I'm using Win 98 and I think I've been hijacked, BAD?

For a while my home page would be (about:blank) and even though I would change it back to (www.yahoo.com) it would always revert back to (about:blank) every time I reloaded the browser.

Also I have noticed in the add/remove programs section on my computer that there is a program called "search assistant uninstall" there. I can't remove it and I can't access it to see what it's properties are.

A third thing I noticed on my browser was that whenever I went to my onlline banking site, I noticed that at the bottom of the browser it said (Opening www.webmasterscash.com). The page was so slow loading up that I just ended it there.

I've used SpyBot, Ad-Aware SE, and HijackThis as well as a couple of online virus scans. On virus scan in particular, Micro Trend's Housecall, noted that I had the following;

TROJ SMALL.GR Non Cleanable C:\q.exe

I couldn't find any descriptions of this but I deleted it nonetheless.

 

Hi Habs Fan,

I know that you have probably done much of this already, but please take a run through the Cleanup Tutorial HERE:

READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan and Virus Removal

This will remove a lot of stuff that would otherwise clog a HJT log.

Please note the steps that you are able to complete and the ones that give you problems. Note that you need to be in Safe Mode with System Restore OFF (if you have it - you didn't give OS) and have the Viewing of Hidden Files ENABLED as per the instructions in the link. Make sure to do the Online Scans.

Post back and let us know how you fared. Also, send us a HijackThis Log. Make sure to follow the instructions below:

Note that your HijackThis should be up-to-date (v1.98.2) and MUST be extracted to its own safe folder - C:\Program Files\HijackThis!

If you need a Fresh Download of HJT, get it HERE: HijackThis 1.98.2

Also note that, before you scan, you MUST close all running programs including your web browser, e-mail and items in the system tray.

Please save your HJT Log and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

Somebody will try to take a look when they get a chance.

Best luck
PP

 

Sorry PhillePhan ..... I think I put it in the Title but i probably should have placed it in the message as well. The operating system I'm using is Windows 98. I know it is old but up until now it's been great.

I'm gonna start with the ReadMeFirst Tutorial you suggested and then I'll post a HiJackThis Log.

Thanks

 

That you did! I've got a canned spiel that I copy and paste & forgot to take that out. But hey, the way I look at it, I mess up far fewer times than the people who read the HJT instructions and still run it from a TEMP folder. So, I trust you'll not be doing that?!

I probably won't be checking back until Monday evening - Just to let you know.

Best
PP

 

PhillePhan ..... here's my log file.

A couple of points though ..... I could not run the Symantec Security Check ..... I waited 30 mins for the first download to complete and about 20 mins next time ..... all it kept saying was "Downloading Active X"

Anyways hope this helps

 

Chas

yes I was using IE when I tried to scan using Symantec. I apologise for the Word but the logs for HJT usually come up in notepad and for some reason I couldn't upload notepad. My apologises.

I thank you guys for your help. So does this mean that my Computer is okay now? I know that you guys cannot be expected to give guarantees but would you, based on what you know trust using my computer now?

Also, one further question; I still have "Search Assistant Uninstall" on my add/remove programs. When I try to remove it nothing happens. Is this okay or something I should concern myself with?

Once again, thanks for your time. I know you guys are very busy and I appreciate the time you took to help me out.