4,383 Posted Topics
 | Can you disable spywareguard, reboot & post another log please. I want to see if anything else shows in the log. |
| | Hi. First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. If the site is down, go [url=http://www.computercops.biz/downloads-file-328.html][u]here.[/u][/url] Remove the old version by opening the program, going to config\misc tools, then uninstall & exit. You then have to delete …  |
| | [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a check in the box to the left of the following entries & click [color=red]'fix checked':[/color] R3 - Default URLSearchHook is missing O2 - BHO: MyWay Search Assistant BHO - {04079851-5845-4dea-848C-3ECD647AA554} - C:\Program Files\MyWay\SrchAstt\1.bin\MYSRCHAS.DLL O2 - … |
| | Remove all entries with *(no file)* after it with hijackthis. Flush the XP system Restore Points. Go to Start>Run and type msconfig Press enter. When msconfig opens, click the Launch System Restore Button. On the next page, click the System Restore Settings Link on the left. Check the box labeled … |
| | Hi. First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. If the site is down, go [url=http://www.computercops.biz/downloads-file-328.html][u]here.[/u][/url] Remove the old version by opening the program, going to config\misc tools, then uninstall & exit. You then have to delete … |
| | Hi. First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. If the site is down, go [url=http://www.computercops.biz/downloads-file-328.html][u]here.[/u][/url] Remove the old version by deleting the file manually. Unzip the new version into the hijackthis folder. [b]Reboot into safe mode[/b] … |
| | [b]Download [color=blue]HijackThis[/color] from [url=http://www.computercops.biz/downloads-file-328.html][u]here[/u][/url][/b] & unzip it into it's own, permanent folder, [color=red](Not a temporary folder or the desktop (in a folder on the desktop is fine) & not directly on your hard drive)[/color]. If you have anything disabled in MsConfig, please re-enable it/them. Start HJT & with all browser … |
 | Good one karki :). Nice to see members fix there own problems :cheesy: |
| | [b]Download & instal [color=blue]Adaware[/color] from [url=http://www.computercops.biz/downloads-file-292.html][u]here[/u][/url][/b] & [color=red]update[/color] it before scanning. In settings under 'scanning,' have it set to 'scan within archives,' 'scan active processes,' 'scan registry,' 'deepscan registry' 'scan my IE Favourites for banned URL's,' 'scan my host's file.' In 'tweaks' under 'scanning engine' set it to 'unload recognised … |
| | Hi. First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. If the site is down, go [url=http://www.computercops.biz/downloads-file-328.html][u]here.[/u][/url] Remove the old version by deleting the file manually. Unzip the new version into the hijackthis folder. [b]Download & instal [color=blue]Adaware[/color] … |
| | Hi. First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. If the site is down, go [url=http://www.computercops.biz/downloads-file-328.html][u]here.[/u][/url] Remove the old version by deleting the file manually. Unzip the new version into the hijackthis folder. When done [b]close all … |
| | [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a check in the box to the left of the following entries & click [color=red]'fix checked':[/color] O9 - Extra button: D.S.Lite - {F8475519-8412-4D40-A46E-692D9D04DF7F} - C:\DOCUME~1\KINDAI~1\LOCALS~1\Temp\Rar$EX01.555\DSLite2\DSLite.exe (file missing) O9 - Extra 'Tools' menuitem: &D.S.Lite - {F8475519-8412-4D40-A46E-692D9D04DF7F} - … |
| | [b]Do NOT delete the rundll.exe file.[/b] It is a legitimate file which only exists in Windows 95/98/ME. [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a check in the box to the left of the following entries & click [color=red]'fix checked':[/color] R1 - HKCU\Software\Microsoft\Internet … |
| | [b]Go [url=http://housecall.trendmicro.com/][u]here[/u][/url] for an on-line scan & set it to autoclean for you.[/b] [b]Try [URL=http://www.pandasoftware.com/activescan/com/activescan_principal.htm][u]this[/u][/URL] scan as well.[/b] |
| | Re: hijack log help Hi. First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. If the site is down, go [url=http://www.computercops.biz/downloads-file-328.html][u]here.[/u][/url] Remove the old version by deleting the file manually. Unzip the new version into the hijackthis folder. Click My Computer, then … |
| | Have merged your two threads. Check the logs from other members if you are not sure of what the entire log should look like. Make sure that hijackthis is version 1.98.2 & post the log here. Do the following first; [b]Download & instal [color=blue]Adaware[/color] from [url=http://www.computercops.biz/downloads-file-292.html][u]here[/u][/url][/b] & [color=red]update[/color] it before … |
| | [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a check in the box to the left of the following entries & click [color=red]'fix checked':[/color] R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = [url]http://websearch.drsnsrch.com/sidesearch.cgi?id=[/url] R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = [url]http://websearch.drsnsrch.com/sidesearch.cgi?id=[/url] R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = … |
| | Tell sweet thang to first of all click Start>Settings>Control Panel>Add or Remove Programs and uninstall 'Window Search', 'Window Searching', 'Lop.com', 'LOP SEARCH', 'Browser Enhancer', or 'Ultimate Browser Enhancer' if listed. You may be given a code to insert, do so and reboot when done. If not listed there, run this … |
| | [b]Download [color=blue]CWShredder[/color] from [url=http://www.computercops.biz/zx/phoenix22/cws.zip][u]here[/u][/url] & run it.[/b] Select the [color=red]fix[/color] button & it will fix everything related to CoolWebSearch that is stored in it's database. Close [b]ALL[/b] windows, including Iinternet Explorer, before running CWShredder. [color=red]Reboot.[/color] To help prevent this from happening again, install the patches for the vulnerabilities that this … |
| | Try uninstalling it, then reinstall it again. Or try updating it on-line. |
| | [b]Reboot into safe mode[/b] following the instructions [url=http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406][u]here[/u][/url] & [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a check in the box to the left of the following entries & click [color=red]'fix checked':[/color] R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = [url]http://prosearching.com/passthrough...tp://yahoo.com/[/url] R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant … |
| | Anything with [b](no file)[/b] after it can be fixed. Click Start>Settings>Control Panel>Add or Remove Programs and uninstall 'Window Search', 'Window Searching', 'Lop.com', 'LOP SEARCH', 'Browser Enhancer', or 'Ultimate Browser Enhancer' if listed. You may be given a code to insert, do so and reboot when done. If not listed there, …  |
| | Uninstall Webhancer from add\remove programs first please & that should remove those entries from the 010 section.  |
| | Hi. First of all you need to update hijackthis to version 1.98.1. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. Remove 1.97 from the folder it is in & replace it with 1.98.1. Uninstall messenger plus as it comes with LOP. It can be re-installed without the sponsor. … |
| | [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a check in the box to the left of the following entries & click [color=red]'fix checked':[/color] O2 - BHO: (no name) - {00000762-3965-4A1A-98CE-3D4BF457D4C8 - (no file) O2 - BHO: (no name) - {04079851-5845-4dea-848C-3ECD647AA - (no file) … |
| | [b]Unzip HJT into it's own permanent folder[/b] before doing anything in order for it to create backups. [color=red](Not a temporary folder or directly on the desktop (in a folder on the desktop is fine) & not directly on your hard drive).[/color] [b]Close all (browser) windows & rescan with hijackthis.[/b] When … |
| | Try deleting im64.dll manually. Try the removal instructions given [url=http://www.pestpatrol.com/PestInfo/F/FavoriteMan.asp][u]here.[/u][/url] |
 | [b]Run CWShredder.[/b] Select the [color=red]fix[/color] button & it will fix everything related to CoolWebSearch that is stored in it's database. Close [b]ALL[/b] windows, including Iinternet Explorer, before running CWShredder. [color=red]Reboot.[/color] To help prevent this from happening again, install the patches for the vulnerabilities that this hijacker exploits by going [b][url=http://windowsupdate.microsoft.com/][u]here[/u][/url][/b] … |
| | [QUOTE=sandra]Hello, I am sandra please help me! my pc is affected by virus and i do not know wat to do? I have nortan, Avg, Spy ware detector and some more installed in my pc but every thing on vain? wat could be the probable problem? is it in my … |
| | Once you run Adaware, reboot your computer (important) & post a fresh log after that. |
| | Re: Spyware problem Have split your post out to it's own thread. Please do not piggy back other user's threads. You have a lot more there than bridge.dll. Please do the following; First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. … |
| | Hi. To start with please do the following; [b]Download & instal [color=blue]Adaware[/color] from [url=http://www.computercops.biz/downloads-file-292.html][u]here[/u][/url][/b] & [color=red]update[/color] it before scanning. In settings under 'scanning,' have it set to 'scan within archives,' 'scan active processes,' 'scan registry,' 'deepscan registry' 'scan my IE Favourites for banned URL's,' 'scan my host's file.' In 'tweaks' … |
| | [b]Download & instal [color=blue]Adaware[/color] from [url=http://www.computercops.biz/downloads-file-292.html][u]here[/u][/url][/b] & [color=red]update[/color] it before scanning. In settings under 'scanning,' have it set to 'scan within archives,' 'scan active processes,' 'scan registry,' 'deepscan registry' 'scan my IE Favourites for banned URL's,' 'scan my host's file.' In 'tweaks' under 'scanning engine' set it to 'unload recognised … |
| | Re: #37049 Hjacker Hi. First of all you need to update hijackthis to version 1.98.2. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. If the site is down, go [url=http://www.computercops.biz/downloads-file-328.html][u]here.[/u][/url] Remove the old version by deleting the file manually. Unzip the new version into the hijackthis folder. Click My Computer, then … |
| | [url]http://securityresponse.symantec.com/avcenter/venc/data/w32.gaobot.baj.html#recommendations[/url] [url]http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_AGOBOT.TJ[/url] [url]http://www.sophos.com/virusinfo/analyses/w32agobotit.html[/url] [url]http://www.sophos.com/virusinfo/analyses/w32agobothx.html[/url] |
| | Hi. First of all you need to update hijackthis to version 1.98.1 Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. Remove 1.97 from the folder it is in & replace it with 1.98.1. [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a … |
| | Hi there :) . Can you please do the following; [b]Download & instal [color=blue]Adaware[/color] from [url=http://www.computercops.biz/downloads-file-292.html][u]here[/u][/url][/b] & [color=red]update[/color] it before scanning. In settings under 'scanning,' have it set to 'scan within archives,' 'scan active processes,' 'scan registry,' 'deepscan registry' 'scan my IE Favourites for banned URL's,' 'scan my host's file.' … |
| | Fix those that magic27 said to, then open Task Manager & end process on the following; [b]WinKA.exe[/b] Then delete this folder manually. C:\Program Files\[b]WindUpdates[/b] [b]Close all (browser) windows & rescan with hijackthis.[/b] When the scan is finished place a check in the box to the left of the following entries … |
| | Seeing as you have Adaware installed, get the VX2 Cleaner plug-in for Adaware [url=http://updates.ls-servers.com/plvx2cleaner.exe]here.[/url] Run the plug-in & if infected have it clean the system & re-run Adaware. You could be infected with look2me because of this entry; O16 - DPF: {DDFFA75A-E81D-4454-89FC-B9FD0631E726} - [url]http://www.bundleware.com/activeX/DS3/DS3.cab[/url] Then I will leave you in … |
| | Hi. First of all you need to update hijackthis to version 1.98. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. Remove 1.97 from the folder it is in & replace it with 1.98. Could you click Start>Settings>Control Panel>Add or Remove Programs and uninstall 'Window Search', 'Window Searching', 'Lop.com', … |
| | I am off to bed now so do not have the time to go through it, but if you go to [url=http://forums.techguy.org/showpost.php?p=1749396&postcount=2][u]this[/u][/url] thread, it gives a full explanation on how to get rid of this hijacker when about:buster does not work. It is a long, manual process!! |
| | Hi. If you have run updated Adaware & spybot, please do the following; [b]Download [color=blue]HijackThis[/color] from [url=http://www.computercops.biz/downloads-file-328.html][u]here[/u][/url][/b] & unzip it into it's own, permanent folder, [color=red](Not a temporary folder or the desktop (in a folder on the desktop is fine) & not directly on your hard drive)[/color]. If you have … |
 | You got the peper trojan. Once you run the following tool you may want to post the entire log. You have other stuff that I can see that needs to be removed. Clear the contents of the following folder in safe mode; C:\docume~1\owner\locals~1\[b]temp[/b] In order to view these files you … |
 | Re: Bridge.dll [QUOTE=QuigleyCan]The bridge.dll error keeps popping up. So, I ran hijackthis and have no idea what to delete, if anything. What shall I do?[/QUOTE] Did you read this thread? Go to this link that alc6379 provided. [url]http://www.daniweb.com/techtalkforums/thread7370.html[/url] |
| | Check this thread; [url]http://www.daniweb.com/techtalkforums/showthread.php?t=6968[/url] |
| | Hi. First of all you need to update hijackthis to version 1.98.1. Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. Remove 1.97 from the folder it is in & replace it with 1.98.1. Cannot see anything there that can cause it. Have you removed anything from the log … |
| | [b]Download & instal [color=blue]Adaware[/color] from [url=http://www.computercops.biz/downloads-file-292.html][u]here[/u][/url][/b] & [color=red]update[/color] it before scanning. In settings under 'scanning,' have it set to 'scan within archives,' 'scan active processes,' 'scan registry,' 'deepscan registry' 'scan my IE Favourites for banned URL's,' 'scan my host's file.' In 'tweaks' under 'scanning engine' set it to 'unload recognised … |
| | Hi. First of all you need to update hijackthis to version 1.98.1 Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. Remove 1.97 from the folder it is in & replace it with 1.98.1. Download About:buster from [url]http://malwarebytes.biz/AboutBuster.zip[/url] and unzip it to your desktop. [b]Do not run yet.[/b] [b]Please … |
| | Hi. First of all you need to update hijackthis to version 1.98.1 Run hijackthis & go to *Config\Misc Tools\Check for update on-line*. Remove 1.97 from the folder it is in & replace it with 1.98.1. [b]Unzip HJT into it's own permanent folder[/b] before doing anything in order for it to … |
| | XP needs a minimum of 256 RAM to operate normally. Buy more RAM :) . [b]Unzip HJT into it's own permanent folder[/b] before doing anything in order for it to create backups. [color=red](Not a temporary folder or directly on the desktop (in a folder on the desktop is fine) & … |
The End.