Tom's Guide | Tom's Hardware | Tom's Games
 |
 |
 |
I've got heavy duty trouble with spyware and trojans here on my 98SE machine. No matter what I do I can't get rid of everything (and I'm not even convinced Im getting rid of anything). I have run Ad-Aware, Spybot Search and Destroy, Trend Micro's Online Antispyware removal thing, and HijackThis. Spybot and Ad-Aware SEEM to get rid of some things but HijackThis and Trend Micro's online thing keep reporting the same results after many scans and after I get rid of the things that I need to. This is particularly strange for HijackThis. As well, I can't do any Windows Updates or Trend Micro's Online Virus scanner because I get and error message stating that I have not enabled ActiveX Controls. With the Windows Update thing as well, it states that I need to be logged on as Administrator to get the updates but I AM logged on as administrator. I am suspisious that this activity is caused by a trojan but I don't know.
Can anyone help me dig out of this mess?
ThanksDanny
Can you post the names of the virus or spyware that has been detected. If you dont remember, check the log of AdAware or SpyBot. I dont think you will be able to retrieve a log of the online virus scan, but the names of the problems would greatly increase the liklyhood that a tech-pert could help you.
0 
Well....the only one that I know is there for sure is startpage.J or something like that (I am currently using a different computer) (according to AVG)). My home page has been changed to about.blank.
Thanks
Danny
0
You may have this one on your pc, but I doubt it is the one causing the headaches. Here is some info about the virus you mentioned and manual removal instructions.
I would suggest posting the other virus/spyware names when you get time, because I dont think this is the only problem on your pc.http://securityresponse.symantec.com/avcenter/venc/data/trojan.startpage.j.html
0
Well...one other thing that I can remember off hand is that I get an error message lots talking about "se.dll" if that gives you any clues.
Danny
0
File Name: se.dll
--------------------------
Description:
Se.dll is a IE Browser Helper Object of adware SCBar/SearchExe variant. It adds a toolbar to Internet Explorer and generates popup ads while online.
Security Issues: Hijacks browser searches. Can download and execute arbitrary code from its controlling server (search-exe.com).--------------------------
What Is It?
IEPlugin Removal - se.dllWhat Does it Do?
IEPlugin is an IE BHO that monitors web site addresses you visit, form contents and even your local file browsing! It also automatically updates and adds a few items to your favorites list. On top of this it will display ads when it finds certain keywords in your browser.
Still, I don't think this is the heart of your problems. When you get time, post all the names of the viruses/spyware. I have some standard advice I offer to everyone in your shoes. First off, I highly reccommend downloading Startup Control Panel from the following link.
Install this, once installed, you can locate it by going to start button-->settings-->control panel-->then double click the "Startup" icon.Once here, disable all programs you dont recognize or trust. By disabling them here, you will prevent them from loading when your pc starts, thus preventing them from regenerating themselves after a virus or spyware scan. Make sure to take time to go through each tab and disable everything you dont trust. (dont worry, if you disable something important you can always come back and recheck the box, you wont damage anything)
You will have to reboot for this to take affect. After doing this, run your scanners again, and report back all the names you uncover. With the names, I can offer much more information.
0
What is your take on using Safe Mode to disable unwanted programs at startup? Is it really useful? Or is using third party software like what you mentioned better?
0
Safe mode will boot your computer system and nothing else. It will only load the system files that are nessasary to boot and will not load any third party application.
This tool, will allow you to pick and choose which programs can start, and will also convieniently list them all in one area, instead of having to dig through thousands of lines of registry.
Safe mode is better. However, you won't have network and extra drivers. Also, while in safe mode, when you reboot, the computer will then boot in normal mode, perpetuating your problem, and reloading whatever bugs werent loaded while booting safe mode.
The problem with safe mode is that, what happens when a system file is damaged or infected? Thats when it gets tricky. But thats aside the point, either one should work for you though. The idea is the same, restarting your computer without loading the program that keeps regenerating.
0
Also, please keep me up-to-date. I am curious to see the names of these spyware/virus programs. Thanks.
0
Hi,
Download
http://www.derbilk.de/SpSeHjfix109.zip
for win 98http://www.derbilk.de/SpSeHjfix112.zip
for 2000/xpto the desktop and then right-click a blank part of desktop & select new folder, call it spfix and unzip the file into that folder.
Disconnect from the net and close all open programs.
Go to safe mode.
.Run 'SpSeHjfix'. and click on "Start Disinfection".
When it's finished it will reboot your machine to finish the cleaning process.Good luck
On a few occasions it has been reported that after using the SPSEHjfix you cannot open Internet Explorer.
To fix this, go into Control Panel >Internet Options >Programs & press reset web settings, then you can set your home page to what you want on the general tab.
0
I'd hate to tell you this but nothing is reporting any other virus but the startpage virus.
I tried that SPSEHjfix thing but it returned an error. Something about it not being able to run because of an error on "line 59" or something.
In regards to the Start Up Control Panel, it is reporting everything that is normal in my experience.
I tried scanning the system with Avast's worm scanning tool. Interestly, once it got to a certain point it froze solid.
If I'm being vague here, its because its late, im tired and grumpy now lol.
Still, if you guys have any more ideas, keep them coming.
Danny
0
Danny, sorry you had an error with the fix.
You need a dedicated hijackthis log reader
that may know a workaround for the removal.Good luck
0
Well folks. I'm shocked. But I managed to get rid of the startpage trojan with Trojan Remover, and voila! Everything (besides a CoolWebSearch problem) is back to normal. I can do Windows Updates and online virus scans now which I couldn't do before. There is still some problems I think though cuz the computer crashes but I'm no longer so stumped now that I can do online virus scans.
0
There's A new kid in town,
Hitmanpro!!, It Downloads [after installation]:
Ad-Aware SE 1.06 Personal (FreewareSpybot Search & Destroy 1.4 Freeware
Spy Sweeper 3 en 4 tryout version
Spyware Doctor 3.2 Lite version
CWShredder 2.15 Freeware
SpywareBlaster 3.4 Freeware
Spyware Block List Freeware
Sysclean Package Freeware
SuperDAT VirusScanFirst you download it via the following link: http://members.home.nl/mloman/hitmanpro214.exe
the explenation of the dutch version is on this link: http://xthost.info/hitmanual/
you use the best possible options for your problems, then let it download en work!!
killing of most forms of spyware!!!
0  |
 spybot & spyware blas...
|
remote desktop and securi...
|
This post is quite old and has been locked from receiving new replies. Please create a new posting instead.
| Ads by Google |
