MyTechSupport.ca :: Your Computer Technical Resource Headquarters! MyTechSupport.ca :: Your Computer Technical Resource Headquarters!
HOME FORUMS RESOURCES & TOOLS ARTICLES ONLINE STORE ABOUT US
Computer Support Forums arrow Internet & Network Support arrow Security & Viruses arrow Topic: cant login into hotmail and myspace
November 22, 2019, 03:31:44 AM
 

Home Forum Rules Help Search Mobile Version Login Register

Welcome, Guest. Please login or register.
Did you miss your activation email?
November 22, 2019, 03:31:44 AM

Login with username, password and session length
 Featured Sites:
News
New  Check out our improved Download section for tons of software....
  0 Members and 1 Guest are viewing this topic.
Pages: [1] Go Down Print
Author Topic: cant login into hotmail and myspace  (Read 3932 times)
ozlygal
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Female
Posts: 11


Bookmark and Share

View Profile
« on: April 20, 2006, 10:53:30 AM »

Logfile of HijackThis v1.99.1
Scan saved at 8:50:30 PM, on 4/20/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\kpsf.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\Program Files\Spyware Doctor\swdoctor.exe
C:\Program Files\GetRight\getright.exe
C:\Program Files\Common Files\Microsoft Shared\Works Shared\wkcalrem.exe
C:\Program Files\GetRight\getright.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\Documents and Settings\Natalie\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,(Default) = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.ninemsn.com.au/0SEENAU/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.ninemsn.com.au/0SEENAU/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ninemsn.com.au/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.ninemsn.com.au/0SEENAU/SAOS01?FORM=TOOLBR
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\3.bin\MWSBAR.DLL
O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Microsoft Windows System] srwhost.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [runapp] C:\WINDOWS\system32\icqchk.exe
O4 - HKLM\..\Run: [msnsyslog] C:\WINDOWS\msnappm.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.Exe -boot
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\3.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O4 - HKLM\..\RunServices: [Microsoft Windows System] srwhost.exe
O4 - HKLM\..\RunOnce: [MicrosoftAntiSpywareCleaner] C:\Program Files\Microsoft AntiSpyware\gcASCleaner.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [TradewindsLegends.exe] C:\DOWNLO~1\TRADEW~1.EXE /r
O4 - HKCU\..\Run: [WinterChallengeSetup.exe] C:\DOWNLO~1\WINTER~1.EXE /r
O4 - HKCU\..\Run: [DSJV1Setup.exe] C:\DOCUME~1\Natalie\Desktop\DSJV1S~1.EXE /r
O4 - HKCU\..\Run: [CakeManiaSetup.exe] C:\DOCUME~1\Natalie\Desktop\CAKEMA~1.EXE /r
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O4 - Global Startup: GetRight - Tray Icon.lnk = C:\Program Files\GetRight\getright.exe
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNfox000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: Microsoft AntiSpyware helper - {87D22B9B-8B0E-4B66-A80A-3D0F7D05DD7A} - (no file) (HKCU)
O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {87D22B9B-8B0E-4B66-A80A-3D0F7D05DD7A} - (no file) (HKCU)
O9 - Extra button: Microsoft AntiSpyware helper - {CB38FADE-660A-4D2B-934F-E9123D59CABE} - (no file) (HKCU)
O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {CB38FADE-660A-4D2B-934F-E9123D59CABE} - (no file) (HKCU)
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: http://*.windowsupdate.com
O15 - Trusted IP range: 67.19.178.84
O16 - DPF: {0831D541-4E07-2D6B-3F90-0F234A381D72} - http://205.252.161.238/1/gdnAU1956.exe
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.8.cab
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_1_0_0_44.cab
O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} (Yahoo! Audio UI1) - http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} (Progetto1.int_ver34) - http://advnt01.com/dialer/int_ver34.CAB
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://utu.popcap.com/games/popcaploader_v6.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: ICQ Update Service (ICQUPD) - Unknown owner - C:\WINDOWS\System32\kpsf.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe




i was chatting on msn messenger before, when i get this message saying you have logged on another computer.

now i cant login into hotmail or msn, i need to cause i have info im my email account, that i dont want anyone else to see.


so if anyone can help please do.
« Last Edit: April 28, 2006, 12:51:33 AM by Admin » Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #1 on: April 21, 2006, 02:08:56 AM »

Hi and Welcome
It may help to print out or copy this page as you will be working in Safe Mode.. Make sure to work through the fixes in the exact order its listed.

-------------------------------------------------------------



Download any of the required programs before attempting to start any of the fixes.

  ------------------------------------------------------------------
Go to Start > Run and type

cmd

and OK. Type the below commands and hit "Enter" after each line

sc stop ICQUPD
sc delete ICQUPD


Type Exit to close.

-------------------------------------------------------------------

Download the trial version of Ewido Security Suite

When installing, under "Additional Options" uncheck "Install Background Guard" and "Install scan via context menu".

Launch Ewido Security Suite (there should be an icon on your desktop doubleclick it). The program will now go to the main screen. You will need to update ewido to the latest definition files.

On the left hand side of the main screen click update and then click on Start Update. The update will start and a progress bar will show the updates being installed. If you have problems with the updater, you can use this link to manually update ewido.
 http://www.ewido.net/en/download/updates/. Do not run a scan yet.

When you have done this, boot into Safe Mode (restart your PC and keep tapping F8 while it restarts).

Run Ewido Security Suite now. Click on Scanner and click Complete System Scan and the scan will begin. During the scan it will prompt you to clean files, click OK. When it asks if you want to clean the first file, put a check in the lower left corner of the box that says "Perform action on all infections" then choose clean and click OK. When the scan is finished, click the Save report button at the bottom of the screen. Save the report to your desktop and close Ewido Security Suite.Please post its log here.

----------------------------------------------------------------
SHOW HIDDEN FILES AND FOLDERS.
To show hidden files instructions (WinXP)
Doubleclick My Computer | Tools | Folder Options | View tab
Select Show Hidden Files and Folders
Uncheck Hide extensions for known file types
Uncheck Hide protected operating system files (Recommended)
Select Apply to All Folders | Yes | Apply | OK
 ------------------------------------------------------------------

Files highlighted in BLACK  will need to be removed from your hard drive.

Folders that have been highlighted RED will need to be uninstalled.



-----------------------------------------------------------------------

Please start by going into SAFE MODE.  During reboot, tap the F8 key. Select Safe Mode and then run "Hijack This"
 ------------------------------------------------------------------

Uninstall the following programs (if they still exist) Go into HijackThis->Config->Misc.Tools->Open Uninstall manager

MyWebSearch

-----------------------------------------------------------------

               
Have "Hijack This" fix all the following items in the list below by placing a check in the appropriate boxes.Confirm that you have only the listed ones checked, then press  and Close HJT.

R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files\MyWebSearch\SrchAstt\3.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\3.bin\MWSBAR.DLL
O2 - BHO: PCTools Site Guard - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - C:\PROGRA~1\SPYWAR~2\tools\iesdsg.dll
O4 - HKLM\..\Run: [runapp] C:\WINDOWS\system32\icqchk.exe
O4 - HKLM\..\Run: [msnsyslog] C:\WINDOWS\msnappm.exe
O4 - HKLM\..\Run: [My Web Search Bar] rundll32 C:\PROGRA~1\MYWEBS~1\bar\3.bin\MWSBAR.DLL,S
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O4 - HKLM\..\RunServices: [Microsoft Windows System] srwhost.exe
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe
O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbaredits/menusearch.jhtml?p=ZNfox000
O9 - Extra button: Microsoft AntiSpyware helper - {87D22B9B-8B0E-4B66-A80A-3D0F7D05DD7A} - (no file) (HKCU)
O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {87D22B9B-8B0E-4B66-A80A-3D0F7D05DD7A} - (no file) (HKCU)
O9 - Extra button: Microsoft AntiSpyware helper - {CB38FADE-660A-4D2B-934F-E9123D59CABE} - (no file) (HKCU)
O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {CB38FADE-660A-4D2B-934F-E9123D59CABE} - (no file) (HKCU)
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.imgfarm.com/images/nocache/funwebproducts/ei/SmileyCentralFWBInitialSetup1.0.0.8.cab
O16 - DPF: {A1426AC5-8CE5-4A00-B71E-011D35709AC6} (Progetto1.int_ver34) - http://advnt01.com/dialer/int_ver34.CAB
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://utu.popcap.com/games/popcaploader_v6.cab
O23 - Service: ICQ Update Service (ICQUPD) - Unknown owner - C:\WINDOWS\System32\kpsf.exe



------------------------------------------------------------------

Open Windows Explorer and delete the following highlighted  file/s
Also delete the following red folder/s
 
C:\Program Files\MyWebSearch
 C:\WINDOWS\system32\icqchk.exe
 C:\WINDOWS\msnappm.exe
 C:\WINDOWS\system32\srwhost.exe
C:\WINDOWS\System32\kpsf.exe

 -------------------------------------------------------------------



When finished please  post a new log......
Logged

An Australian Member of

EDDY
ozlygal
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Female
Posts: 11


Bookmark and Share

View Profile
« Reply #2 on: April 21, 2006, 12:47:22 PM »

Logfile of HijackThis v1.99.1
Scan saved at 6:54:01 PM, on 4/21/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\NOTEPAD.EXE
C:\DOCUME~1\Natalie\LOCALS~1\Temp\Rar$EX00.672\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,(Default) = www.google.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.ninemsn.com.au/0SEENAU/SAOS01?FORM=TOOLBR
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.ninemsn.com.au/0SEENAU/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.ninemsn.com.au/
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.ninemsn.com.au/0SEENAU/SAOS01?FORM=TOOLBR
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
O2 - BHO: bho2gr Class - {31FF080D-12A3-439A-A2EF-4BA95A3148E8} - C:\Program Files\GetRight\xx2gr.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O2 - BHO: PCTools Browser Monitor - {B56A7D7D-6927-48C8-A975-17DF180C71AC} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Microsoft Windows System] srwhost.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
O4 - HKLM\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.Exe -boot
O4 - HKLM\..\Run: [WorksFUD] C:\Program Files\Microsoft Works\wkfud.exe
O4 - HKLM\..\Run: [Microsoft Works Portfolio] C:\Program Files\Microsoft Works\WksSb.exe /AllUsers
O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe
O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [TradewindsLegends.exe] C:\DOWNLO~1\TRADEW~1.EXE /r
O4 - HKCU\..\Run: [WinterChallengeSetup.exe] C:\DOWNLO~1\WINTER~1.EXE /r
O4 - HKCU\..\Run: [DSJV1Setup.exe] C:\DOCUME~1\Natalie\Desktop\DSJV1S~1.EXE /r
O4 - HKCU\..\Run: [CakeManiaSetup.exe] C:\DOCUME~1\Natalie\Desktop\CAKEMA~1.EXE /r
O4 - HKCU\..\Run: [Spyware Doctor] "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
O4 - Global Startup: GetRight - Tray Icon.lnk = C:\Program Files\GetRight\getright.exe
O4 - Global Startup: Microsoft Works Calendar Reminders.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\npjpi150_06.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\PROGRA~1\SPYWAR~2\tools\iesdpb.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .pdf: C:\Program Files\Internet Explorer\PLUGINS\nppdf32.dll
O15 - Trusted Zone: http://*.windowsupdate.com
O15 - Trusted IP range: 67.19.178.84
O16 - DPF: {0831D541-4E07-2D6B-3F90-0F234A381D72} - http://205.252.161.238/1/gdnAU1956.exe
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/v45/yacscom.cab
O16 - DPF: {39B0684F-D7BF-4743-B050-FDC3F48F7E3B} (FilePlanet Download Control Class) - http://www.fileplanet.com/fpdlmgr/cabs/FPDC_1_0_0_44.cab
O16 - DPF: {556DDE35-E955-11D0-A707-000000521957} - http://www.xblock.com/download/xclean_micro.exe
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} (Yahoo! Audio UI1) - http://chat.yahoo.com/cab/yacsui.cab
O16 - DPF: {A3009861-330C-4E10-822B-39D16EC8829D} (CRAVOnline Object) - http://www.ravantivirus.com/scan/ravonline.cab
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://zone.msn.com/binFramework/v10/ZIntro.cab34246.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
« Last Edit: April 21, 2006, 12:49:44 PM by ozlygal » Logged

 
ozlygal
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Female
Posts: 11


Bookmark and Share

View Profile
« Reply #3 on: April 21, 2006, 12:50:52 PM »

---------------------------------------------------------
 ewido anti-malware - Scan report
---------------------------------------------------------

 + Created on:         6:35:05 PM, 4/21/2006
 + Report-Checksum:      FC774174

 + Scan result:

   HKLM\SOFTWARE\Classes\CLSID\{EEE7178C-BBC3-4153-9DDE-CD0E9AB1B5B6} -> Trojan.CWSMeup.b : Cleaned with backup
   HKLM\SOFTWARE\Microsoft\Internet Explorer\Main\ins -> Adware.WebRebates : Cleaned with backup
   C:\Documents and Settings\LocalService.NT AUTHORITY\Cookies\system@ad.yieldmanager[1].txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   C:\Documents and Settings\LocalService.NT AUTHORITY\Cookies\system@adopt.specificclick[2].txt -> TrackingCookie.Specificclick : Cleaned with backup
   C:\Documents and Settings\LocalService.NT AUTHORITY\Cookies\system@buycom.122.2o7[1].txt -> TrackingCookie.2o7 : Cleaned with backup
   C:\Documents and Settings\LocalService.NT AUTHORITY\Cookies\system@c.enhance[1].txt -> TrackingCookie.Enhance : Cleaned with backup
   C:\Documents and Settings\LocalService.NT AUTHORITY\Cookies\system@www.epilot[1].txt -> TrackingCookie.Epilot : Cleaned with backup
   C:\Documents and Settings\Nat\Start Menu\Programs\WeatherCast -> Adware.SaveNow : Cleaned with backup
   C:\Documents and Settings\Nat\Start Menu\Programs\WeatherCast\WeatherCast.lnk -> Adware.SaveNow : Cleaned with backup
   :mozilla.8:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.9:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.10:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.11:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.12:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.13:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Adbrite : Cleaned with backup
   :mozilla.28:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.29:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.30:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.31:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.32:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.33:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Casalemedia : Cleaned with backup
   :mozilla.35:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Com : Cleaned with backup
   :mozilla.37:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.38:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.39:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.40:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.41:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.42:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.43:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.44:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.45:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.46:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.47:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Esomniture : Cleaned with backup
   :mozilla.87:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.2o7 : Cleaned with backup
   :mozilla.117:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Questionmarket : Cleaned with backup
   :mozilla.118:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Revenue : Cleaned with backup
   :mozilla.122:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.123:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.124:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.125:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Serving-sys : Cleaned with backup
   :mozilla.126:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.127:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.128:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.129:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.130:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.131:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.132:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.133:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.134:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Statcounter : Cleaned with backup
   :mozilla.148:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.149:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.150:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.151:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.152:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   :mozilla.168:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   :mozilla.169:C:\Documents and Settings\Natalie\Application Data\Mozilla\Firefox\Profiles\l4dy14si.default\cookies.txt -> TrackingCookie.Googleadservices : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@ad.yieldmanager[2].txt -> TrackingCookie.Yieldmanager : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@com[1].txt -> TrackingCookie.Com : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@cpvfeed[1].txt -> TrackingCookie.Cpvfeed : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@e-2dj6wjl4qiazwlp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@e-2dj6wjlycodjslp.stats.esomniture[2].txt -> TrackingCookie.Esomniture : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@rotator.adjuggler[1].txt -> TrackingCookie.Adjuggler : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@statcounter[1].txt -> TrackingCookie.Statcounter : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@tacoda[1].txt -> TrackingCookie.Tacoda : Cleaned with backup
   C:\Documents and Settings\Natalie\Cookies\natalie@www.myaffiliateprogram[2].txt -> TrackingCookie.Myaffiliateprogram : Cleaned with backup
   C:\Documents and Settings\Natalie\Local Settings\Application Data\Microsoft\Internet Explorer\V0.28.dat -> Trojan.Dialer.fy : Cleaned with backup
   C:\Documents and Settings\Natalie\My Documents\DSJV1Setup-dm.exe -> Adware.Trymedia : Cleaned with backup
   C:\Downloads\DSJV1Setup-dm[1].exe -> Adware.Trymedia : Cleaned with backup
   C:\Program Files\bfgtoolbar\uninstall.exe -> Adware.Xbarre : Cleaned with backup
   C:\Program Files\Common Files\VCClient\installer.exe -> Downloader.Qoologic.at : Cleaned with backup
   C:\Program Files\FileSubmit\AHA! Christmas Trivia Screen Saver\NNEZTX638.exe -> Adware.NewDotNet : Cleaned with backup
   C:\Program Files\Microsoft AntiSpyware\Quarantine\2C089294-A095-458F-9EC7-F4BE38\806C9C15-0B77-434F-92A7-EDE2F0 -> Downloader.Delf.yb : Cleaned with backup
   C:\Program Files\SurfAccuracy -> Adware.SurfAccuracy : Cleaned with backup
   C:\Program Files\SurfAccuracy\License.lnk -> Adware.SurfAccuracy : Cleaned with backup
   C:\Program Files\SurfAccuracy\SAcc.cfg -> Adware.SurfAccuracy : Cleaned with backup
   C:\Program Files\SurfAccuracy\SAcc.exe -> Adware.SurfAccuracy : Cleaned with backup
   C:\Program Files\SurfAccuracy\SAccU.exe -> Adware.SurfAccuracy : Cleaned with backup
   C:\RECYCLER\S-1-5-21-220523388-515967899-839522115-1004\Dc1.exe -> Adware.Trymedia : Cleaned with backup
   C:\WINDOWS\adsldpbf.dll -> Downloader.Delf.lh : Cleaned with backup
   C:\WINDOWS\ciadmin.dll -> Adware.Csa : Cleaned with backup
   C:\WINDOWS\Downloaded Program Files\CONFLICT.1\UERS_0001_N68M1801NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup
   C:\WINDOWS\Downloaded Program Files\int_ver34.ocx -> Dialer.VB.j : Cleaned with backup
   C:\WINDOWS\Downloaded Program Files\UERS_0001_N68M1801NetInstaller.exe -> Not-A-Virus.Downloader.Win32.WinFixer.d : Cleaned with backup
   C:\WINDOWS\helper.exe -> Adware.Csa : Cleaned with backup
   C:\WINDOWS\logon.exe -> Downloader.VB.fi : Cleaned with backup
   C:\WINDOWS\NDNuninstall6_98.exe -> Adware.NewDotNet : Cleaned with backup
   C:\WINDOWS\nwwjkkqa.exe -> Adware.SurfAccuracy : Cleaned with backup
   C:\WINDOWS\system32\chke.dll -> Downloader.Small.bxa : Cleaned with backup
   C:\WINDOWS\system32\fawaqiqa.dll -> Adware.TsAdv : Cleaned with backup
   C:\WINDOWS\system32\icqchk.exe -> Trojan.LdPinch.agm : Cleaned with backup
   C:\WINDOWS\system32\kpsf.exe -> Backdoor.HacDef.dn : Cleaned with backup
   C:\WINDOWS\system32\msmnu.dll -> Downloader.BHO.f : Cleaned with backup
   C:\WINDOWS\system32\nsa38.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsb32.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsc24.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsg3C.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsj18.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsk9.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsl28.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsr20.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsr2C.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsr33.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nst11.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsv1C.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsy14.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nsz5.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\nszE.tmp -> Hijacker.Bomka.a : Cleaned with backup
   C:\WINDOWS\system32\popcorn128.exe -> Downloader.Delf.cb : Cleaned with backup
   C:\WINDOWS\system32\srshost.exe -> Proxy.Agent.hy : Cleaned with backup
   C:\WINDOWS\system32\srshostu.exe -> Proxy.Agent.bz : Cleaned with backup
   C:\WINDOWS\system32\sssdfgbsdfghbnj.exe -> Downloader.Delf.cb : Cleaned with backup
   C:\WINDOWS\system32\winl0gon.exe -> Dropper.Small.na : Cleaned with backup
   C:\WINDOWS\system32\wirl0g0n.exe -> Dropper.Small.na : Cleaned with backup
   C:\WINDOWS\system32\ws_32.dll -> Proxy.Webber.u : Cleaned with backup
   C:\WINDOWS\system32\`.dll -> Downloader.Small.byi : Cleaned with backup
   C:\WINDOWS\winext.exe -> Dropper.Agent.ada : Cleaned with backup


::Report End
Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #4 on: April 22, 2006, 12:17:51 AM »

Nearly done...

Run HJT and fix these three items and that should finish your cleanup.

O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [Microsoft Windows System] srwhost.exe
O4 - HKLM\..\Run: [SurfAccuracy] C:\Program Files\SurfAccuracy\SAcc.exe
Logged

An Australian Member of

EDDY
ozlygal
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Female
Posts: 11


Bookmark and Share

View Profile
« Reply #5 on: April 22, 2006, 06:59:09 AM »

didnt work, i think someone hacked into my email and myspace account!

cause my myspace profile has been deleted.
Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #6 on: April 22, 2006, 07:25:28 AM »

All I can say is that it no longer malware related.Your log is clean


If you wish to do so, here are a few things that you can do that will help keep your computer a bit more cleaner and a bit more safer..

If you have not already done so, you might want to run   Disk Cleanup and run it in each user's profile:

Run Disk Cleanup
Click "Start > Programs > Accessories > System Tools > Disk Cleanup"
Please make sure the following are checked:
-- Downloaded Program Files
-- Temporary Internet Files
-- Recycle Bin
-- Temporary Files
Click "OK" and Disk Cleanup will delete those files for you.


Now that you are clean its now is a good time to  flush out your restored files.

To flush the XP System Restore Points:
(Using XP, you must be logged in as Administrator to do this.)
Go to Start>Run and type msconfig Press enter.
When msconfig opens, click the Launch System Restore Button.
On the next page, click the System Restore Settings Link on the left.
Check the box labeled Turn Off System Restore.

Reboot. Go back in and turn System Restore ON. A new Restore Point will be created.

How Do I Protect My Computer Against Future Malware Now I'm Clean.

NOTE:You may have already taken some of these steps.

Update your anti-virus software & Windows operating system on a daily or weekly basis. Microsoft also distributes updates to its operating systems. These updates fix security holes or other problems that make a computer susceptible to security breaches.  How to update your Windows operating system

Know What You're Installing
Check the source.
To avoid malware, make sure your software comes from a reputable source. Be particularly suspicious of sponsored software (software that relies on advertising) or software that claims to speed up your Internet connection.

Use Custom Install.
If you feel comfortable with software installation, you can choose Custom Install (as opposed to Typical Install). Custom Install allows you to select only the software components you wish to install, and leave out others (such as potential spyware).

Modify Security Settings (Internet Explorer 6)
To reduce the risk of installing malware, you can set Internet Explorer to high security mode. To do so:

Open Internet Explorer. Go to Tools > Internet Options
Logged

An Australian Member of

EDDY
ozlygal
Jr. Member
**

Karma: +0/-0
Offline Offline

Gender: Female
Posts: 11


Bookmark and Share

View Profile
« Reply #7 on: April 22, 2006, 05:33:54 PM »

hey, me again!

internet explorer is crashing, so is msn messenger.
Logged

 
Pancake
Global Moderator
Hero Member
*****

Karma: +78/-0
Offline Offline

Gender: Male
Posts: 3915


Bookmark and Share

View Profile
« Reply #8 on: April 23, 2006, 12:58:31 AM »

As its not malware related I think the guys in the Operating Systems Forum would be better set to help you than I would.Before doing so try running this.....

Winsock Repair for XP:
http://members.shaw.ca/techcd/WinsockXPFix.exe


The TIF ( Temporary Internet Files) can also be emptied via:
Internet Explorer--Tools--Internet Options--General tab--"Delete Files",
Also tick the "delete all offline content" box .
« Last Edit: April 24, 2006, 09:15:24 AM by Pancake » Logged

An Australian Member of

EDDY
Pages: [1] Go Up Print 
 
Jump to:  

Powered by MySQL Powered by PHP

Powered by SMF 1.1.21 | SMF © 2015, Simple Machines

Valid XHTML 1.0! Valid CSS!

Disclaimer
This site is NOT responsible for any damage that the information on this site may cause to your system. Everything you try, whether inspired by the response given from this site or not, is entirely at your own risk. All product names and company names used herein are for identification purpose only and may be trademarks or registered trademarks of their respective owners. We are in no way affiliated or representing any of the companies on this site unless specified.
Back to Top
Stop Spam Harvesters, Join Project Honey Pot Fight Back Against Spammers! Get Firefox! Get Thunderbird! View Sylvain Amyots profile on LinkedIn
Back to Top
Google visited last this page November 25, 2018, 05:39:29 PM