Any of you propeller heads know a good way to remove this most evil of spyware?

My corporate virus scanner (TrendMicro) doesn't even see it and the latest Ad-Aware can only remove the active instance, which is regenerated the moment it's removed :sick:

Searching online I see a lot of information about how hard it is to remove, without a lot of easy solutions.

Any help?

-spence

AVG Anti-Spyware maybe?

I've found it removes a lot more stuff than Ad-Aware.
http://free.grisoft.com/doc/20/lng/us/tpl/v5

Found this but seems quite time consuming and complicated.

Manual removal:
1 Click "Start" in the task bar, then select "Control Panel" "Control Panel" Window is opened
2 In "Control Panel" window select "ADD/REMOVE Programs" Look For "BlackStone" "BlackStone" should be found in the "ADD/REMOVE Programs"
3 If "BlackStone" is found Select it and click the "Remove" button to remove it "BlackStone" should be removed.
4 If "BlackStone" is not present in the "ADD/REMOVE Programs" close any open Web browsers. All the browsers should be closed.
5 Click "Start", select the Search button and search for "IEHelper.dll" in the "C: drive". "IEHelper.dll" file should be found.
6 Delete "IEHelper.dll" "IEHelper.dll" file should be deleted.
7 Click "Start", select the Search button and search for "domlst.cch" in the "C: drive". "domlst.cch" file should be found.
8 Delete "domlst.cch" "domlst.cch" should be deleted.
9 IF the system does not permit the file to be deleted... Select "START" then select "Run", type "regedit" and press "ok". A new "Registry Editor" window is opened.
10 In the left side of the Registry Editor, select the key and its subkeys as follows.
HKEY_LOCAL_MACHINE-----SOFTWARE-----Microsoft-----Windows---CurrentVersion-----Explorer-----BrowserHelperObjects\ You should find the "{00000000-5eb9-11d5-9d45-009027c14662}" key
11 Delete the key:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{00000000-5eb9-11d5-9d45-009027c14662} The key is deleted.
12 Reboot the computer. Click "Start", then click "Search". Search for "IEHelper.dll" You should able to find the "IEHelper.dll" file now.
13 Now delete IEHelper.dll The "IEHelper.dll" should be able delete now.
14 Reboot the computer now, and search again for "IEHelper.dll" You should not be able to find the "IEhelper.dll" file any where in your system.
15 Click Start button on the task bar and click the "Run...". a Run window is opened at the down left corner of the desktop.
16 Type "regedit" in the Run window and press "ok" A new "Registry Editor" window is opened.
17 Search for HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{00000000-5eb9-11d5-9d45-009027c14662}
If the key if still found, proceed to the next step. You should not find the HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{00000000-5eb9-11d5-9d45-009027c14662}
key.
18 Follow from step 5 to step 10

That's not too bad...do you have the link to where it's from?

thanks,

-spence

Get NOD32!!

That's not too bad...do you have the link to where it's from?

thanks,

-spence

http://www.spywareguide.com/product_show.php?id=25

I hate those robin hood & friar tuck type proggies.

Format C: should do it.....Propeller Heads??

I build pc's fix them and do all kind of maintenance on them,I recommend a program called spysweeper to everyone I work with mostly family and friends or friends of.40 bucks year for the Spysweeper with antivirus.Worth it's weight in gold and runs on new and old and slow machines.As for removing it I'd hafta say back up all your important stuff and Reformat then fresh windows install and spysweeper from the start and you'll never have to worry again.No spyware adware anyware.Sorry for the bad news and your welcome for the advice.

BTW most of that junk comes from PRON sites man.Check your internet security options and don't accept all cookies.

Yea, TrendMicro can see the virus file but it's somehow hidden from me so I can't delete it...

And believe it or not I'm pretty sure I picked this up looking for water garden equipment :fishslap:

-spence

Trend Micro must have some support to try and help you.I used to like Trend Micro but they never really progressed and don't seem to have enough active sheilds to block the important stuff.

It's a work laptop, I just need to send it in and have it rebuilt...

Backing up everything today. Gotta love those 8GB DVD's :smokin:

-spence