1,661 Posted Topics
 | Re: Need help Hi Stephan, welcome to DaniWeb :D Please follow the recommendations in these threads to help protect and start the cleanup process of your system: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] Then [B]close any open broswer windows[/B], scan with hijackthis, and post a new log as there will be more to do. |
| | Follow the suggestions in these threads: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] Then close any open browser windows, scan with HJT, and post a new log please. |
| | Hi Cheeba, welcome to DaniWeb :D Sorry for the delay in responding to this, it's been pretty busy here lately. Run a at least two of these free online anti-virus/anti-spyware scans and have them clean what they can: [url]http://www.kaspersky.com/scanforvirus.html[/url] [url]http://housecall.trendmicro.com/[/url] [url]http://us.mcafee.com/root/mfs/default.asp?cid=9914[/url] [url]http://www.ravantivirus.com/scan/[/url] [url]http://www.bitdefender.com/scan/licence.php[/url] Please take a look at this thread: … |
| | Scan with hijackthis and have it fix the following entries: O4 - HKLM\..\Run: [ordtmgy] C:\WINDOWS\System32\ordtmgy.exe O4 - HKLM\..\Run: [SurfSideKick 3] C:\Program Files\SurfSideKick 3\Ssk.exe O4 - HKCU\..\Run: [SurfSideKick 3] C:\Program Files\SurfSideKick 3\Ssk.exe Be sure to close any open windows, other then hijackthis, before hitting [B]Fix checked[/B]. Reboot into Safe Mode. Go … |
| | Re: Norton user... My suggestions: [U]Antivirus[/U] Nod32 ([url]http://www.nod32.com/home/home.htm[/url]) [U]Firewall[/U] If you have a broadband connection (DSL, cable, etc), I would recommend getting a hardware-type firewall such as those available from SMC, Linksys, or Netgear; [B]and[/B] a software firewall; either the XP firewall, or one from Sygate ([url]http://www.download.com/Sygate-Personal-Firewall/3000-2092_4-10332265.html?tag=lst-0-1)[/url], or Kerio ([url]http://www.download.com/Kerio-Personal-Firewall/3000-2092_4-10322940.html?tag=lst-0-1[/url]) [U]Spyware and Adware[/U] … |
| | Param.dll is indeed one of the bad files associated with this (smitfraud, HotOffers, and a couple of others), and you will most likely need to use the PocketKillbox to get rid of it. There are some other files that should be searched for, and deleted, as well. See post #41 … |
| | Re: yazifind.com Hi Finman101, welcome to DaniWeb :D Go to Add/Remove Programs in your Control Panel and remove: [B]Viewpoint Manager[/B] (or [B]Viewpoint[/B], [B]ViewMgr[/B], or something similar) Scan with hijacthis and have it fix the following entries: R3 - Default URLSearchHook is missing O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe O15 - Trusted … |
| | Re: help with IE v6 Hi bultoki, welcome to DaniWeb :D Scan with hijackthis and have it fix the following entries: R1 - HKCU\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = javascript:window.close() R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost;<local> O2 - BHO: (no name) - {4FA1766B-07EE-5651-C8D7-FCBCE42A8EE5} - C:\WINDOWS\apiva.dll (file missing) O3 - Toolbar: (no name) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - (no file) O3 …  |
| | You were pretty well infested there :(. It's looking better, but there are still some things to do. Scan with hijackthis and have it fix the following entries: R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [url]http://red.clientapps.yahoo.com/cus...://my.yahoo.com[/url] R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [url]http://red.clientapps.yahoo.com/cus...//www.yahoo.com[/url] R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [url]http://red.clientapps.yahoo.com/cus...://my.yahoo.com[/url] R0 - HKLM\Software\Microsoft\Internet … |
| | Please follow the suggestions in these threads: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] Go to Add/Remove Programs in your Control Panel and remove: Viewpoint (or Viewpoint Manager, ViewMgr, or something similar) Go to C:\Program Files and delete the [B]Viewpoint[/B] folder. If you're still having problems afterwards, please post a new HJT log. |
| | Hi Xceptioner, welcome to DaniWeb :D Aside from the legal aspects, malware is the next biggest problem with file sharing. Nail is a part of Aurora. Please review this thread: [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url] After you've moved HijackThis, please post a new log and we'll help you get the computer cleaned up. |
| | Please follow the suggestions in these threads: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] Then [B]close any open browser windows[/B], scan with hijackthis, and post a new log please. |
| | Follow the suggestions in these threads: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] Get the self-extracting version of HijackThis from here (in line 2): [url]http://www.malwareremoval.com/downloads.html[/url] Then close any open browser windows, 'Scan and Save Log' with hijackthis, copy the log, and paste it in this thread. |
 | Check here first to see if it offers any assistance: [url]http://forum.grisoft.cz/freeforum/read.php?4,23563,23585[/url] Then follow the recommendations here to help prevent future infections: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] After that, follow the instructions here (this will clean up some of your problems, but not all): [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] Close any open browser windows, scan with HJT, and post … |
| | I would suggest trying System Restore (if you have that capability, you didn't mention your OS) to a point prior to when you started having problems. Then follow the suggestions in these threads: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] If you continue to have problems, please get the self-extracting version of HijackThis from here … |
| | It sounds to me like a format and reinstall is your best option at this point, it will probably be quicker and easier then trying to fix whatever you have. Before you begin, have a look at these threads: [url]http://www.daniweb.com/techtalkforums/thread16365-crackers+christmas.html[/url] [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] Also before you begin, write down the settings for … |
| | Hi greycat, welcome to DaniWeb :D Before we get started on your HijackThis log, you should follow the recommendations in this thread: [url]http://www.daniweb.com/techtalkforums/thread27519.html[/url] After that, use the cleanup procedures explained here: [url]http://www.daniweb.com/techtalkforums/thread27570.html[/url] If you are still having problems after that, please scan with HijackThis again and post a new log. |
| | Hi Angoisette, welcome to DaniWeb :D I don't see any signs of My Way in your log, so do this; go to Add/Remove Programs in your Control Panel and remove any of the following found, and then let us know which one(s) in your next post: [B]MyWay MySearch MyBar MySearchBar[/B] …  |
 | Spybot Search & Destroy version 1.4 is now available; if you have any previous versions, you should replace it with this one. [url]http://www.download.com/3120-20_4-0.html?qt=spybot&tg=dl-20&search.x=17&search.y=6[/url] |
| | Re: Rundll Error Hi Rhonda, welcome to DaniWeb :D You will need to disconnect from the internet so you may wish to print these instructions. Download [B]Ewido Security Suite[/B] from here: [url]http://fileforum.betanews.com/detail/ewido_security_suite/1098736486/1[/url] Install and update it, and then [U]close the program (don't scan yet)[/U]. Download [B]Nailfix[/B] from here: [url]http://www.noidea.us/easyfile/file.php?download=20050515010747824[/url] Unzip it to your … |
 | Hi datry, welcome to DaniWeb :D First go to Windows Update and get SP1a for both XP and IE (do not get SP2 at this time). Update your antivirus program and run a full system scan, allowing it to fix whatever it finds. Have a look at this thread: [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url] … |
| | |
| | |
| | Hi Greg, welcome to DaniWeb :D Go to [B]Tech Talk[/B], [B]Microsoft Windows[/B], [B]Viruses, Spyware & other Nasties[/B] Or click here: [url]http://www.daniweb.com/techtalkforums/forum64.html[/url] |
| | Hi joker, welcome to DaniWeb :D Download, install, update, and run these tools: CWShredder -- [url]http://www.intermute.com/spysubtract/cwshredder_download.html[/url] about:Buster -- [url]http://www.majorgeeks.com/download4289.html[/url] For every User listed under C:\Documents and Settings, delete the entire contents of these folders (not the folders themselves): Local Settings\Temp Cookies History Local Settings\Temporary Internet Files\Content.IE5 Delete the entire contents … |
| | Hi Melloncolin88, welcome to DaniWeb :D Right-click on an empty area of your desktop and select [B]New[/B], [B]Folder[/B]; give the folder a name (something like HJT or HijackThis), and then drag the hijackthis.exe icon that is on your desktop into this new folder. If you don't already have it, get … |
| | [QUOTE=Moo]Spybot and Adaware come up clean, but downloaded and ran "Adware Spy" today and it presented me with over 400 registry items mainly in Local Machine, IE, ActiveX Compatibility, that read like a who's who of every malware signature ever invented. Couldn't use it to fix the issues though as … |
| | Hi SediAK, welcome to DaniWeb :D Go to Add/Remove Programs in your Control Panel and remove (if present): [B]MyWay[/B] (or [B]MySearch[/B], [B]MyBar[/B], or anything similar) Download [B]Ewido Security Suite[/B] from here: [url]http://fileforum.betanews.com/detail/ewido_security_suite/1098736486/1[/url] Install it, and while installing, under [B]Additional Options[/B], [U]uncheck[/U] [B]Install background guard[/B] and [B]Install scan via context menu[/B]. … |
| | Hi Bob, welcome to DaniWeb :D Go ahead and post your HijackThis log here in this thread and we'll have a look at it. |
| | Hi Mary, what happened to your Hijackthis? Your first scan showed you were using the latest version, 1.98.2, but this latest one shows an older version, 1.97.7 (and it's now running from your desktop). Put the newer version of HJT into it's own permanent folder before having it fix anything … |
| | Hi derekn83, welcome to DaniWeb :D I've split your post into it's own thread per the site rules: "[B]Every question or new thought should have its own thread[/B]. Replies to a previous post should be thread replies to that particular thread. [B]Do not piggyback threads by posting your question as … |
| | Hi Melissa, welcome to DaniWeb :D Simple solution -- take your husband with you when you go on vacation! :) (Somewhat) harder solution -- Download, install, update, and run these tools: CWShredder -- [url]http://www.intermute.com/spysubtract/cwshredder_download.html[/url] about:Buster -- [url]http://www.majorgeeks.com/download4289.html[/url] Be sure your system is set to [B]Show hidden files and folders[/B]. Right-click … |
| | Hi lizbee, welcome to DaniWeb :D You have an older version of HijackThis, please get the latest, self-extracting version of HijackThis from here (in line 2): [url]http://www.malwareremoval.com/downloads.html[/url] Then close any open browser windows, 'Scan and Save Log' with hijackthis, copy the log, and paste it in this thread please. |
| | You can thank the folks at Dell for installing this for you :) Here is some info about it: [url]http://www.pchell.com/support/mywebsearch.shtml[/url] Please review this thread: [url]http://www.daniweb.com/techtalkforums/thread24085-faster.html[/url] After you've moved hijackthis, post a new log and we'll help you get rid of MyWay. |
| | Hi Katie, welcome to DaniWeb :D Download, install, update, and run these tools: CWShredder -- [url]http://www.intermute.com/spysubtract/cwshredder_download.html[/url] about:Buster -- [url]http://www.majorgeeks.com/download4289.html[/url] Be sure your system is set to [B]Show hidden files and folders[/B]. For every User listed under C:\Documents and Settings, delete the entire contents of these folders (not the folders themselves): … |
| | If you do a net search for hijackthis tutorials, you'll find several (such as this one -- [url]http://www.bleepingcomputer.com/forums/index.php?showtutorial=42[/url]) Using the tutorials and a lot of net searching is the best way to analyze hijackthis logs. There is no list of 'normal vs abnormal.' If you look around this forum you'll … |
| | Hi thenudedude2002, welcome to DaniWeb :D You should first go to Window Update and get the Critical Updates for your system. Then review this thread: [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url] After you've moved hijackthis, please post a new log. |
| | Hi Flaviuscrispus, Welcome to DaniWeb :D Sorry for the delay in replying to this; as you can see, there are a lot of people with problems and not many of us available to help. Aside from the legal aspects, malware is the next biggest problem with file sharing programs such … |
| | Hi Latinflo, welcome to DaniWeb :D Download [B]VX2Finder[/B] from here: [url]http://www.downloads.subratam.org/VX2Finder.exe[/url] Open the program and click the [B]Click to Find VX2.aBetterInternet[/B] button. This will attempt to find all VX2 related files and registry keys and when present display them in its logfile. To create a logfile, click the button named … |
| | If you have an hijackthis.exe icon on your desktop, do this: Right-click in an empty area of your desktop and select [B]New[/B], [B]Folder[/B]; give the folder a name (something like HJT or HijackThis). Then, drag the hijackthis.exe icon into this folder. Close any open browser windows, open HijackThis, and click … |
| | Re: Help Well, I think you answered your own question in your post "[B]single user[/B] Norton antivirus 2005" But if you read your License Agreement with Symantec, you will find the following statement: "[B]You may: A. use one copy of the Software on a single computer. If a License Module accompanies, precedes, … |
| | Re: extender spywaRE Hi fishmn, welcome to DaniWeb :D It may be a bit late now, but read this thread -- it may come in handy: [url]http://www.daniweb.com/techtalkforums/thread16365.html[/url] The first thing you need to do is go to Windows Update and get SP1a for both XP and IE (don't get SP2 until [B]after[/B] your … |
| | Hi frenemy, welcome to DaniWeb :D Go to Add/Remove Programs in your Control Panel and remove (if present): [B]WildTangent[/B] Get the Pocket Killbox from here: [url]http://bleepingcomputer.com/files/spyware/KillBox.zip[/url] Unzip the file to your desktop. Go offline until this is completed (you may wish to print these instructions). Boot into Safe Mode and … |
| | Hi Chendrum, glad you finally decided to join :D Run a at least two of these free online anti-virus/anti-spyware scans and have them clean what they can: [url]http://www.kaspersky.com/scanforvirus.html[/url] [url]http://housecall.trendmicro.com/[/url] [url]http://us.mcafee.com/root/mfs/default.asp?cid=9914[/url] [url]http://www.ravantivirus.com/scan/[/url] [url]http://www.bitdefender.com/scan/licence.php[/url] Download, install, update, and run HSRemove -- [url]http://www.majorgeeks.com/download4286.html[/url] Reboot, close any open browser windows, scan with HJT, and … |
| | Hi GoodmanHR, welcome to DaniWeb :D It's possible I could have overlooked something, but I don't see anything bad in your log. The clicking sound, however, sounds to me like your hard drive could be failing. I'm not sure if that would cause the light to stay on or not. … |
| | Go to Add/Remove Programs in your Control Panel and remove the following (if found): [B]Ebates[/B] [B]New.net[/B] (or [B]newdotnet[/B]) -- or you can go to [url]http://www.newdotnet.com/#remove[/url] and scroll down to the Uninstall tool. [B]Quickbar[/B] [B]Viewpoint Manager[/B] (or [B]Viewpoint[/B]) [B]VirtualBouncer [/B] (or [B]Bouncer[/B]) For every User listed under C:\Documents and Settings, delete … |
| | Hi lol102001, welcome to DaniWeb :D Please take a look at this thread: [url]http://www.daniweb.com/techtalkforums/thread24085.html[/url] And after you've moved hijackthis, please post a new log. |
| | This thread had already been marked as 'Solved', before the merge, and there was another thread already started; I'm not going to bother merging that one, but if anyone wants to have a look at it, it's here: [url]http://www.daniweb.com/techtalkforums/showthread.php?t=22288[/url] I've taken the 'Solved' mark off of this one for now. … |
| | You are also running HJT from a temp folder, please put it into a permanent folder (like c:\hjt\hijackthis.exe). Hey, and don't throw your computer off the balcony! Worst case scenerio, you'll just need to reinstall Windows. Besides, you might hit someone! :) |
| | I have not used EasyCleaner so cannot judge it, but be careful using it, check this thread: [url]http://www.daniweb.com/techtalkforums/thread10062.html[/url] |
The End.