Harry Letterman
2008-10-03, 21:54
I tried to d/l a fake video codec earlier and stupidly clicked OK to some ActiveX scripts. Now, in IE 7 only, there is [was] something going on, sort of like my homepage has been hijacked even though it still opens with Yahoo Mail, which I want. I get a "Spyware Found" type of window and when I try to close it I am redirected to here [DANGER - MALWARE
http ://sc.videofreeMALWARE!foronline.com/id/4912933/4/1/
I have run a full scan with Malwarebytes and removed "C:\WINDOWS\k.txt (Trojan.FakeAlert)". My machine seems to be running fine now (I also ran SmitFraudFix for Zlob).
Here is my Spybot question: I remembered allowing a few (possibly 3) ActiveX script installs and TeaTimer asked me if I wanted to allow them (I did each time). I found this article on How To Delete Internet Explorer 7 ActiveX Controls (http://pcsupport.about.com/od/fixtheproblem/ht/disableie7activ.htm) and decided to investigate. I must have mis-read the article b/c I chose "Add-ons currently loaded in IE" instead of "Downloaded ActiveX Controls" from the Show: drop-down box. I noticed 3 odd-sounding controls:
Diagnose Connection Problems - Browser Extension (one of the phony IE windows)
Research - Browser Extension
"Soplygui" - Browser Helper Object (rgf.dll)
I am able to Disable these items but for some (suspicious) reason the "Delete" button in the "Delete ActiveX" box is greyed out:
http://i237.photobucket.com/albums/ff138/Bresson34/ScreenShot006.jpg
How can I permanently delete these ActiveX controls? Where would I find a log in Spybot/TeaTimer that recorded my allowing the changes (I also ticked "Remember this decision" each time)?
http ://sc.videofreeMALWARE!foronline.com/id/4912933/4/1/
I have run a full scan with Malwarebytes and removed "C:\WINDOWS\k.txt (Trojan.FakeAlert)". My machine seems to be running fine now (I also ran SmitFraudFix for Zlob).
Here is my Spybot question: I remembered allowing a few (possibly 3) ActiveX script installs and TeaTimer asked me if I wanted to allow them (I did each time). I found this article on How To Delete Internet Explorer 7 ActiveX Controls (http://pcsupport.about.com/od/fixtheproblem/ht/disableie7activ.htm) and decided to investigate. I must have mis-read the article b/c I chose "Add-ons currently loaded in IE" instead of "Downloaded ActiveX Controls" from the Show: drop-down box. I noticed 3 odd-sounding controls:
Diagnose Connection Problems - Browser Extension (one of the phony IE windows)
Research - Browser Extension
"Soplygui" - Browser Helper Object (rgf.dll)
I am able to Disable these items but for some (suspicious) reason the "Delete" button in the "Delete ActiveX" box is greyed out:
http://i237.photobucket.com/albums/ff138/Bresson34/ScreenShot006.jpg
How can I permanently delete these ActiveX controls? Where would I find a log in Spybot/TeaTimer that recorded my allowing the changes (I also ticked "Remember this decision" each time)?