crunchie

[b]This thread is now closed. If you need it reopened, please send a PM to one of our Mods.[/b] [font=Geneva][SIZE=5][color=purple][b]Include the link to the thread and detail why you need it reopened. If this is not your thread please start a New Topic. [/b][/SIZE][/color][/font]

[b]This thread is now closed. If you need it reopened, please send a PM to one of our Mods.[/b] [font=Geneva][SIZE=5][color=purple][b]Include the link to the thread and detail why you need it reopened. If this is not your thread please start a New Topic. [/b][/SIZE][/color][/font]

[b]This thread is now closed. If you need it reopened, please send a PM to one of our Mods.[/b] [font=Geneva][SIZE=5][color=purple][b]Include the link to the thread and detail why you need it reopened. If this is not your thread please start a New Topic. [/b][/SIZE][/color][/font]

[b]This thread is now closed. If you need it reopened, please send a PM to one of our Mods.[/b] [font=Geneva][SIZE=5][color=purple][b]Include the link to the thread and detail why you need it reopened. If this is not your thread please start a New Topic. [/b][/SIZE][/color][/font]

[b]This thread is now closed. If you need it reopened, please send a PM to one of our Mods.[/b] [font=Geneva][SIZE=5][color=purple][b]Include the link to the thread and detail why you need it reopened. If this is not your thread please start a New Topic. [/b][/SIZE][/color][/font]

fragmented_user. Hi and welcome to Daniweb :). First up, I cannot read that 'cos the text is too small :). Please just paste your log in normally on your next post. Secondly, I need the hijackthis log to be done in normal mode as not all items will be listed. …

First of all could you click Start>Settings>Control Panel>Add or Remove Programs and uninstall 'Window Search', 'Window Searching', 'Lop.com', 'LOP SEARCH', 'Browser Enhancer', or 'Ultimate Browser Enhancer' if listed. You may be given a code to insert, do so and reboot when done. If not listed there, run the [color=blue]Lop Remover[/color] …

[b]Download [color=blue]CWShredder[/color] from [url=http://computercops.biz/downloads-file-349.html][u]here[/u][/url] & run it.[/b] Select the [color=red]fix[/color] button & it will fix everything related to CoolWebSearch that is stored in it's database. Close [b]ALL[/b] windows, including Internet Explorer, before running CWShredder. [color=red]Reboot.[/color] To help prevent this from happening again, install the patches for the vulnerabilities that this …

Hi and welcome to Daniweb RPeeteRules. Please follow the below links and repost a new log when you have done all the steps advised. We will then complete the clean up manually. [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url]

A normal log from hijackthis would be better :).

carlos. Hi and welcome to Daniweb forums :). Don't be a stranger :D

You will find that most of that is just normal internet *noise* and also your ISP checking to see if you are online etc. Not necessarily targetting your PC, though a % perhaps is. Zone Alarm is just doing it's job :D.

You should have him remove them all, reboot and post the entire log here after.

Go to System32\dllcache and find notepad.exe Right Click on Notepad.exe and choose copy from the menu. Go back to the System32 folder and right click on an empty space in the window. Choose paste from the menu. This will place a fresh copy of Notepad in your system32 folder. See …

Well done on 1000 posts :D.

I never log out, so never have that problem :). Try clearing out all your cookies and try again.

Claire88. Ordinarily the [b]self-extracting[/b] version of hijackthis will install hijackthis to [b]C:\Program Files\HijackThis,[/b] but somehow your's has managed to install hijackthis into a temporary folder. You will have to create a new folder in a permanent directory (on your desktop is fine) and move hijackthis into it. When done, rescan …

Hi and welcome to Daniweb sammy976. I need you to follow the instructions at the other end of the following link and repost your log. [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url]

Hi and welcome to Daniweb cybohemia. [b]First of all we have to remove Newdotnet,[/b] either from add/remove programs, or by going [url=http://www.newdotnet.com/#remove][u]here[/u][/url] and scrolling down to the uninstall tool. Also remove [b]AdTools Service[/b] if in add/remove. Please go [url=http://virusscan.jotti.org/][u]here[/u][/url] and have these files scanned. C:\WINDOWS\System32\[b]digtizer.exe[/b] C:\WINDOWS\System32\[b]winlog.exe[/b] I have a feeling …

[b]Download & instal [color=blue]Adaware[/color] from [url=http://computercops.biz/downloads-file-292.html][u]here[/u][/url][/b] & [color=red][b]update[/b][/color] it before scanning. In settings under 'scanning,' have it set to 'scan within archives,' 'scan active processes,' 'scan registry,' 'deepscan registry' 'scan my IE Favourites for banned URL's,' 'scan my host's file.' In 'tweaks' under 'scanning engine' set it to 'unload recognised …

berkleegirl. Hi and welcome to Daniweb :). You have a lot going on there, so I will ask that you do the following before we continue :). 1. [b]Download and install [URL=http://www.lavasoftusa.com/software/adaware/][color=blue] Ad-Aware SE,[/color][/URL][/b] keeping the default options. [b]However, some of the settings will need to be changed before your …

techtard, Hi and welcome to the Daniweb forums :). =============== When we're done cleaning off your system, I'd [b]recommend[/b] that you install all the [color=#ff0000][b][i]critical windows updates[/i][/b][/color] available from [b]Microsoft[/b], up to [i]service pack 1[/i]. This will help to make your system more secure and prevent many '[i]problems[/i]' from reoccurring …

Download C(rap)cleaner from [url]http://www.ccleaner.com/[/url] and then boot into safe mode. Run C(rap)cleaner to clear out the trash. Now run Ewido again, still in safe mode. If it still crashes before it finishes, boot back into normal mode and turn off system restore. Go to Start>Run and type msconfig Press enter. …

Try this link; Please download Nailfix from here: [url]http://users.pandora.be/bluepatchy/nailfix.exe[/url] It will self-extract to the desktop, but please do NOT run it yet. Now follow P3-450's instructions from here.

There has been an update to Spybot that will fix the bug it contains regarding the DSO exploit. All those who are running Spybot S&D 1.3 Final can download it [url=http://www.majorgeeks.com/download4392.html]here.[/url]

Smitfraud bat Download the file I have attached by right clicking on it and selecting 'Save As.' Save, then unzip it to your desktop. Reboot into [url=http://www.xtra.co.nz/help/0,,6156-1377929,00.html]Safe Mode[/url] and double click RunThis.Bat. It will do a good cleanup on this. Reboot normally then please post a new HJT log.

Please download the trial version of Ewido Security Suite here: [url]http://www.ewido.net/en/download/[/url] Install it, and update the definitions to the newest files. Do NOT run a scan yet. Please download Nailfix from here: [url]http://users.pandora.be/bluepatchy/nailfix.exe[/url] It will self-extract to the desktop, but please do NOT run it yet. Next, please reboot your …

Matt, You have some entries there that need removing. =============== Let's look for, and delete, any program segments([i]prefetches[/i]) that might be present, and are associated with the '[i]problems[/i]' we're trying to remove from this system. To do this, let's: 1) Click "[b][i]Start | Search[/i][/b]", then search for each of these …

Here is something else to scare you :). Do not worry though, just go through one at a time. You are doing great :D. - Download rkfiles.zip [url]http://skads.org/special/rkfiles.zip[/url] Unzip the contents to a permanent folder. Reboot in Safe mode. Doubleclick rkfiles.bat It will scan for a while, so please be …

Download [url=http://www.downloads.subratam.org/KillBox.zip]Killbox v2.0.0.175[/url] and unzip the file to your Desktop and have it ready to use. - Save all the below files to a text document (notepad) to be used shortly. [b]C:\WINDOWS\System32\param32.dll C:\WINDOWS\System32\guninst.exe C:\WINDOWS\System32\popup_bl.dll C:\WINDOWS\System32\svrhost.exe C:\WINDOWS\System32\systr.dll[/b] [b]Reboot into safe mode[/b] following the instructions [url=http://www.xtra.co.nz/help/0,,6156-1377929,00.html][u]here.[/u][/url] Open the text file you saved …

Download the Stinger from [url]http://vil.nai.com/vil/stinger/[/url] and follow the instructions for it's use.

Please download the trial version of Ewido Security Suite here: [url]http://www.ewido.net/en/download/[/url] Install it, and update the definitions to the newest files. Do NOT run a scan yet. Please download Nailfix from here: [url]http://users.pandora.be/bluepatchy/nailfix.exe[/url] It will self-extract to the desktop, but please do NOT run it yet. Next, please reboot your …

Hi vittic :). Please read this thread. [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url]

Please download the trial version of Ewido Security Suite here: [url]http://www.ewido.net/en/download/[/url] Install it, and update the definitions to the newest files. Do NOT run a scan yet. Please download Nailfix from here: [url]http://users.pandora.be/bluepatchy/nailfix.exe[/url] It will self-extract to the desktop, but please do NOT run it yet. Next, please reboot your …

Dave Crosby, Hi and welcome to the Daniweb forums :). =============== Please visit at least two of the following sites for an online virus scan: BitDefender Free Online Virus Scan [url]http://www.bitdefender.com/scan/licence.php[/url] Make sure you tick [b]AutoClean[/b] under [b]Scan Options.[/b] Panda ActiveScan [url]http://www.pandasoftware.com/activescan/com/activescan_principal.htm[/url] Make sure you tick [b]Disinfect automatically[/b] under [b]Scan …

gee777, Hi and welcome to the Daniweb forums :). =============== The version of Internet Explorer your currently using is out of date, and should be upgraded to the newest version as soon as possible. =============== Go to [url=http://www.trendmicro.com/en/home/us/enterprise.htm]www.trendmicro.com[/url], and then: 1. Click "[b][i]Free Online Scan[/i][/b]". 2. Click "[b][i]Scan now, it's …

[b]Go [url=http://housecall.trendmicro.com/][u]here[/u][/url] to TrendMicro for an on-line scan & set it to autoclean for you. When it completes, post back the full filename of any files that cannot be cleaned or deleted. Try [URL=http://www.pandasoftware.com/activescan/com/activescan_principal.htm][u]this[/u][/URL] scan at Panda as well.[/b] [b]The scan here does not require an active X install, but …

You have things that need to go but hijackthis is in a temp folder. Please move it to a permanent folder, rescan and post another log.

GlueFist, Hi and welcome to the Daniweb forums :). =============== Please visit at least two of the following sites for an online virus scan: BitDefender Free Online Virus Scan [url]http://www.bitdefender.com/scan/licence.php[/url] Make sure you tick [b]AutoClean[/b] under [b]Scan Options.[/b] Panda ActiveScan [url]http://www.pandasoftware.com/activescan/com/activescan_principal.htm[/url] Make sure you tick [b]Disinfect automatically[/b] under [b]Scan Options.[/b] …

Sometimes help does not happen immediately :). Due to the different timezones that we live in, we are not always here when you are :D. I have responded to your thread and your PM.

Looks like you have tried to clean up a few things there already :). Download [url=http://www.downloads.subratam.org/KillBox.zip]Killbox v2.0.0.175[/url] and unzip the file to your Desktop and have it ready to use. - Save all the below files to a text document (notepad) to be used shortly. [b]C:\WINDOWS\System32\param32.dll C:\WINDOWS\System32\guninst.exe C:\WINDOWS\System32\popup_bl.dll C:\WINDOWS\System32\svrhost.exe C:\WINDOWS\System32\systr.dll[/b] …

Urdna, Hi and welcome to the Daniweb forums :). =============== Please visit at least two of the following sites for an online virus scan: BitDefender Free Online Virus Scan [url]http://www.bitdefender.com/scan/licence.php[/url] Make sure you tick [b]AutoClean[/b] under [b]Scan Options.[/b] Panda ActiveScan [url]http://www.pandasoftware.com/activescan/com/activescan_principal.htm[/url] Make sure you tick [b]Disinfect automatically[/b] under [b]Scan Options.[/b] …

Cooper, Hi and welcome to the Daniweb forums :). =============== Please visit at least two of the following sites for an online virus scan: BitDefender Free Online Virus Scan [url]http://www.bitdefender.com/scan/licence.php[/url] Make sure you tick [b]AutoClean[/b] under [b]Scan Options.[/b] Panda ActiveScan [url]http://www.pandasoftware.com/activescan/com/activescan_principal.htm[/url] Make sure you tick [b]Disinfect automatically[/b] under [b]Scan Options.[/b] …

Patriot. Hi and welcome to Daniweb forums :). Please follow the instructions here [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url] and post back with another log.

geryd, Hello! and welcome to the Daniweb forums :). - There are a some item(s) i'm not familar with in your log and cannot get info on. If you recognise any, then just omit them from this fix. =============== We'll need to unload (not uninstall) [b]Intermute's SpySubtract[/b], since it might …

Hi and welcome topias :). Please go to the link below and follow those instructions. Rescan with hijackthis and post another log.

Have merged all your threads. Please reply to this one only & do not start another for this problem :).

I am not seeing anything bad there :).

You have some entries there that need removing. =============== The version of Internet Explorer your currently using is out of date, and should be upgraded to the newest version as soon as possible. =============== Download [color=blue][b]CWShredder 2.15[/b][/color] from [url=http://www.intermute.com/products/cwshredder.html][u]here.[/u][/url] Run it and press the *fix,* not scan and allow it …

You have managed to cut off the bottom half of your hijackthis log. Please rescan with hijackthis and post the entire log :).