TROJ_IEFEATS.A

[26543]

My browser IE Explorer 6.0 had been hijacked by this malware TROJ_IEFEATS.A. I found solutions with regard to deleting most of the components in the registry, however they were stored in different directories than the ones listed in trendmicro.com. I found another directory HKEY_USERS\S-1-5-21-1960408961-1993962763-839522115-1000\Software\Microsoft\Internet Explorer\Explorer Bars\{C4EE31F3-4768-11D2-BE5C-00A0C9A83DA1}\FilesNamedMRU/... Here I found and deleted all the keywords of this malware but also deleted 2 other files that weren't listed in trendmicro.com: CONTROL.INI, (2) files; (1).JS FILE. My reasoning was based on intuition rather than knowledge, thinking that since these were the only files in this folder along with the other malware, that perhaps they were associated with the program. Prior to doing this work, I backed up my registry and created a folder on my desktop. No major problems when running computer, however, am unsure of decision. I was wondering if anyone knew if these files are associated with this program? Or should I revert back to the bakup registry and start over, leaving those files intact?

 

[carrr]

Control.ini is (normally) your control panel init file.
Can you access the control panel ok?
.js could be either a javascript source file or a file asociated with Mozilla. The former, I'm not sure I'd worry about, the latter...? Does it apply in your case? Any loss of functionality?

"'Tis an ill wind that blows no minds." - Malaclypse the Younger