Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works

spy falcon

  • Please log in to reply



    New Member

  • Member
  • Pip
  • 4 posts
Hey all,

I found your site while trying to find a way to remove a program called Spy Falcon from my computer. I tried the Windows XP Add/Remove Programs route. The prog just reinstalls itself everytime I reboot. I have run all the programs listed on your remove spysheriff stickie, and some others, to no avail. I have posted this issue to annoyances.org also. Anyway, i have attached all the required log files in a zip. Hope someone can figure this out.


Matt N

Attached Files

  • 0




    Malware Expert

  • Member
  • PipPip
  • 36 posts
  • MVP
Hi there, I'll start helping you out, but a few questions.

You ran SmitRem, is that a current copy that was just downloaded? If it was downloaded even a few days ago, it may not be updated with the latest definitions. If you didn't just download SmitRem, then please download a new copy. Also, download the trial version of Ewido Security Suite here. Install it and check for updates. After you have updated it, close it and reboot into safe mode. You should copy the instructions to notepad or print them out, since you won't have Internet access in safe mode.

Safe mode instructions:
* Restart your computer
* After hearing your computer beep once during startup, but before the Windows icon appears, press F8
* Instead of Windows loading as normal, a menu should appear
* Select the first option, to run Windows in Safe Mode

Once in safe mode, run the SmitRem file 1st. When that is done, run ewido. Be sure to save the logs that both make so you can post them in your next reply. Reboot normally after finishing and see how things work. Please copy and paste the logs in your replies instead of attaching them. , it is easier to work with and it makes it easier for other helpers to search.

If that doesn't work, then please do the following so i can get some more info:

Run HijackThis, click on Open the Misc Tools Section, put a checkmark in List also minor sections and List empty sections. Click on Generate StartupList log, answer Yes and copy/past the content in your reply.

Download WinPFind.zip to your Desktop or to your usual Download Folder.
Extract it to your C:\ folder. This will create a folder called WinPFind in the C:\ folder.
Open the C:\WinPFind folder and double-click on WinPFind.exe.
Click on Configure Scan Options.
Remove all the checkmarks under Folder Options on the left side by clicking the button Remove All, uncheck Run Addon's and click Apply.
Click on the Start Scan button and wait for it to finish.

Please be patient while it works. When it is done, the results of the scan will be displayed and it will create a log file named C:\WinPFind\WinPFind.txt. Please copy that log into your next reply.

REgardless of what happens, please post a fresh HJT log, the SmitRem log, and the ewido log. If you haven't been cleaned, then include the other two as well. Use more than one post, since some of the logs can be long.

Edited by Nick-YF19, 09 February 2006 - 08:54 AM.

  • 0



    Malware Expert

  • Member
  • PipPip
  • 36 posts
  • MVP
Don't know if you are still out there, but there is an automated process you can do now.

Instructions here and here

If I don't hear back from you in a few days, the topic will be archived.
  • 0

Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP