• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1109
  • Last Modified:

Orphaned .dlls in Windows 2000

Hi everybody-

Has anyone found a way to seek and destroy orphaned .dlls?  In my searches, I found one authored by a Kevin Solway, but it was for pre-Windows 2000.  Each morning when I log on, I get "Error finding C:\Program Files\commonName\Toolbar\CNBabe.dll .  Cannot find module specified"
I have a feeling this is the remnant of some sort of spyware, since it popped up when I ran my Ad-Aware program http://www.lavasoftusa.com/software/adaware/ .   Any ideas here?
0
jzgy12
Asked:
jzgy12
  • 4
  • 3
  • 2
  • +2
1 Solution
 
CrazyOneCommented:
Well first get one of these free utilities

MSCONFIG for Win 2000
http://www.insideproject.com/showguide.cfm?guideid=31
http://www.insideproject.com/downloads/msconfig2k/msconfig.zip

StartupCop
http://web.zdnet.com/pcmag/pctech/content/18/08/ut1808.007.html

StartStop
http://www.tfi-technology.com/downloads.htm

AutoRuns
http://www.sysinternals.com/ntw2k/source/misc.shtml#autoruns

Startup Control Panel
http://www.mlin.net/StartupCPL.shtml
and
StartupMonitor
http://www.mlin.net/StartupMonitor.shtml

then

Open up what you download
and find Startup lis
unckeck all the items.

If the problem no longer persists then one of the items in the starup is the culprit you just need to track it down.
0
 
CrazyOneCommented:
Also use one of these as well. I would recommend Hijack This because it may find something to do with the DLL in the registry

Check for adware and sypware

spybot here
http://spybot.safer-networking.de/
Download
http://spybot.safer-networking.de/index.php?lang=en&page=download

AdAware
http://www.lavasoftusa.com/

Spycop:
http://www.spycop.com/

BHODemon and Hijack This and Browser Hijack Blaster
http://www.spywareinfo.com/downloads.php?cat=sp#det
BHODemon | Think of BHODemon as a guardian for your Internet browser: it protects you from unknown Browser Helper Objects (BHOs), by letting you enable/disable them individually. This program is my choice for BHO detection and is highly recommended.

Browser Hijack Blaster | Running silently in the background, Browser Hijack Blaster only springs into action when an attempt is made. It watches and protects the following items: IE Homepage, IE Default Page, IE Search Page, BHOs. Whenver one of the above items is changed, or a BHO is added, you are immediately provided with information on the item, along with the option to keep the change, or revert to your previous settings.

Hijack This | Written by a member of our support forums and based on our Hijacked! article, this program scans the locations in your computer system that may be modified by browser hijackers and fixes any problems found. An easy-to-understand tutorial is available at TomCoyote.org.

General and overall information about Spy/Adware
http://www.cexx.org/adware.htm
0
 
rziminskiCommented:
go to run sysedit
check your system.ini, win.ini for any mention of the dll and remove it the config.sys and autoexec.bat should be blank

Rick
0
Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

 
Dufo G. BelskiRetired bureaucrat/desktop supportCommented:
To answer your general question about deleting orphaned dll's, there are a few utilities here that will find them for you:

http://www.donker.ws/
0
 
jzgy12Author Commented:
thanks, I'll check it out..
0
 
nader alkahtaniNetwork EngineerCommented:
Try this :

Well, cnBabe.dll is part of a Spyware application (it transmits data from
your computer to other computers so they can collect information about you).
If you'd like to get rid of the message, here's a way to do it...
---------------------------------------------------------
Go to Start > Run, and type in "msconfig", click OK > Startup and look for
the entries for CommonName, CNBABE.EXE., cnform.exe, BabeIE.dll,
CNBarIE.dll.... if any of them are there, uncheck them, click OK, then
reboot.

If you don't find all of them there, click Ctrl\Alt\Del and look for them in
the window that appears, if you find any, highlight and End Task on them.
That will ensure they are not running prior to the scan.

Now go to your Add\Remove programs and look for CommonName and uninstall it.
If you happen to see any of those others above there delete them also.

Do a file search for w3k*.tmp and delete all that you find.

Run Adaware.

When it's done choose "mark all for removal"

IMPORTANT: Make sure that you choose to make a BACKUP before removing
anything.

Click "Continue" to remove the nasties.

When it is finished I would reboot and run Ad-aware again to make sure all
is gone.


http://www.thedibb.co.uk/forums/showthread/t-14221.html


0
 
jzgy12Author Commented:
thanks, everybody....I first followed CrazyOne's suggestion and downloaded MSconfig for W2k...I clicked on the startup tab and unchecked the appropriate entry like NADIR mentioned.  I'll check out the other links as well..

0
 
nader alkahtaniNetwork EngineerCommented:
Why didn't split the points ?
0
 
jzgy12Author Commented:
Well, I didn't know I could split points to be quite honest.  I'm pretty new around here, I apologize..
0
 
CrazyOneCommented:
:)
0

Featured Post

[Webinar On Demand] Database Backup and Recovery

Does your company store data on premises, off site, in the cloud, or a combination of these? If you answered “yes”, you need a data backup recovery plan that fits each and every platform. Watch now as as Percona teaches us how to build agile data backup recovery plan.

  • 4
  • 3
  • 2
  • +2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now