Nevermind

[LtTPfan]

[GomJabbar]

Most anti-spyware apps let you undo any changes that they make, although it may be too late now that you have gone back to the last known good configuration. But I would check your anti-spyware app anyway and try to undo the changes that were made.

FWIW, I use Spybot search and destroy. It has a recover button for undoing changes made by Spybot. Spybot is highly rated, and is free (although the writer does appreciate donations for his efforts).

[LtTPfan]

[d lehmann]

Be carefull. you have to edit the registry. Backup first

Start>Run>Regedit
Registry Key: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}
Modify/Create the Value Data Type(s) and Value Name(s) as detailed below.
Data Type: DWORD // Value Name: IsInstalled
Setting for Value Data: [Change the Value from 1 to 0]
Exit Registry


Download ie6 from here:
http://www.microsoft.com/windows/ie/dow ... fault.mspx

Install and check

[LtTPfan]

[d lehmann]

Sorry:

Try using the full download instead.

http://saturn.med.nyu.edu/it/help/windows/downloads/

Look for the full installer ie6 zip file.

[LtTPfan]

[dsvochak]

If system restore is turned on, you may have a restore point that predates the problem (Accessories --> System Tools --> System Restore. Check for restore points and give it a try.

[LtTPfan]

[davidspalding]

Spybot S&D is incredibly dangerous. As you've found. Frankly, I'm amazed you don't have your address bar. If under View | Toolbars, it shows checked, is "Locked" also checked? If so, uncheck it. Then maximize your browser. Address may be at the right most end of another toolbar.

Another idea: hit F11 to go full screen. Do you have it? If not, right click what toolbar you do, and check Address bar.

Results?
_____________

OOps, didn't see your "success at last" post. Glad to hear you're fixed.

[GomJabbar]

Spybot S&D is incredibly dangerous. As you've found.

I have been using Spybot for over a year on 3 different computers with good results. It's the spyware that's the problem. My daughter got Cool Web Search on the home desktop (from Smiley Central). It turned out to be a bear to remove. I think that removing spyware is something akin to removing a brain tumor. It's hard to remove the whole tumor without some damage resulting. Whether you use a scalpel, razor blade or exacto knife, you will end up removing some of the good tissue with the bad.

Prevention is definitely better than the cure.

I would be curious if any others infected with Cool Web Search (there are variations) were able to remove it without any difficulty.

http://www.spywareguide.com/product_show.php?id=599

http://www.spywareguide.com/txt_dangerlevel.php#l10

[LtTPfan]

[davidspalding]

I think I was misunderstood -- I didn't mean that Spybot S&D was buggy, faulty or destructive, only that it's a dangerous utility ... if used carelessly. I've seen it want to remove hordes of legit files and settings on my system, without much good reason. In this sense, if not run with adequate diligence, it can do as much damage as a lightweight spyware/Trojan.

-- Wow, that's a lot of protection. Ad-Aware's a pretty able proggie, but if your system is in such critical risk from spyware, you might consider get a paid-for total security package like Norton and McAfee put out. Spyware, spamkiller, cookie patrol, banner and webbugs blocker, et al. Just an idea, take it or leave it.

[LtTPfan]

[christopher_wolf]

Well, I have been running S&D, Windows Anti-Spyware Beta, AVG, and Kerio at the same time for several months now with no problem. I think that certain Spyware software can really integrate themselves into windows system files; I have seen this many times and it appears to me to be a kill/suicide option. If the only way of running that system file is with the Spyware, then you have no choice to either run it or remove it. I have seen this happen on an old system once and it was a pretty hair-raising ordeal. That said, S&D, and even Windows Anti-Spyware, can be dangerous given what they are messing around with. Get a nasty enough "killinstall" or parasitic spyware program on your system and you could be in for some real trouble if you don't have a good backup.

[GomJabbar]

Get a nasty enough "killinstall" or parasitic spyware program on your system and you could be in for some real trouble if you don't have a good backup.

I second that.

[MadeInJapan]

Everyone should just get in the habit of using FireFox and you wouldn't have to worry about IE. Just my $.02...but I think it's very much worth it.

[GomJabbar]

I agree with you about avoiding IE. I use Netscape 7.2, Opera 8.51, and Firefox 1.5. IE is used only as a last resort, and then it is usually on Microsoft's site (which I feel safe on).

However, if you go to Smiley Central and download some smilies, or download screen savers and other software from certain sites, you will end up with spyware regardless of the browser you are using. Unfortunately many are not aware of this, and are just wowed by the coolness of what they see - that they can get neat software for free. Younger and new computer users are frequently victims. It can be a rough learning curve.

[christopher_wolf]

True enough GomJabber

Oh, and really use Firefox as there is another serious Trojan out for IE.

I...uhhh...Actually I have had a rather funny time with Microsoft's Website. Whilst downloading the Microsoft Antispyware Beta (for some reason, the SP update to XP didn't have it). So I downloaded it and installed it and, just as a check, ran Spybot S&D; guess what I found? Some other company had made some ad software and the package I got *contained* it....Do you believe that? From Microsoft's Antispyware Site? I sat there pretty much amazed that it happened. The even funnier part was when I took a closer look at the uninstall of the aforementioned sneaky package. It said something along the lines of "We are not Microsoft nor is the product affiliated with Microsoft" yet MS had put it in there of their own will. I think this tops the list of funny things I have seen on Microsoft's Site. Yes, even the time a developer tat wrote an article said that he *used Apples* to work on because he couldn't stand the Windows Environment. This doesn't include all the fun stuff they lay out in their blogs which, I am sure, will be a good source of humorous material for years to come.

[egibbs]

Now I have a new problem after getting the address bar back, and it seems to only affect this site, or maybe everyone here is having this problem? I have to constantly log in, even though I check log me in automatically each time I visit. I leave this site open in a Firefox tab/window and occasionally open it to see what's new or search for info. If I go about my business then re-open the tab/window with this site I'll have to log back in. I didn't have to do this before. I guess I need to try it in IE6 to see what happens.

Edit:
This new problem doesn't appear with IE6, I don't have to continually log in. Guess I can't have my cake and eat it too.

Sounds like Firefox is set to delete cookies on startup. Look in the Privacy options.

As far as the original problem, it sounds like the spyware (address.dll) replaced the IE address bar with it's own - nasty little trick that. When you killed it, S&D wasn't smart enough to restore the original address bar.

Ed Gibbs

[LtTPfan]