spyware problems (well...is it ever not a problem...)

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by squaxon, Dec 20, 2004.

  1. squaxon

    squaxon Private E-2

    Hi,
    After my brother went on my computer it's become a target for adware all over the shop (it's always the way...like someone driving your car and changing the seat and everything).

    Anyhoo, I first noticed i had EliteBar, which i managed to get rid of (cross fingers) but I'm still getting alot of pop-ups. I seem to have most problems with VBouncer, Se.exe and SED.exe which seem to have gone for the moment.

    I've been through the tutorial and it has got better but its still there and i'm worried to leave my computer left connected to the internet incase something downloads itself when i'm not there.

    I've attached my HijackThis v1.99 log which was run in normal boot mode with everything closed.

    I would greatly appreciate any help anyone can give me.

    Alice
     

    Attached Files:

    squaxon, Dec 20, 2004
    #1
  2. anarchy

    anarchy Private E-2

    I noticed from your Hijack log that you have Norton Anti-Virus installed. Update the definitions and do a full system scan. I'm pretty sure that will take car of the EliteBar.

    PestPatrol should take car of Vbouncer, SED.exe, and Se.exe. (EDIT:Costs money to get, if you don't/can't pay, Ad-Aware and Spybot will probably do the trick)


    It's also not a bad idea to download Ad-Aware, as well as Spybot:Search and Destroy and preform a system scan alteast once a week.

    And if you're using IE, I suggest using Firefox. It's ALOT more safer and I find it to be more convenient.

    Hope this helped

    anarchy :rolleyes: :rolleyes: :rolleyes:
     
    anarchy, Dec 20, 2004
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Download LSP-Fix to your other computer and then get it on to your broken one.
    Download it here: http://www.majorgeeks.com/download4180.html
    Unzip it and run it. Check the Box labeled "I know what I'm doing" and then click on the aklsp.dll file (in the “Keep” section) to select it.

    Then, Select the >> button to move aklsp.dll into the Remove section.

    Now, click the Finish Button. When the Repair Summary box appears, click OK.

    Run HJT and have it fix the following lines:

    O16 - DPF: {17D72920-7A15-11D4-921E-0080C8DA7A5E} (AimSp32 Class) - http://makeover.ivillage.co.uk/save/makeover.cab
    O16 - DPF: {8EF27A70-DD04-11D6-B7F6-00A0C9CD5F8A} - http://www.quikshield.com/qshsetup.exe


    For the below three lines, they have been a pain.
    O1 - Hosts: 69.20.16.183 auto.search.msn.com
    O1 - Hosts: 69.20.16.183 search.netscape.com
    O1 - Hosts: 69.20.16.183 ieautosearch

    See this thread and start working following the steps at message #77 between Quinndrew5 and PhilliePhan.
     
    chaslang, Dec 21, 2004
    #3
  4. PhilliePhan

    PhilliePhan Guest

    This is a better thread to use for reference. QuinnDrew has Windows 98 and that makes the removal process a bit different:

    what else can I do for this?

    Once you have removed all other Malware, let me know and we can begin the process to address the VX2 Variant.

    PP :)
     
    PhilliePhan, Dec 21, 2004
    #4

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds