Andro1d

Trusted Helpers
  • Content Count

    737
  • Joined

  • Last visited

Everything posted by Andro1d

  1. Hi, Sorry for the delay! Step 1 Please re-open HijackThis and scan. Check the boxes next to all the entries listed below. O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/f...p1.0.0.15-3.cab Now close all windows other than Hijackthis, then click Fix Checked. Close HijackThis. Step 2 Your Java is out of date. Older versions have vulnerabilities that malicious sites can use to infect your system. Please follow these steps to remove older version Java components and update: Download the latest version of Java Runtime Environment (JRE) Version 6 a
  2. I am researching, I will post back ASAP.
  3. Hello and Welcome to BT. I am MoNsTeReNeRgY22 and I will be assisting you with your malware problem today. I see that you are using an outdated version of HijackThis, so the first thing we need to tackle is to get you updated to the newest version of HijackThis. Please download the current version of HijackThis from here. Please be sure to save it to a permanent directory, such as C:\HJT. Delete the old version of HijackThis afterwards. Please post a new HJT log with the version you just downloaded.
  4. Hello and Welcome to BT. I am MoNsTeReNeRgY22 and I will be assisting you with your malware problem today. Step 1 Please re-open HijackThis and scan. Check the boxes next to all the entries listed below. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = O9 - Extra button: Corel Network monitor worker - {66D82A45-C21D-47CA-B6F5-129C057826E6} - (no file) O9 - Extra 'Tools' menuitem: Corel Network monitor worker - {66D82A45-C21D-47CA-B6F5-129C057826E6} - (no file) O15 - Trusted Zone: http://secure.gestrip.com (HKLM) O15 - Trusted Zone: http://update.randhi.com (HKLM) O16 - DPF:
  5. Hello again, What log is that first one you posted? I don't recognise it myself, so any info would be appreciated.
  6. Hello again, Please Right-Click on "My Computer" in the main start menu and click on "Properties" Choose "Device Manager" under "Tasks". Look and let me know if any of the devices have a yellow question mark. If one or more do, let me know which ones.
  7. Hello again, Sorry to hear about your internet, so lets take a different route. Step 1 Right click Here and select Save As to download WinHelp2002's DelDomains.inf. Please save the file somewhere you can find it like on the desktop. To run the inf file, right click on it and select Install. Step 2 Please download ATF Cleaner by Atribune. This program is for XP and Windows 2000 only Double-click ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. If you use Firefox browser Click Firefox at the top and choose: Select All Click the Empty Selected b
  8. Hello again, Step 1 I see you have LimeWire installed on your system. While the program itself is legal, most of the files downloaded with it are not. Also, quite often the files can be infected with viruses, malware, and other undesirable applications. I highly recommend uninstalling LimeWire via Add or Remove Programs, but this program is optional for you if you choose to want to keep it. See HERE for details on P2P file sharing programs. Step 2 Open notepad and copy/paste the text in the quotebox below into it: Save this as CFScript.txt Then drag the CFScript.txt into ComboFix.exe as yo
  9. Hello again, Download ComboFix from Here or Here to your Desktop. Double click combofix.exe and follow the prompts. When finished, it shall produce a log for you. Post that log and a HiJackthis log in your next reply Note: Do not mouseclick combofix's window while its running. That may cause it to stall
  10. Lets next generate a System Health Check Go to your Start Menu and click on "Control Panel". In the Control Panel Window, (for Classic View) Double Click on "Performance Information and Tools" icon. (For Control Panel Home View), click "System and Maintenance" > "Performance Information and Tools" In the Performance Information and Tools Window, under "Tasks". Choose "Advanced Tools" then at the bottom of the list choose "Generate A System Health Report". This will run a check on your system and file a series of reports Do not worry if it take longer then the 60 seconds it says it will tak
  11. Hi Kohu, Step 1 Please re-open HijackThis and scan. Check the boxes next to all the entries listed below. O2 - BHO: (no name) - {B62F5B2F-FB3C-45BC-97BF-9EBE1A61AED4} - C:\WINDOWS\system32\awvtr.dll (file missing) O4 - HKLM\..\Run: [ExploreUpdSched] C:\WINDOWS\system32\twinqmds.exe CHD003 O4 - Startup: PowerReg Scheduler V3.exe O4 - Startup: Think-Adz.lnk = C:\WINDOWS\system32\twinqmds.exe O16 - DPF: {44990200-3C9D-426D-81DF-AAB636FA4345} (Symantec SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Cla
  12. That was just a backup, nothing to worry about. What kinda pop ups are you getting? Also lets dig a little deeper. Download Deckard's System Scanner (DSS) to your Desktop. Close all applications and windows. Double-click on DSS.exe to run it, and follow the prompts. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in your next reply. Extra Note: When running DSS, some firewalls may warn that sigcheck.exe is trying to access the internet - please ensure that you allow sigche
  13. Well we don't really recommend Norton in the malware removal community due to it being a very big resource hog, there I am going to recommend you uninstall it since its outdated as well. Step 1 So, let’s set you up with a FREE and excellent anti-virus program called avast! 4 Home Edition. First go HERE and download avast! 4 Home Edition to your Desktop. Steps for installing avast! 4 Home Edition: Locate the file for installing avast! double-click on the file to launch the installation of avast! Click Next on the avast! Setup window and on the next window with the ReadMe File. Now you will s
  14. Hello again, Well your PC just keeps getting reinfected right after we clean it. First what is your current AV that you are using? From what I can see they like like old 2004 Norton products, is that correct? Also do you have a firewall installed besides the built in Windows one? Please go to Start > Control Panel > Add or Remove Programs and remove the following (if present): Java™ 6 Update 2 Please also post a new HJT log.
  15. Hello again, First, Boot from your Vista installation CD. Select your Vista Install from the list in “Windows Boot Manager” · Microsoft Vista Setup (x86) · Microsoft Vista Setup (x64) Press enter. You will then see “Windows is Loading Files”. Next, the “Language Screen” will come up. Since you have already selected this option when you installed Vista, just click on “Next”. Now you will see the “Vista Installation Screen” DO NOT CHOOSE “Install Now” Instead, towards the bottom left of the window you will see. · “What to know before installing Windows” · “Repair your Computer” Choose and
  16. Whoops, step 3 was a mistake on my part. I forgot to edit my speech Step 1 Please download VundoFix.exe to your desktop (This is a newer version) Double-click VundoFix.exe to run it. Click the Scan for Vundo button. Once it's done scanning, click the Remove Vundo button. You will receive a prompt asking if you want to remove the files, click YES Once you click yes, your desktop will go blank as it starts removing Vundo. When completed, it will prompt that it will reboot your computer, click OK. Please post the contents of C:\vundofix.txt and a new HiJackThis log in a reply to this thread. N
  17. Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.
  18. Hey Chattykat, Step 1 I do not recommend that you have more than one anti virus product installed and running on your computer at a time. The reason for this is that if both products have their automatic (Real-Time) protection switched on, then those products which do not encrypt the virus strings within them can cause other anti virus products to cause "false alarms". It can also lead to a clash as both products fight for access to files which are opened again this is the resident/automatic protection. In general terms, the two programs may conflict and cause: 1) False Alarms: When the anti
  19. Hello again, CLICK THIS TO LINK TO BE SURE YOU CAN VIEW HIDDEN FILES Please go here: The Spy Killer Forum Click on "New Topic" Put your name, e-mail address, and this as the title: "C:\WINDOWS\system32\xxyyywt.dll". Put a link to this Geeks to Go topic in the description box. Then next to the file box, at the bottom, click the browse button, then navigate to this file:C:\WINDOWS\system32\xxyyywt.dll [*]Click Open. [*]Click Post. Thank you!! Let me know when you do this.
  20. No, I just have been seeing that a lot lately in logs and can't seem to find much info about it. Just wanted to make sure taht you added it, not some random program or piece of malware. Can you see if the log is located here? C:\vundofix.txt Also please do the following Download Deckard's System Scanner (DSS) to your Desktop. Close all applications and windows. Double-click on DSS.exe to run it, and follow the prompts. When it has finished, dss will open two Notepads main.txt and extra.txt -- please copy (CTRL+A and then CTRL+C) and paste (CTRL+V) the contents of main.txt and extra.txt in yo
  21. No problem! Also make sure you post the Report.txt and not the bat file.
  22. Hello and Welcome to Best Techie. I am MoNsTeReNeRgY22 and I will be assisting you with your malware problem today. Step 1 Looking at your system now, one or more of the identified infections is a backdoor Trojan. If this computer is ever used for on-line banking, I suggest you do the following immediately: 1. Call all of your banks, credit card companies, financial institutions and inform them that you may be a victim of identity theft and to put a watch on your accounts or change all your account numbers. 2. From a clean computer, change ALL your on-line passwords for email, for banks, fi