Expert: Carolyn Meinel - 1/3/2005

Question
Carolyn:  thanks for your reply; it was quite helpful (and a little depressing).  I tried to ask a followup question, but you were maxed out for several days.  I had intended to upgrade to Norton System Works 2005 before this problem.  Your suggestion reinforced my thoughts.   

Further to your suggestion about reloading Win XP (which I suspect I will ultimately have to do).  How can I be sure that the "problem" files are competely eliminated before I reload the system?  Or are you suggesting that I wipe the disk clean and REALLY start from scratch?

Thanks

Mark

-------------------------
Followup To
Question -
I am running Win XP (SP1 with all critical updates). I started having adware/spyware problems a few weeks ago. After running Ad-Aware, deleting problem stuff, and installing the critical updates to SP1 (I am waiting for the SP2 CD), my anti-virus program - Norton AntiVirus 2004 (NAV04) - indicated status errors. I physically disconnected the computer from the network and used another computer to search for help, download other appls, etc.  I manually transferred any "fix-it" files via ZIP cartridges.  I tried all the easy fixes per Norton's website but nothing worked. I tried running other malware programs (SpyBot, Spy Sweeper, etc) and found additional malware.  Each time I deleted the offending files (except a VX2 variant found by AdAware that I can not seem to eliminate), uninstalled and reinstalled NAV04, but the status errors remained.  I did find a Beagle32 variant that I thought might be causing the problems, but NAV04 continued to indicate status errors.  So I physically reconnected to the net to access Norton's on-line diagnostic service.  But I was unable to connect.  Web connection is through LinkSys 4 port router to broadband. I have checked every LAN setting and everything seems OK. The LAN is enabled and is "sending" packets but is not receiving any. I have tried other router ports and a different cable. Another computer using the same router can connect fine.  When I troubleshoot the network adapter (on the problem computer), the system indicates that the adapter is working find.

Everything indicates that the firewall program is running properly.  The anti virus program still indicates errors.  I uninstalled the anti virus program completely, but still can not connect.  I have disabled the firewall program, but still can not connect.

Any help would be appreciated.  Thanks

Answer -
You certainly did a through job of troubleshooting. I hate to tell you this, but I can only think of two solutions, one that costs money and *might* work, and another that is free but takes a lot of work.

Norton System Works 2005 can often automatically repair complex problems such as yours. It also will give you NAV05. See http://www.memorysuppliers.com/synosypro20o.html. It also will enable you to make complete backup copies of your entire system with Ghost. Systems administrators find it to be a real life saver, much better than System Restore.

The other alternative is to rebuild your system from scratch. It would be a good idea to get the SP2 disk before doing this, as installing it online takes a long time.

The crucial thing in reinstalling your system from scratch is to do it in the right order so that worms don't invade you computer within minutes of getting online. Before getting online, install both service packs, NAV, and activate your firewall. Because there are vulnerabilities in the XP firewall, I suggest you get Zone Alarm, free from zonelabs.com. I personally think the paid version is worth the money -- as is Norton Sytstem Works. Even if you rebuild from scratch, System Works can be a great investment for a power user like you.

After getting your firewall active, then run the NAV and Windows XP automatic updates.

You can avoid a lot of grief by never using Internet Explorer again. Its ActiveX is full of holes, allowing all sorts of malware to install itself. Instead, try Firefox, free from Mozilla.org. It is still worth installing Adaware and Spybot to protect it, but the overall risks are lower.

Be careful about the anti-spyware programs you install. Some of them are actually malware instead! I've been sticking with Adaware and Spybot because I know for sure they are honest.

Answer
When I say rebuild from sceratch, I was meaning to reformat the hard drive before reloading the operating system. SOrry for being unclear here.

If you want to also eliminate any possibility of errors in formatting which might in very rare rare cases contribute to your problem, you could even do what is known as a "low level format." How to do this depends upon the manufacturer of your hard drive. All the hard drive manufacturers offer free programs to do this on their websites. Here are links to the program download sites for the most popular manufacturers:

IBM(Hitachi)
http://www.hgst.com/hdd/support/download.htm

Seagate
http://www.seagate.com/support/disc/utils.html

Maxtor
http://www.maxtor.com/en/support/downloads/index.htm

Fujitsu
http://www.fel.fujitsu.com/home/drivers.asp?L=en&CID=1

Samsung
http://www.samsung.com/Products/HardDiskDrive/utilities/index.htm
FAQ: Low level format

Western Digital
http://support.wdc.com/download/index.asp