Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hijackthis Log:please Help Diagnose


  • Please log in to reply
1 reply to this topic

#1 Katrina

Katrina

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 06 January 2006 - 11:25 AM

Logfile of HijackThis v1.99.1
Scan saved at 10:07:16 AM, on 1/6/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\Ati2evxx.exe
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
C:\Program Files\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\HP\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\ntfr32.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\WINDOWS\System32\HPZipm12.exe
C:\WINDOWS\system32\sdkfx32.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Katrina\Local Settings\Temporary Internet Files\Content.IE5\85MRGPYV\HijackThis[1]\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system32\qprdk.dll/sp.html#12047%resultposition.net
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system32\qprdk.dll/sp.html#12047%resultposition.net
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = res://C:\WINDOWS\system32\qprdk.dll/sp.html#12047%resultposition.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = res://C:\WINDOWS\system32\qprdk.dll/sp.html#12047%resultposition.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = res://C:\WINDOWS\system32\qprdk.dll/sp.html#12047%resultposition.net
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system32\qprdk.dll/sp.html#12047%resultposition.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = res://C:\WINDOWS\system32\qprdk.dll/sp.html#12047%resultposition.net
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://www.google.com/keyword/%s
R3 - Default URLSearchHook is missing
O2 - BHO: Class - {033595F5-5906-95DE-EEAF-050FE90714A8} - blank (file missing)
O2 - BHO: Class - {059571E8-E486-1B82-E2B1-5E7F1A56B1E8} - blank (file missing)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: Class - {0791E7B0-E5F1-AF1A-94EF-3B83C99653C4} - blank (file missing)
O2 - BHO: Class - {09352FEE-57D8-D24B-1C3A-C99062F9B4C8} - blank (file missing)
O2 - BHO: Class - {0B540EFA-2AC6-5866-AF53-D93A51569CDC} - blank (file missing)
O2 - BHO: Class - {11710E13-4831-10E3-7E06-570CF3083B83} - blank (file missing)
O2 - BHO: Class - {11CA0DB0-AEB2-18AF-A270-52A6A4851766} - blank (file missing)
O2 - BHO: Class - {14267C3A-E5BD-19B4-6600-CE2B4D4BF833} - blank (file missing)
O2 - BHO: Class - {146C42AD-EBB6-43E5-C5BA-DB26064A7470} - blank (file missing)
O2 - BHO: Class - {18A2085F-FEEA-41D4-A5B5-E595B830B77D} - blank (file missing)
O2 - BHO: Class - {18B77FEE-74BD-0EE1-8D2A-3A47B85E6B36} - blank (file missing)
O2 - BHO: Class - {1BDA716B-1DE3-DD88-C19F-2F9E8A2588DF} - blank (file missing)
O2 - BHO: Class - {24FC655B-81EC-FEB9-56AA-B6D3DD9EFE0F} - blank (file missing)
O2 - BHO: Class - {2B53A317-958D-46F6-0C2E-7F2716C713AF} - blank (file missing)
O2 - BHO: Class - {2CE872DB-4B29-A677-44B3-9C89DFF8D1BC} - blank (file missing)
O2 - BHO: Class - {35D77D78-8BE1-BF81-A036-49E3872CDC68} - blank (file missing)
O2 - BHO: Class - {36A51990-DC1B-F1C4-0E14-567C09368C42} - blank (file missing)
O2 - BHO: Class - {3741C5ED-4EDB-B11A-EFEE-169A682E180C} - blank (file missing)
O2 - BHO: Class - {3ADCBCDB-9ADF-83CA-DC5B-20F8EDE2149D} - blank (file missing)
O2 - BHO: Class - {43DCBA96-1EB4-0E16-9598-2CC35C216F9B} - blank (file missing)
O2 - BHO: Class - {4507A8EC-5346-58CC-214A-5C3941F3BB55} - blank (file missing)
O2 - BHO: Class - {45933AF5-2854-44A7-0F1E-B3DD50ACFD0C} - blank (file missing)
O2 - BHO: Class - {4CDA0B6E-9875-A175-8039-A5130A734291} - blank (file missing)
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Class - {53EC0540-02A9-2B3E-0DB3-0FBF8C8D1BED} - blank (file missing)
O2 - BHO: Class - {570908A4-FE60-6ABF-B123-69E2CEC6741D} - C:\WINDOWS\mslg32.dll
O2 - BHO: Class - {5AADBEE3-89AA-2B28-5FA2-418CA5491E4C} - blank (file missing)
O2 - BHO: Class - {5AF6F90A-F3E8-15B3-4B30-88AF19DE461C} - blank (file missing)
O2 - BHO: Class - {5C145150-DD6C-53BA-84AE-224D696D255B} - C:\WINDOWS\ntfr32.dll
O2 - BHO: Class - {5F01EA97-8CAF-C431-C7E3-98529F1ECE5B} - blank (file missing)
O2 - BHO: Class - {608BFC8E-0413-A3AF-D9F1-1B80CAF6FA40} - blank (file missing)
O2 - BHO: Class - {61CB9A96-52A6-77AC-2D80-908A69B10150} - blank (file missing)
O2 - BHO: Class - {69B27564-7681-CCA5-BB56-E910FC6B4E14} - blank (file missing)
O2 - BHO: Class - {6CA0E131-B7AC-A1C6-6851-F14261B06791} - blank (file missing)
O2 - BHO: Class - {6D8858F8-E2E1-E1E9-A0FD-69AEB9095940} - blank (file missing)
O2 - BHO: Class - {6EF1BD60-41F7-9C8A-32E2-8F5740459605} - blank (file missing)
O2 - BHO: Class - {717A1A49-72D7-C9BA-1F99-F5172B3EA227} - blank (file missing)
O2 - BHO: Class - {793213B8-A74C-2C0F-94D1-DD4AC65FBE45} - blank (file missing)
O2 - BHO: Class - {7D6CAEB6-CBB4-C91E-E42A-7AEBC1821D29} - blank (file missing)
O2 - BHO: Class - {87716C8D-8534-BE5D-802D-4FD4A93168DF} - blank (file missing)
O2 - BHO: Class - {897532FD-3431-EE5A-DFBF-56BF6B1AF46D} - blank (file missing)
O2 - BHO: Class - {8BF76349-7E35-6FB0-D058-33CA476291F4} - blank (file missing)
O2 - BHO: Class - {9D9EE5A8-1F27-BCB9-3DE1-A22A6A2EFFA2} - blank (file missing)
O2 - BHO: Merriam-Webster - {9E1128F1-53FA-11d5-8490-0048548030CA} - C:\WINDOWS\Downloaded Program Files\m-wtoolbar.dll
O2 - BHO: Class - {A3952B4F-6785-CB92-AF25-B6F52EFA13B8} - blank (file missing)
O2 - BHO: Class - {A3B76243-CA31-6CA1-2597-6171C119F1D1} - blank (file missing)
O2 - BHO: Class - {AC986773-F38B-CC09-735D-BEF0286C6671} - blank (file missing)
O2 - BHO: Class - {AE65210B-2870-3EC4-9658-261BE1153BB2} - blank (file missing)
O2 - BHO: Class - {AF2504CE-9FD2-4BFE-D073-D844B4100716} - blank (file missing)
O2 - BHO: Class - {B6007EAD-B9FB-819A-9125-AF6A6A50A711} - blank (file missing)
O2 - BHO: Class - {BA99F0F7-81BA-A3D0-11AE-7FAE337FF72F} - blank (file missing)
O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O2 - BHO: Class - {C6A2BE0D-6BCC-F46E-3C8D-7F1BAB095C8F} - blank (file missing)
O2 - BHO: Class - {C8C966DD-1537-9AB7-2EF4-DFEF1A1C8D24} - C:\WINDOWS\system32\mfcqm.dll
O2 - BHO: Class - {C91C6A50-4E18-389A-6EEB-F0FC5AC3AC38} - blank (file missing)
O2 - BHO: Class - {CB3F21C8-A49C-F792-3D1A-CEBA6486FD54} - blank (file missing)
O2 - BHO: Class - {CDBCDF8D-F3C6-EE7D-C673-A31C7CDFB1F3} - blank (file missing)
O2 - BHO: Class - {CDFCE929-374B-F05A-A515-7D6A2D5388C7} - blank (file missing)
O2 - BHO: Class - {CF5405A2-4593-3340-58C9-D8197B57070C} - blank (file missing)
O2 - BHO: Class - {D741F288-69CD-DC65-04EF-24D24A69D9CD} - blank (file missing)
O2 - BHO: Class - {DF7B4507-13C3-06E8-197B-D732093994CA} - blank (file missing)
O2 - BHO: Class - {E063178A-F790-ECDA-88CB-D5A172D55899} - blank (file missing)
O2 - BHO: Class - {E28230B4-594D-561A-30B2-B04D83DDAD32} - blank (file missing)
O2 - BHO: Class - {E4619879-B07F-005E-F203-9FEE8EA8D4A8} - blank (file missing)
O2 - BHO: Class - {E8A3A3D2-81BE-F4E1-1930-22B1DD3D9C09} - blank (file missing)
O2 - BHO: Class - {E8F8DF77-A372-CB3E-F005-44B07E1086DE} - blank (file missing)
O2 - BHO: Class - {E93E5DF9-7154-6D62-FCAA-EFF62B854878} - blank (file missing)
O2 - BHO: Class - {EA708A76-AA37-90B9-0FCB-1DFCF447ADBE} - blank (file missing)
O2 - BHO: Class - {EB3F1F3A-312D-1F0B-BE12-33935E41A208} - blank (file missing)
O2 - BHO: Class - {EDD6C5EA-5F3E-7B1D-A3D0-9E3A169E6444} - blank (file missing)
O2 - BHO: Class - {F1EC0573-E057-961B-FD45-78388DF47CE4} - blank (file missing)
O2 - BHO: Class - {F99291D1-97B4-FD07-A505-F6B045949A94} - blank (file missing)
O2 - BHO: Class - {FBF04123-7B6C-5A17-E393-11BC902B1B9B} - blank (file missing)
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Merriam-Webster - {9E1128F1-53FA-11D5-8490-0048548030CA} - C:\WINDOWS\Downloaded Program Files\m-wtoolbar.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe
O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ntfr32.exe] C:\WINDOWS\ntfr32.exe
O4 - HKLM\..\RunOnce: [sdkfx32.exe] C:\WINDOWS\system32\sdkfx32.exe
O4 - HKCU\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: KTAB PC.lnk = C:\Program Files\Common Files\KTAB PC\TrueWeather.exe
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
O8 - Extra context menu item: &Add animation to IncrediMail Style Box - C:\PROGRA~1\INCRED~1\bin\resources\WebMenuImg.htm
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: Collegiate &Dictionary - C:\Program files\Merriam-Webster Toolbar\dictionary.htm
O8 - Extra context menu item: Collegiate &Thesaurus - C:\Program files\Merriam-Webster Toolbar\thesaurus.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office10\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Merriam-Webster - {BAC53F31-6090-11d5-8497-0048548030CA} - C:\WINDOWS\Downloaded Program Files\m-wtoolbar.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra button: Support - {44B33957-091D-45DA-9E91-CD5224B6BA17} - C:\Program Files\Internet Explorer\SIGNUP\Presario.htm (HKCU)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O14 - IERESET.INF: START_PAGE_URL=http://store.presario.net/scripts/redirectors/presario/storeredir2.dll?s=consumerfav&c=3c01&lc=0409
O16 - DPF: Yahoo! MahJong Solitaire - http://download.games.yahoo.com/games/clients/y/mjst4_x.cab
O16 - DPF: {01113300-3E00-11D2-8470-0060089874ED} (Support.com Configuration Class) - http://usercenter.cox.net/rsuite/sdccommon.../cx_tgctlcm.jsp
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} (LSSupCtl Class) - http://www.symantec.com/techsupp/asa/LSSupCtl.cab
O16 - DPF: {200B3EE9-7242-4EFD-B1E4-D97EE825BA53} (VerifyGMN Class) - http://h20270.www2.hp.com/ediags/gmn/insta...staller_gmn.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdat...b?1126379380848
O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004061...all/xscan53.cab
O16 - DPF: {928626A3-6B98-11CF-90B4-00AA00A4011F} (SurroundVideoCtrl Object) - http://encarta.msn.com/encnet/external/MSSurVid.cab
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O16 - DPF: {9AA73F41-EC64-489E-9A73-9CD52E528BC4} (ZoneAxRcMgr Class) - http://cdn2.zone.msn.com/binframework/v10/...gr.cab31267.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - http://www.symantec.com/techsupp/asa/SymAData.cab
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} (TikGames Online Control) - http://download.games.yahoo.com/games/web_...e/gpcontrol.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://zone.msn.com/bingame/dim2/default/popcaploader_v6.cab
O16 - DPF: {F5C90925-ABBF-4475-88F5-8622B452BA9E} (Compaq System Data Class) - http://www29.compaq.com/falco/SysQuery.cab
O16 - DPF: {F798683C-FE05-436C-B0FF-35B9122E9787} - http://www.m-w.com/tools/toolbar/cabs/m-w.cab
O16 - DPF: {FA3662C3-B8E8-11D6-A667-0010B556D978} (IWinAmpActiveX Class) - http://cdn.digitalcity.com/_media/dalaillama/ampx.cab
O23 - Service: Remote Procedure Call (RPC) Helper ( 11F#`I) - Unknown owner - C:\WINDOWS\system32\javatw32.exe" /s (file missing)
O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Norton AntiVirus Auto Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton AntiVirus\navapsvc.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: SmartFinder Uninstall (SmartFinder_Uninstall) - Unknown owner - C:\Documents and Settings\Katrina\Local Settings\Temporary Internet Files\Content.IE5\4LY7S9QZ\SFUninstaller[1].exe" service (file missing)
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

BC AdBot (Login to Remove)

 


#2 MFDnSC

MFDnSC

    Ret. Director I/T


  • Members
  • 4,310 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 15 January 2006 - 07:47 PM

DownLoad http://www.intermute.com/spysubtract/cwshr...r_download.html
Close all browser windows,UnZip the file, click on the cwshredder.exe then click "Fix"
=================


Go to the link below and download the trial version of SpySweeper:

SpySweeper http://www.webroot.com/consumer/products/s...&rc=4129&ac=tsg

* Click the Free Trial link under "SpySweeper" to download the program.
* Install it. Once the program is installed, it will open.
* It will prompt you to update to the latest definitions, click Yes.
* Once the definitions are installed, click Options on the left side.
* Click the Sweep Options tab.
* Under What to Sweep please put a check next to the following:
o Sweep Memory
o Sweep Registry
o Sweep Cookies
o Sweep All User Accounts
o Enable Direct Disk Sweeping
o Sweep Contents of Compressed Files
o Sweep for Rootkits

o Please UNCHECK Do not Sweep System Restore Folder.

* Click Sweep Now on the left side.
* Click the Start button.
* When it's done scanning, click the Next button.
* Make sure everything has a check next to it, then click the Next button.
* It will remove all of the items found.
* Click Session Log in the upper right corner, copy everything in that window.
* Click the Summary tab and click Finish.
* Paste the contents of the session log you copied into your next reply.
Also post a new Hijack This log.
"Nothing could be finer than to be in South Carolina ............"

Member ASAP




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users