Ok, be aware of any files you get from Outlook( i advise you NOT to use outlook because it automaticly downloads the files). and also hotmail or any e-mail program( the file senders are (uknown) and any person that sends you a filesize of about 46-47KB's)

the format names are .scr (screen savers) and .exe's as they are a WORM_YAHA.K

i will post more when i get somemore info

if anyone knows about this too, try to put file names

Yeah, it was sent to me, I didnt even download it, I dont use Virus Importer, errr i mean outlook express. I just use hotmail.

Funny thing is, it didnt alert me to it being infected, Good 'ol McAfee said it was clean.

yeah, it seems that this virus/worm is just a virus getter.

and my friend got it (since his mom uses outlook it downloaded automaticly) and i tired getting rid of it but it shut down Norton Anit-virus, everytime i pressed Ctrl+Alt+del, the box just disapeared right away, and same goes for norton

Ok, here is what i did from the time i found out there was a virus on my friends computer:

i tryed to launch Norton but this virus shut it down, then i tryed to run taskman, but was agian shut down. so i went to trendmicro online virus-scan, and i found 137 viruses, but when i tryed to delete the viruses, it wouldn't let me. so now i had to try and locate the viruses manually, but either when i tryed to delete them i got "cannot delete file" because it was in use (i suppose)
or it would just re-appear when i tryed to delete it so then i tryed to do a cd-boot with Norton Anti-Virus but when i tryed to do that, it just bypassed it(seems to be that was the virus doing this). ok by this time i was tried of doing all this stuff. so i tryed to format from the windows xp disk BUT yet agian it just by-passed all this and launched windows.

so either my friend has to get some serious computers experts or buy a new computer

if anyone has any ideas on how to get rid of this virus, let me now, thanks!

i know several people who have had problems with this virus. i think i was finally able to beat it by using the Fix located on this website to temporarily shut it down while I ran my Virus Scanner. Follow the link, follow the instructions and try it out. Hopefully that will work for you....
http://www.sophos.com/virusinfo/analyses/w32yahae.html
As long as the virus is running then it will be able to get around your detection software. this should help/

u need a program named STINGER.EXE
check out this site http://www.trend.com.tw/vinfo/virusencyclo/default5.asp?VName=WORM_YAHA.K

it gives info on the virus.
but the stinger program is a on a MCAFEE virus help page.. try to search on google.com for it.

sound like you have tried just about every approach I can think of.
the only thing I can think of and is using a process viewer to actually see what is running and trying to kill the process thereby allowing you to delete it and than run your anti-virus.

It appears to be in your boot sector as well and in your automatic startup and those can be in a number is hidden places.

try http://prcview.com and see if you can manually kill the processes that shouldn't be running.

good luck

also get rid of outlook and use a email like TheBat that does not allow anything to download aninfect your puter.

ok, thanks guys!

Honestly, if it were me, I would do a low level format of it all.

Then I would run a viruscan from a virgin floppy at dos prompt.

Then I would reinstall it all. I would never ever trust a thing off that machine, not one damn thing. ever. And scan all other media they have too.

If they GAVE me that machine for free, I wouldnt even boot it up, I would just wipe it.

Then, let them figure out that they need to use an antivirus program, and keep it updated.

PORNMASTER!

ok now I got your attention I have a question to ask......whats the boot sequnce on your friends comp? It may have bypassed the XP disc because it was looking to boot from a floppy or the hard drive.

If this is the case, go into your BIOS and change your boot sequence. If you do not know how to do that, please have someone do it for you that knows seeing that one wrong setting can really bork your system.

Please let me know how you make out. if all else fails use a boot floppy from 98 or ME to format the hat drive manually. once it boot up enter FORMAT C:/S or Format C: I suggest the latter as that will clean your hard drive.

Good advice from Krell......listen to him

I Gotta remove outlook.

I gotta do that right now!

Wierd, I removed it, and it just reverted to outlook 5.
And it is no longer in my Add/remove programs

Little help please :D

Clarify, do you mean Outlook, or Outlook Express. Very different.

Have you tried logging in safe mode then running antivirus. www.symantec.com the makers of norton has a tool that also can remove it. http://securityresponse.symantec.com/avcenter/venc/data/w32.yaha.l@mm.html read about it here. or here's the more dangerous form of the virus http://securityresponse.symantec.com/avcenter/venc/data/w32.yaha.k@mm.html