Archived from groups: microsoft.public.windowsxp.security_admin (
More info?)
Here is the quick way to get rid of the IETLBASS.dll problem.
First, delete RealPlayer in Control Panel->Add/Remove programs.
Then click Start->Run and type in "msconfig"
Click on the startup tab, then uncheck RealPlayer.exe and uncheck the two
entries that have no name.
Click Apply->Close, reboot and the problem is gone.
"David H. Lipman" wrote:
> Thank you for that feedback. It is valuable for the QC loop so I can provide even better
> answers.
>
> Do you have the SYSCLEAN.LOG and see what Sysclean caught ?
>
> --
> Dave
>
>
>
>
> "Motz_uk" <Motzuk@discussions.microsoft.com> wrote in message
> news:E7BE4753-497F-4494-9446-C31352D1671F@microsoft.com...
> | Hi
> |
> | THanks a million David - the sysclean.com file did the trick - very slow but
> | worked fine. Thanks too for writing your advice insimple non-technical words
> | - for a non-IT litereate person it makes it much easier.
> |
> | Motz
> |
> | "David H. Lipman" wrote:
> |
> | > Dave:
> | >
> | > Adaware 6 is outdated, unsupported and no longer updated. As of Today there is a NEW
> | > definition file for Adaware SE v1.05
> | >
> | > Please use the following information...
> | >
> | >
> | > 1) Download the following three items...
> | >
> | > Trend Sysclean Package
> | >
http://www.trendmicro.com/download/dcs.asp
> | >
> | > Latest Trend Pattern File.
> | >
http://www.trendmicro.com/download/pattern.asp
> | >
> | > Adaware SE (free personal version v1.05)
> | > http://www.lavasoftusa.com/
> | >
> | > Create a directory.
> | > On drive "C:\"
> | > (e.g., "c:\New Folder")
> | > or the desktop
> | > (e.g., "C:\Documents and Settings\lipman\Desktop\New Folder")
> | >
> | > Download Sysclean.com and place it in that directory.
> | > Download the Trend Pattern File by obtaining the ZIP file.
> | > For example; lpt341.zip
> | >
> | > Extract the contents of the ZIP file and place the contents in the same directory as
> | > sysclean.com.
> | >
> | > 2) Update Adaware with the latest definitions.
> | > 3) Disable System Restore
> | >
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
> | > 4) Reboot your PC into Safe Mode and shutdown as many applications as possible
> | > 5) Using both the Trend Sysclean utility and Adaware, perform a Full Scan of your
> | > platform and clean/delete any infectors/parasites found.
> | > (a few cycles may be needed)
> | > 6) Restart your PC and perform a "final" Full Scan of your platform using both the
> | > Trend Sysclean utility and Adaware
> | > 7) Re-enable System Restore and re-apply any System Restore preferences,
> | > (e.g. HD space to use suggested 400 ~ 600MB),
> | > 8) Reboot your PC.
> | > 9) Create a new Restore point
> | >
> | >
> | > * * * Please report your results ! * * *
> | >
> | >
> | > --
> | > Dave L.
> | >
http://www.claymania.com/removal-trojan-adware.html
> | >
> | >
> | >
> | >
> | > "Dave" <Dave@discussions.microsoft.com> wrote in message
> | > news:B620C0F5-EDDB-47CC-BC26-D95A63B50F00@microsoft.com...
> | > | Sorry to intrude but I'm also getting the same problem with ietlbass.dll,
> | > | PLUS AddClass.exe (apparently a variant of CooWebSearch?). Tried to clean
> | > | under safe mode with system restore disabled, using an updated NAV and at
> | > | least 4 other ADware/Spyware removers (Spybot, Ad-ware6, Spysweeper,
> | > | CWShredder) - still no luck.
> | > |
> | > | With the CWS, I'd also tried using the manual cleaning method (cleaning the
> | > | registries) posted on a number of sites but had failed to find the
> | > | AddClass.exe file in C:\Windows as the final step. Spysweeper continues to
> | > | display the problem, together with the ietlbass.dll (identified by NAV)
> | > | everytime I reboot the computer.
> | > |
> | > | Does anyone else have any other ideas please?
> | > |
> | > | Dave
> | > |
> | > | "David H. Lipman" wrote:
> | > |
> | > | > There are anti virus News Groups specifically for this type of discussion.
> | > | >
> | > | > microsoft.public.scripting.virus.discussion
> | > | > microsoft.public.security.virus
> | > | > alt.comp.virus
> | > | > alt.comp.anti-virus
> | > | >
> | > | > 1) If you are using WinME or WinXP, disable System Restore
> | > | >
http://vil.nai.com/vil/SystemHelpDocs/DisableSysRestore.htm
> | > | > 2) Reboot your PC into Safe Mode
> | > | > 3) Using your NAV software, perform a Full Scan of your platform and
> clean/delete
> | > any
> | > | > infectors found
> | > | > 4) Restart your PC and perform a "final" Full Scan of your platform
> | > | > 5) If you are using WinME or WinXP,Re-enable System Restore and re-apply any
> | > | > System Restore preferences, (e.g. HD space to use suggested 200 ~
> 400MB),
> | > | > reboot your PC.
> | > | > 6) If you are using WinME or WinXP, create a new Restore point
> | > | > 7) Please report back your results
> | > | >
> | > | >
> | > | > --
> | > | > Dave
> | > | >
> | > | >
> | > | >
> | > | >
> | > | > "Motz_uk" <Motz_uk@discussions.microsoft.com> wrote in message
> | > | > news:411586FD-76B3-47EF-AF06-E7784D7A1E67@microsoft.com...
> | > | > | Norton keeps telling me it has found a trojan C:\windows\ietlbass.dll , but
> | > | > | cannot access or repair it. I have quarantined it but still keeps coming
> | > | > | back, I have tried both adaware and spybot to no avail. The damn pop up
> | > | > | keeps coming back and I can't get rid of it - any ideas?
> | > | >
> | > | >
> | > | >
> | >
> | >
> | >
>
>
>