networking Forums http://www.spybot.info/en/donate/index.html If you are reading this information...thank a teacher, If you are reading it in English...thank a soldier.
  6. First let me point to this information: http://forums.spybot.info/showpost.php?p=1...amp;postcount=2 Look at the information in the Vundofix report: Java version is 1.4.2.5 Old versions of java are exploitable and should be removed.and you will have a better idea of why you got infected. Download the newest version and uninstall ALL old versions in Add Remove programs. With the exception of the fact it looks like you ran vundofix because the last file was removed: C:\WINDOWS\system32\ssttt.dll (file missing) You have not completed the balance of the instructions. Please go through the instructions again starting here: 2) How to make files and folders visible: to the end of the instruction, and then post a new HJT log only. Thanks
  7. Thanks for returning your information and the feedback. You still have the Vundo infection. Look at the the ones that say (file missing) they are deleted, the active infection looks like this: O2 - BHO: (no name) - {95241967-5AE2-4C80-B22E-9A62EA3FB60F} - C:\WINDOWS\system32\ssttt.dll O20 - Winlogon Notify: ssttt - C:\WINDOWS\system32\ssttt.dll The junk can also morph. You seem to be comfortable on your computer so I will give you all instructions at once. It is important to read and follow them carefully, take the time you need, do not rush. 1) Thanks to Atribune and any others who helped with this fix. Please understand these hackers can call there junk anything they wish. Vundofix may not know the files at first, but it will learn. You want to run the fix until you see all Vundo files say: "Has been deleted" Please download VundoFix.exe to your desktop Double-click VundoFix.exe to run it. Click the Scan for Vundo button. Once it's done scanning, click the Remove Vundo button. You will receive a prompt asking if you want to remove the files, click YES Once you click yes, your desktop will go blank as it starts removing Vundo. When completed, it will prompt that it will reboot your computer, click OK. Please post the contents of C:\vundofix.txt and a new HiJackThislogin a reply to this thread. Note: It is possible that VundoFix encountered a file it could not remove. In this case, VundoFix will run on reboot, simply follow the above instructions starting from "Click the Scan for Vundo button" when VundoFix appears upon rebooting. If there is a file VundoFix doesn't find we need it submitted. Please submit the files to upload malware http://www.uploadmalware.com (hold the reports and logs until we finish) 2) How to make files and folders visible: Click Start > Open My Computer. Select the Tools menu and click Folder Options. Select the View Tab. Under the Hidden files and folders heading, select Show hidden files and folders. Uncheck: Hide file extensions for known file types Uncheck the Hide protected operating system files (recommended) option. Click Yes to confirm. Click OK. You may reverse this for safety when we are finished. 3) Please download ATF Cleaner by Atribune http://www.atribune.org/content/view/25/2/ Save it to your Desktop. We will use this later. 4) C:\Program Files\Lavasoft\Ad-Aware 2007\ <<< this program is new and it may block our tools, turn it off completely until you finish. 5) Open HijackThis and choose "Do a system scan only" then check the box in front of these line items: O2 - BHO: (no name) - {5A4A2D56-931A-4733-9121-033A2D95A274} - (no file) O2 - BHO: (no name) - {95241967-5AE2-4C80-B22E-9A62EA3FB60F} - C:\WINDOWS\system32\ssttt.dll O2 - BHO: (no name) - {CF46BFB3-2ACC-441b-B82B-36B9562C7FF1} - C:\WINDOWS\system32\vpkynfct.dll O4 - HKLM\..\Run: [systemOptimizer] rundll32.exe "C:\WINDOWS\system32\bmlpyblq.dll",forkonce O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} - http://download.games.yahoo.com/games/web_...aploader_v6.cab O20 - Winlogon Notify: byxyayx - byxyayx.dll (file missing) O20 - Winlogon Notify: ssttt - C:\WINDOWS\system32\ssttt.dll O20 - Winlogon Notify: winjyp32 - winjyp32.dll (file missing) Close all programs but HJT and all browser windows, then click on "Fix Checked" 6) RIGHT Click on Start then click on Explore. Locate and delete these items: C:\WINDOWS\system32\bmlpyblq.dll <<< delete that file (if that file give you trouble, use this tool and instructions) How to use the Delete on Reboot tool http://www.bleepingcomputer.com/tutorials/...l42.html#delreb 7) Run ATF Cleaner Double-click ATF-Cleaner.exe to run the program. Click Select All found at the bottom of the list. Click the Empty Selected button. Click Exit on the Main menu to close the program. Restart the computer and post the Vundofix report and a new HJT log. Tell me how the computer is running now. Thanks
  8. Welcome to the forum, this trojan can be hard to remove. Please read and follow these directions. 1) F:\zz_remove sranje\VundoFix.exe <<< remove Vundofix from your computer, I may want it download to your Desktop new and I will tell you when. 2) HJT must run from a drive and you are running it from here: F:\zz_remove sranje\hijackthis\HijackThis.exe I want you to move it here: C:\HJT\HijackThis.exe. Here are tutorials if needed: http://russelltexas.com/malware/createhjtfolder.htm http://www.bleepingcomputer.com/forums/tutorial94.html Once you have it moved, I want you to rename HJT, call it vendella_ri.exe or whatever you wish. It will then look like this: C:\HJT\vendella_ri.exe. Now restart the computer and post a new HJT log. Please also assure me this information: http://whois.domaintools.com/195.29.150.3 is valid for you. Use "New Reply", stay in this same topic. Thanks
  9. Thanks for returning your infomation and the feedback. Your HJT log looks fine, I would like to run one additional scan that will take an hour or so to look for anything that may be hidden. If you do not feel this is necessary, that will be fine also. If you wish to run the scan: Run this online scan using Internet Explorer: Kaspersky Online Scanner from http://www.kaspersky.com/virusscanner Next Click on Launch Kaspersky Online Scanner You will be prompted to install an ActiveX component from Kaspersky, Click Yes. * The program will launch and then begin downloading the latest definition files: * Once the files have been downloaded click on NEXT * Now click on Scan Settings * In the scan settings make that the following are selected: * Scan using the following Anti-Virus database: * Standard * Scan Options: * Scan Archives * Scan Mail Bases * Click OK * Now under select a target to scan: * Select My Computer * This will program will start and scan your system. * The scan will take a while so be patient and let it run. * Once the scan is complete it will display if your system has been infected. * Now click on the Save as Text button: * Save the file to your desktop. Then post it here. _____________________________________________ If you do not feel it is necessary, then do this: System Restore does not know the good files from the bad. In case bad stuff has gotten into your System Restore files, follow the instructions in this link to get clean System Restore files. Turn it off, reboot then turn it back on: http://www.microsoft.com/windowsxp/using/h...ps/mcgill1.mspx Some good information for you: http://users.telenet.be/bluepatchy/miekiem...owcomputer.html http://users.telenet.be/bluepatchy/miekiem...prevention.html Here is some great information from Tony Klein, Texruss, ChrisRLG and Grinler to help you stay clean and safe online: http://forums.spybot.info/showthread.php?t=279 http://russelltexas.com/malware/allclear.htm http://forum.malwareremoval.com/viewtopic.php?t=14 http://www.bleepingcomputer.com/forums/topict2520.html http://cybercoyote.org/security/not-admin.shtml Thanks...Phil http://pcpitstop.com/about/supportus.asp If you are reading this information...thank a teacher, If you are reading it in English...thank a soldier.
  10. You are still infected and it looks like a variety. Before we start, and I may use some of the tools later but want the new if I do, remove all combofix and Vundofix including quarantine and backups from your computer. Please read and follow these directions carefully. 1) How to make files and folders visible: Click Start > Open My Computer. Select the Tools menu and click Folder Options. Select the View Tab. Under the Hidden files and folders heading, select Show hidden files and folders. Uncheck: Hide file extensions for known file types Uncheck the Hide protected operating system files (recommended) option. Click Yes to confirm. Click OK. You may reverse this for safety when we are finished. 2) Please download ATF Cleaner by Atribune http://www.atribune.org/content/view/25/2/ Save it to your Desktop. We will use this later. 3) We need to disable your Windows Defender Real-time Protection as it may interfere with the fixes that we need to make. Open Windows Defender, Click on Tools, General Settings. Scroll down and uncheck Turn on real-time protection (recommended). After you uncheck this, click on the Save button and close Windows Defender. 4) How to use the Delete on Reboot tool http://www.bleepingcomputer.com/tutorials/...l42.html#delreb Start Hijackthis Click on the Config button Click on the Misc Tools button Click on the button labeled Delete a file on reboot... A new window will open asking you to select the file that you would like to delete on reboot. Navigate to the file: C:\WINDOWS\SYSTEM32\c_2l32.dll and click on it once, and then click on the Open button. You will now be asked if you would like to reboot your computer to delete the file. Click on the Yes button if you would like to reboot now. 5) Open HijackThis and choose "Do a system scan only" then check the box in front of these line items: O2 - BHO: Internet Security Class - {A75E294E-C047-4D29-B07E-37B792881BEF} - (no file) O2 - BHO: (no name) - {C6039E6C-BDE9-4de5-BB40-768CAA584FDC} - C:\WINDOWS\system32\tmpE0.tmp.dll O4 - HKLM\..\Run: [systemOptimizer] rundll32.exe "C:\WINDOWS\jkklkk.dll",forkonce O20 - Winlogon Notify: c_2l32 - C:\WINDOWS\SYSTEM32\c_2l32.dll Close all programs but HJT and all browser windows, then click on "Fix Checked" 6) RIGHT Click on Start then click on Explore. Locate and delete these items: C:\WINDOWS\SYSTEM32\c_2l32.dll <<< delete that file (should be gone) C:\WINDOWS\jkklkk.dll <<< delete that file (if that file gives you trouble, use the same "delete on reboot" tool) 7) Run ATF Cleaner Double-click ATF-Cleaner.exe to run the program. Click Select All found at the bottom of the list. Click the Empty Selected button. Click Exit on the Main menu to close the program. Restart the computer and post a new HJT log along with some feedback. Use "New Reply", stay in this same topic. Thanks
  11. Thanks or returning your information, you did not tell me if that was the problem? System Restore does not know the good files from the bad. In case bad stuff has gotten into your System Restore files, follow the instructions in this link to get clean System Restore files. Turn it off, reboot then turn it back on: http://service1.symantec.com/SUPPORT/tsgen...src=sec_doc_nam Some good information for you: http://users.telenet.be/bluepatchy/miekiem...owcomputer.html http://users.telenet.be/bluepatchy/miekiem...prevention.html Here is some great information from Tony Klein, Texruss, ChrisRLG and Grinler to help you stay clean and safe online: http://forums.spybot.info/showthread.php?t=279 http://russelltexas.com/malware/allclear.htm http://forum.malwareremoval.com/viewtopic.php?t=14 http://www.bleepingcomputer.com/forums/topict2520.html http://cybercoyote.org/security/not-admin.shtml Thanks...pskelley http://pcpitstop.com/about/supportus.asp If you are reading this information...thank a teacher, If you are reading it in English...thank a soldier.
  12. Welcome to the forum, you have a pretty nasty dialer running from your DPF's: (Progetto1.int_ver34) - htXX://advnt01.com/dialer/int_ver34.CAB http://www.castlecops.com/ActiveX.html Progetto1.int_ver34 X A1426AC5-8CE5-4A00-B71E-011D35709AC6 int_ver34.CAB Added by Porn-Dialer.Win32.VB.j DIALER! as reported by Kaspersky Anti-Virus That is likely your problem, but you have other issues also, let's try to address them all, and clean you up while we are at it. 1) See this: http://forums.spybot.info/showpost.php?p=1...amp;postcount=2 D:\Program Files\Java\jre1.5.0_06\ Your Java program is out of date, download the newest version and uninstall all old versions in Add Remove programs. 2) While you are in Add Remove Programs, uninstall this one: D:\Program Files\ewido\security suite\ ewido was purchased by Grisoft and is obsolete. 3) Please download ATF Cleaner by Atribune http://www.atribune.org/content/view/25/2/ Save it to your Desktop. We will use this later. 4) Open HijackThis and choose "Do a system scan only" then check the box in front of these line items: O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} (Progetto1.int_ver34) - http://advnt01.com/dialer/int_ver34.CAB Close all programs but HJT and all browser windows, then click on "Fix Checked" 5) Run ATF Cleaner Double-click ATF-Cleaner.exe to run the program. Click Select All found at the bottom of the list. Click the Empty Selected button. Click Exit on the Main menu to close the program. Restart the computer and post a new HJT log and tell me how the computer is running. Use "New Reply" do not leave this topic. Thanks
  13. Member never supplies required information. They commented they fixed the issue. Topic is closed.
  14. Resolved and closed Thanks
  15. It's what everyone else that is using this forum: http://forums.pcpitstop.com/index.php?showforum=25 but you has posted. I posted the link for you but it's at the top of the page where you first posted: Before Posting Your Hijackthis Log - Read This! http://forums.pcpitstop.com/index.php?showtopic=36065 Additional examples: http://russelltexas.com/malware/createhjtfolder.htm http://www.bleepingcomputer.com/forums/tutorial94.html http://forums.security-central.us/showthread.php?t=112for
  16. Please stay in the original topic using "new reply" NOT "new topic" I suggest you follow the instructions and post a HJT log. That infection is rarely alone and chances are you have other junk the HJT log will show. Thanks
  17. I see you installed a new BHO, read about it here: http://www.bleepingcomputer.com/startups/G....exe-16278.html I personally believe Google is trying to take over to much and is becoming a resource hog. Myself, I run the basic toolbar/popup blocker and nothing else, but that's your option. The HJT log looks fine, keep up the good work and be careful, it's a cyber-jungle out there. Thanks
  18. Welcome to the forum, you need to follow the instructions in this link: http://forums.pcpitstop.com/index.php?showtopic=36065 Then if you feel comfortable following a self-help tutorial, use these instructions since you said Spylocked: http://www.bleepingcomputer.com/forums/topic85376.html Thanks
  19. Looks good, let's do this: 1) Check your Java program for an update: http://forums.spybot.info/showpost.php?p=1...amp;postcount=2 2) You are running HJT.exe from a .zip file in a Temporary Directory. This is unsafe as we will have no backups. That is why you received this message when you used HJT: http://russelltexas.com/malware/images/unsafefolder.gif Please use the information in the following link to place HJT in a permanent, safe folder, I prefer C:\HJT\HijackThis.exe. If you need additional instructions use these: http://russelltexas.com/malware/createhjtfolder.htm 3) Open HijackThis and choose "Do a system scan only" then check the box in front of these line items: O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) Close all programs but HJT and all browser windows, then click on "Fix Checked" 4) Information to help you make your computer run better: http://users.telenet.be/bluepatchy/miekiem...owcomputer.html http://users.telenet.be/bluepatchy/miekiem...prevention.html 5) Here is some great information from Tony Klein, Texruss, ChrisRLG and Grinler to help you stay clean and safe online: http://forums.spybot.info/showthread.php?t=279 http://russelltexas.com/malware/allclear.htm http://forum.malwareremoval.com/viewtopic.php?t=14 http://www.bleepingcomputer.com/forums/topict2520.html http://cybercoyote.org/security/not-admin.shtml Thanks...pskelley http://pcpitstop.com/about/supportus.asp If you are reading this information...thank a teacher, If you are reading it in English...thank a soldier.
  20. No response since 10:03pm Thu Mar 8 2007 Topic is closed Thanks
  21. pskelley

    HJT

    Sounds good, might not be a bad idea to do this: System Restore does not know the good files from the bad. In case bad stuff has gotten into your System Restore files, follow the instructions in this link to get clean System Restore files. Turn it off, reboot then turn it back on: http://service1.symantec.com/SUPPORT/tsgen...src=sec_doc_nam Here is some great information from Tony Klein, Texruss, ChrisRLG and Grinler to help you stay clean and safe online: http://forums.spybot.info/showthread.php?t=279 http://russelltexas.com/malware/allclear.htm http://forum.malwareremoval.com/viewtopic.php?t=14 http://www.bleepingcomputer.com/forums/topict2520.html http://cybercoyote.org/security/not-admin.shtml Safe surfing...cheers
  22. pskelley

    HJT

    Thanks for your feedback, seems there is a problem with this link: http://www.pcpitstop.com/pcpitstop/NoSessi...?host=1.4.22.25 You can try again to post it if you wish, or you can post any questions about the results here: http://pcpitstop.invisionzone.com/index.php?showforum=6 I suggest you look carefully at the report, much information is available, but you must click through to see it. Look especially for red flags and then for the yellow ones. Thanks
  23. pskelley

    HJT

    Welcome to the forum, your HJT log looks good. That does not mean some junk could not be hiding and we will look if need be. Let's do a couple of things first. 1) Looks like you used AVG Anti-Spyware recently, assuming it was not something you purchased, the program is still running from your services and that's a waste. O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe Now this is the guard and if you know it is running then you need to make me aware before you proceed. Something would be wrong at that point since the program is no where else in the log. Turn it off like this: Disable the Service Click Start > Run and type services.msc Scroll down to AVG Anti-Spyware Guard and right click on it. Click Properties and under Service Status click Stop, then under Startup Type change it to Disabled. 2) Use the information in this link and see if that helps: http://users.telenet.be/bluepatchy/miekiem...owcomputer.html 3) I would also like to se the results of a diagnostic. Run that here: http://www.pcpitstop.com/ Here's a tutorial if it helps: http://www.pcpitstop.com/techexpress/howto1.asp Post a link to the results for me to view. Please use "New Reply" do not start new topics, copy and paste all information, do not quote or code. Let me know if this takes care of the problem. Thanks
  24. Hello Steven and welcome to the forum, let's take a look. The first thing I see are all of these programs running. I don't see any real malware, but that is probably because there is not place for the junk to put itself. Windows Defender SUPERAntiSpyware Spyware Doctor ProcessGuard WinPatrol Spyware Terminator While it may not be now, Spyware Terminator was just on the Rouge Spyware list here: http://www.spywarewarrior.com/rogue_anti-spyware.htm You are also running SpywareGuard and TeaTimer which do basically the same thing. While we know that only one anti-virus program and only one firewall should run on the computer, the jury is still out on how many spyware programs are two many, but I can tell you that you have exceeded the limit. I will work with you to clean up the junk if you wish, there is also some clutter and dead lines that needs to go, but I suggest it is a wonder the computer runs at all with all of these programs using your resources and fighting over trying to do the same thing. If you want my help, then I will start by saying I am a great fan of freeware programs, and while I do not use Windows Defender myself, because I have been using SpywareBlaster/SpywareGuard/IE-Spyad for years, they work for me and are freeware. Had WD come along earlier I may have used it. You will have to make some choices to start with and because I do not know what programs you shelled out hard cash for, I will start with: TeaTimer/SpywareGuard. I run Spybot and SpywareGuard with TeaTimer off. The first thing you need to do is choose one of those. If you wish to turn off TT, here are the instructions: http://russelltexas.com/malware/teatimer.htm Thinking in terms of having one active, realtime spyware program with a little help from programs that do not run, like SpywareGuard/SpywareBlaster and a good Hosts file blocker, using Add Remove programs, uninstall all but one and you get to choose. Give me feedback at that point and post a new HJT log so I can see what you have removed and I will help you plan the next step. Steve, it is going to take a couple of days to do this due to the constraints of working remote like this. You may also opt out if you like. Thanks...Phil
  25. Thanks for the feedback, cookies are part of life on the internet, I still get asked to install cookies when I go to a new site. I can choose to block that one cookie, or block them always. This is something you will have to do with the information I provided. I once blocked my banks cookie and could not access my account until I over-rode those instructions. SpywareBlaster: Did you review the links from experts I posted? That is covered in them, I use it on all of my computers and kept updated it will block a lot of junk, but not all cookies, here is a tutorial if it helps: http://www.bleepingcomputer.com/forums/tutorial49.html Permanant solution: not available as far as I know. We can do our best with the tools we have, hackers are going to do the same thing until they are placed in jail, and that will not account for hackers with internet access in lawless areas of the world like the Ukraine. AVG Anti-Spyware: this is a good on demand scanner and updates are free for as long as you like. While it offers no realtime protection past the trail period, I personally turn it off and use it when I need a good alternate scan. Hope this helps...Phil
×
×
  • Create New...