Maleware Problems

Welcome to Bleeping Computer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

BleepingComputer.com > Security > HijackThis Logs and Virus/Trojan/Spyware/Malware Removal

Forum Guidelines

Read this topic before posting a log.

DO NOT post a ComboFix log unless requested to.

Only members of the HijackThis Team or Moderators are allowed to help people with logs. Anyone else should refrain from posting to another user's log.

When posting a log please put the type of infection you have in the topic title. IE: Winfixer, Virtumonde, WinTools, WebSearch, Home Search Assistant, etc.

Do not bump your topic. We try to resolve logs on a first come/first served basis. By bumping your log you will be pushed back in line due to the new date of your bump.

3 Pages

< 1 2 3

Maleware Problems, Need help removing what ever it is.

Options

IowaGuy View Member Profile	May 24 2007, 07:42 PM Post #31
Member Group: Members Posts: 19 Joined: 11-May 07 From: Iowa Member No.: 130,319	Ok, I did everything you said, but I cant find the C:\WINDOWS\system32\sp2.exe file. I did type it in, and it just said zero bytes. Also, I would of got this back to you alot sooner, but of course Virustotal was offline for a while. This post has been edited by IowaGuy: May 24 2007, 07:43 PM

Rahina View Member Profile	May 25 2007, 08:05 AM Post #32
Security Helper Group: HJT Team Posts: 681 Joined: 6-September 06 From: Finland Member No.: 83,926	Could you please Post a Fresh Main.txt, let's see if we can find something there. Also, I will be out of town this weekend and i will hopefully get back on Sunday! Thanks -------------------- [ Antivirus ] [ Firewall ] [ Spywareblaster ] [ Malwarebytes Anti-Malware ] [ Windows update ] [ Firefox ] [ WinPatrol ] [ ATF Cleaner ] If i have helped you, donate to help me continue helping others.

IowaGuy View Member Profile	May 25 2007, 05:23 PM Post #33
Member Group: Members Posts: 19 Joined: 11-May 07 From: Iowa Member No.: 130,319	Here is the new main text. See ya soon. Deckard's System Scanner v20070426.43 Run by Rob Heidemann on 2007-05-25 at 17:17:28 Computer is in Normal Mode. -------------------------------------------------------------------------------- -- HijackThis (run as Rob Heidemann.exe) --------------------------------------- Logfile of HijackThis v1.99.1 Scan saved at 5:17:52 PM, on 5/25/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16441) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\LEXPPS.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe C:\Program Files\ATI Multimedia\RemCtrl\ATIX10.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Outlook Express\msimn.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\wuauclt.exe C:\PROGRA~1\MOZILL~1\FIREFOX.EXE C:\Documents and Settings\Rob Heidemann\My Documents\Downloads\dss.exe C:\HJT\ROBHEI~1.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crh.noaa.gov/dmx/?mystation=KALO O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [SmartDefrag] "C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe" /startup O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe" O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe O4 - HKCU\..\Run: [ATI Remote Control] C:\Program Files\ATI Multimedia\RemCtrl\ATIX10.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by107fd.bay107.hotmail.msn.com/resources/MsnPUpld.cab O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} (Windows Live Safety Center Base Module) - http://cdn.scan.onecare.live.com/resource/...lscbase8300.cab O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing) O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE O23 - Service: lxbs_device - Lexmark International, Inc. - C:\WINDOWS\system32\lxbscoms.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: X10 Device Network Service (x10nets) - Unknown owner - C:\PROGRA~1\ATIMUL~1\RemCtrl\x10nets.exe (file missing) -- Files created between 2007-04-25 and 2007-05-25 ----------------------------- 2007-05-19 21:42:41 22040 --a------ C:\Documents and Settings\Rob Heidemann\Application Data\addon.dat 2007-05-19 21:42:38 33952 --a------ C:\WINDOWS\system32\drivers\oreans32.sys 2007-05-16 15:32:10 0 d-------- C:\Documents and Settings\Rob Heidemann\Application Data\WinPatrol 2007-05-16 15:32:06 0 d-------- C:\Program Files\BillP Studios 2007-05-13 15:47:13 0 d-------- C:\WINDOWS\system32\ActiveScan 2007-05-12 20:45:10 0 d-------- C:\Documents and Settings\Rob Heidemann\DoctorWeb 2007-05-12 20:32:29 0 d-------- C:\Documents and Settings\Administrator\Application Data\Identities 2007-05-12 20:30:18 51822868 --a------ C:\RegBackup.reg 2007-05-12 20:06:04 0 d--h----- C:\Documents and Settings\Administrator\Templates 2007-05-12 20:06:04 0 dr------- C:\Documents and Settings\Administrator\Start Menu 2007-05-12 20:06:04 0 dr-h----- C:\Documents and Settings\Administrator\SendTo 2007-05-12 20:06:04 0 d--h----- C:\Documents and Settings\Administrator\Recent 2007-05-12 20:06:04 0 d--h----- C:\Documents and Settings\Administrator\PrintHood 2007-05-12 20:06:04 0 d--h----- C:\Documents and Settings\Administrator\NetHood 2007-05-12 20:06:04 0 d-------- C:\Documents and Settings\Administrator\My Documents 2007-05-12 20:06:04 0 d--h----- C:\Documents and Settings\Administrator\Local Settings 2007-05-12 20:06:04 0 d-------- C:\Documents and Settings\Administrator\Favorites 2007-05-12 20:06:04 0 d-------- C:\Documents and Settings\Administrator\Desktop 2007-05-12 20:06:04 0 d--hs---- C:\Documents and Settings\Administrator\Cookies 2007-05-12 20:06:04 0 dr-h----- C:\Documents and Settings\Administrator\Application Data 2007-05-12 20:06:04 0 d---s---- C:\Documents and Settings\Administrator\Application Data\Microsoft 2007-05-12 20:06:03 524288 --ah----- C:\Documents and Settings\Administrator\NTUSER.DAT 2007-05-12 10:05:44 0 d-------- C:\VundoFix Backups 2007-05-12 08:53:23 0 d-------- C:\HJT 2007-05-05 13:32:44 0 d-------- C:\Program Files\Executive Software 2007-05-05 11:58:45 0 d-------- C:\Program Files\IObit 2007-05-05 11:37:00 0 dr-h----- C:\Documents and Settings\Rob Heidemann\Recent 2007-05-05 11:32:05 0 d-------- C:\Program Files\CCleaner 2007-05-05 11:18:03 2013 -r-h----- C:\WINDOWS\system32\drivers\hosts 2007-05-05 11:17:29 0 d-------- C:\Program Files\RogueRemover PRO 2007-05-05 11:12:40 0 d-------- C:\Program Files\InterMute 2007-05-04 17:30:21 0 d-------- C:\Program Files\Windows Live Safety Center -- Find3M Report --------------------------------------------------------------- 2007-05-22 17:03:03 0 d-------- C:\Program Files\Lexmark 3100 Series 2007-05-22 17:01:53 0 d-------- C:\Program Files\ID3man 2007-05-22 17:00:03 0 d-------- C:\Program Files\ATI Multimedia 2007-05-21 21:38:22 0 d-------- C:\Program Files\mIRC 2007-05-20 21:05:41 4 --a------ C:\WINDOWS\system32\B4B166 2007-05-16 15:47:21 0 d-------- C:\Program Files\SpywareBlaster 2007-05-08 21:31:03 0 d-------- C:\Program Files\Java 2007-05-08 21:29:52 0 d-------- C:\Program Files\Skype 2007-05-05 11:41:31 0 d-------- C:\Program Files\Common Files\AOL 2007-05-03 22:41:34 0 d-------- C:\Program Files\MSN Messenger 2007-05-01 20:38:07 0 d-------- C:\Program Files\Rhapsody 2007-04-24 19:10:07 0 d-------- C:\Program Files\Philips 2007-04-21 18:04:13 0 d-------- C:\Documents and Settings\Rob Heidemann\Application Data\Viewpoint 2007-04-18 21:39:54 0 d-------- C:\Documents and Settings\Rob Heidemann\Application Data\X10 Commander 2007-04-16 06:24:34 0 d-------- C:\Program Files\Lx_cats 2007-04-12 21:32:57 0 d-------- C:\Program Files\Wal-Mart Music Downloads Store 2007-04-09 17:15:05 0 d-------- C:\Program Files\Common Files\i4j_jres 2007-04-09 16:59:51 73216 --a------ C:\WINDOWS\ST6UNST.EXE <Not Verified; Microsoft Corporation; Microsoft® Visual Basic for Windows> -- Registry Dump --------------------------------------------------------------- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects] {02478D38-C3F9-4EFB-9B51-7695ECA05670} C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx {53707962-6F74-2D53-2644-206D7942484F} C:\Program Files\Spybot - Search & Destroy\SDHelper.dll {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run] "avast!"="C:\\PROGRA~1\\ALWILS~1\\Avast4\\ashDisp.exe" "SmartDefrag"="\"C:\\Program Files\\IObit\\IObit SmartDefrag\\IObit SmartDefrag.exe\" /startup" "SunJavaUpdateSched"="\"C:\\Program Files\\Java\\jre1.6.0_01\\bin\\jusched.exe\"" "WinPatrol"="C:\\Program Files\\BillP Studios\\WinPatrol\\winpatrol.exe" [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run] "ATI Remote Control"="C:\\Program Files\\ATI Multimedia\\RemCtrl\\ATIX10.exe" "SpybotSD TeaTimer"="C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe" [HKEY_USERS\.default\software\microsoft\windows\currentversion\run] "MySpaceIM"="C:\\Program Files\\MySpace\\IM\\MySpaceIM.exe" HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa Authentication Packages REG_MULTI_SZ msv1_0\0\0 Security Packages REG_MULTI_SZ kerberos\0msv1_0\0schannel\0wdigest\0\0 Notification Packages REG_MULTI_SZ scecli\0\0 [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] HTTPFilter REG_MULTI_SZ HTTPFilter\0\0 LocalService REG_MULTI_SZ Alerter\0WebClient\0LmHosts\0RemoteRegistry\0upnphost\0SSDPSRV\0\0 NetworkService REG_MULTI_SZ DnsCache\0\0 DcomLaunch REG_MULTI_SZ DcomLaunch\0TermService\0\0 rpcss REG_MULTI_SZ RpcSs\0\0 imgsvc REG_MULTI_SZ StiSvc\0\0 termsvcs REG_MULTI_SZ TermService\0\0 WudfServiceGroup REG_MULTI_SZ WUDFSvc\0\0 -- End of Deckard's System Scanner: finished at 2007-05-25 at 17:18:19 ---------

Rahina View Member Profile	May 27 2007, 01:48 PM Post #34
Security Helper Group: HJT Team Posts: 681 Joined: 6-September 06 From: Finland Member No.: 83,926	Things Look Good. Please Run Panda Active Scan One more time And let me know the results and how you system is acting now -------------------- [ Antivirus ] [ Firewall ] [ Spywareblaster ] [ Malwarebytes Anti-Malware ] [ Windows update ] [ Firefox ] [ WinPatrol ] [ ATF Cleaner ] If i have helped you, donate to help me continue helping others.

IowaGuy View Member Profile	May 28 2007, 12:12 PM Post #35
Member Group: Members Posts: 19 Joined: 11-May 07 From: Iowa Member No.: 130,319	My system seems to be ad and virus free, but at time some programs seem to take a while to open and a few freeze on me. Probably nothing to do with adware, but thought I'd throw that out there. Here is the report: Incident Status Location Spyware:Cookie/Casalemedia Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.casalemedia.com/] Spyware:Cookie/RealMedia Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.realmedia.com/] Spyware:Cookie/Com.com Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.com.com/] Spyware:Cookie/Go Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.go.com/] Spyware:Cookie/Xiti Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.xiti.com/] Spyware:Cookie/YieldManager Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[ad.yieldmanager.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.bs.serving-sys.com/] Spyware:Cookie/Serving-sys Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.serving-sys.com/] Spyware:Cookie/onestat.com Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[stat.onestat.com/] Spyware:Cookie/Statcounter Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.statcounter.com/] Spyware:Cookie/Reliablestats Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[stats1.reliablestats.com/] Spyware:Cookie/Winantivirus Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[www.winantiviruspro.com/] Spyware:Cookie/bravenetA Not disinfected C:\Documents and Settings\Rob Heidemann\Application Data\Mozilla\Firefox\Profiles\tdbacoaj.default\cookies.txt[.bravenet.com/] Potentially unwanted tool:Application/NirCmd.A Not disinfected C:\Documents and Settings\Rob Heidemann\Desktop\ComboFix.exe[ComboFixT\nircmd.exe]

Rahina View Member Profile	May 28 2007, 12:50 PM Post #36
Security Helper Group: HJT Team Posts: 681 Joined: 6-September 06 From: Finland Member No.: 83,926	Looks good. You can remove cookies using ATF-Cleaner regulary. Now that you are clean, please follow these simple steps in order to keep your computer clean and secure: Disable and Enable System Restore. If you are using Windows ME or XP then you should disable and re-enable system restore to make sure there are no infected files found in a restore point. You can find instructions on how to enable and reenable system restore here: Managing Windows Millenium System Restore Windows XP System Restore Guide Reenable system restore with instructions from tutorial above Make your Internet Explorer more secure - This can be done by following these simple instructions: From within Internet Explorer click on the Tools menu and then click on Options. Click once on the Security tab Click once on the Internet icon so it becomes highlighted. Click once on the Custom Level button. Change the Download signed ActiveX controls to Prompt Change the Download unsigned ActiveX controls to Disable Change the Initialize and script ActiveX controls not marked as safe to Disable Change the Installation of desktop items to Prompt Change the Launching programs and files in an IFRAME to Prompt Change the Navigate sub-frames across different domains to Prompt When all these settings have been made, click on the OK button. If it prompts you as to whether or not you want to save the settings, press the Yes button. Next press the Apply button and then the OK to exit the Internet Properties page. Use an AntiVirus Software - It is very important that your computer has an anti-virus software running on your machine. This alone can save you a lot of trouble with malware in the future. See this link for a listing of some online & their stand-alone antivirus programs: Virus, Spyware, and Malware Protection and Removal Resources Update your AntiVirus Software - It is imperitive that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out. Use a Firewall - I can not stress how important it is that you use a Firewall on your computer. Without a firewall your computer is succeptible to being hacked and taken over. I am very serious about this and see it happen almost every day with my clients. Simply using a Firewall in its default configuration can lower your risk greatly. For a tutorial on Firewalls and a listing of some available ones see the link below: Understanding and Using Firewalls Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates. Install Spybot - Search and Destroy - Install and download Spybot - Search and Destroy with its TeaTimer option. This will provide realtime spyware & hijacker protection on your computer alongside your virus protection. You should also scan your computer with program on a regular basis just as you would an antivirus software. A tutorial on installing & using this product can be found here: Using Spybot - Search & Destroy to remove Spyware , Malware, and Hijackers Install AVG Anti-Spyware - Install and download AVG Anti-Spyware. ou should also scan your computer with program on a regular basis just as you would an antivirus software in conjunction with Spybot. A tutorial on installing & using this product can be found here: Using AVG Anti-Spyware to remove Spyware, Malware, & Hijackers from Your Computer Install SpywareBlaster - SpywareBlaster will added a large list of programs and sites into your Internet Explorer settings that will protect you from running and downloading known malicious programs. A tutorial on installing & using this product can be found here: Using SpywareBlaster to protect your computer from Spyware and Malware Update all these programs regularly - Make sure you update all the programs I have listed regularly. Without regular updates you WILL NOT be protected when new malicious programs are released. Follow this list and your potential for being infected again will reduce dramatically. here are some additional utilities that will enhance your safety IE/Spyad <= IE/Spyad places over 4000 websites and domains in the IE Restricted list which will severely impair attempts to infect your system. It basically prevents any downloads (Cookies etc) from the sites listed, although you will still be able to connect to the sites. MVPS Hosts file <= The MVPS Hosts file replaces your current HOSTS file with one containing well know ad sites etc. Basically, this prevents your coputer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computer Google Toolbar <= Get the free google toolbar to help stop pop up windows. Winpatrol <= Download and install the free version of Winpatrol. a tutorial for this product is located here: Using Winpatrol to protect your computer from malicious software Let me know if you still receive problems -------------------- [ Antivirus ] [ Firewall ] [ Spywareblaster ] [ Malwarebytes Anti-Malware ] [ Windows update ] [ Firefox ] [ WinPatrol ] [ ATF Cleaner ] If i have helped you, donate to help me continue helping others.

Rahina View Member Profile	Jun 2 2007, 07:16 AM Post #37
Security Helper Group: HJT Team Posts: 681 Joined: 6-September 06 From: Finland Member No.: 83,926	This Issue Seems to Be Resolved, i'm glad i was able to help This topic will be closed now, if you nead it re-opened contact me via Private message. -------------------- [ Antivirus ] [ Firewall ] [ Spywareblaster ] [ Malwarebytes Anti-Malware ] [ Windows update ] [ Firefox ] [ WinPatrol ] [ ATF Cleaner ] If i have helped you, donate to help me continue helping others.

« Next Oldest · HijackThis Logs and Virus/Trojan/Spyware/Malware Removal · Next Newest »

3 Pages

< 1 2 3

1 User(s) are reading this topic (1 Guests and 0 Anonymous Users)

0 Members:

Display Mode: Standard · Switch to: Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Lo-Fi Version

Time is now: 21st November 2009 - 11:52 AM

Advertise \| About Us \| Terms of Use \| Privacy Policy \| Contact Us \| Site Map \| Chat \| Tutorials \| Uninstall List
Discussion Forums \| The Computer Glossary \| Resources \| RSS Feeds \| Startups \| The File Database \| Virus Removal Guides