Login 
 Search | |
| |
20-Sep-2004, 05:00 PM
#1 | |||||
 Help with hijack this log |
| |
20-Sep-2004, 08:16 PM
#3 | |||||
| Hi Compsucks Welcome to TSG!  First go to Add/Remove programs and uninstall New.Net (NewDotNet) and WebHancer. Restart your computer after each uninstall. Click here to download the LOP uninstaller. Close all browser windows and run the uninstaller. When it is finished restart your computer. Go here and download Adaware SE. Install the program and launch it. First in the main window look in the bottom right corner and click on Check for updates now then click Connect and download the latest reference files. From main window :Click Start then under Select a scan Mode tick Perform full system scan. Next deselect Search for negligible risk entries. Now to scan just click the Next button. When the scan is finished mark everything for removal and get rid of it.(Right-click the window and choose select all from the drop down menu and click Next) Restart your computer. Come back here and post another Hijack This log and we'll get rid of what's left.
__________________ If I have helped solve your problem, please Click Here and make a donation to help keep this great site running. 100% goes directly to this site. |
22-Sep-2004, 09:19 AM
#6 | |||||
| Sorry I missed your post yesterday!  Run Hijack This again and put a check by these. Close ALL windows except HijackThis and click "Fix checked" R3 - URLSearchHook: (no name) - {8952A998-1E7E-4716-B23D-3DBE03910972} - (no file) F2 - REG:system.ini: UserInit=C:\WINNT\system32\Userinit.exe O2 - BHO: (no name) - {A2BB561B-C26E-4D2A-AC91-B61655065962} - (no file) O2 - BHO: C:\WINNT\lbbho.dll - {E2C29567-1040-4A91-AFCC-6ABCC5AD5FC7} - C:\WINNT\lbbho.dll O3 - Toolbar: (no name) - {0494D0D9-F8E0-41ad-92A3-14154ECE70AC} - (no file) O4 - HKLM\..\Run: [Testing 123] C:\WINNT\system32\aightn.exe O4 - HKLM\..\Run: [OSS] c:\winnt\system32\ossproxy.exe -boot O4 - HKLM\..\Run: [Microsoft Synchronization Manager] wetwork.exe O4 - HKCU\..\Run: [RiskII.exe] C:\RISKII~1.EXE /r O4 - HKCU\..\Run: [Microsoft Synchronization Manager] wetwork.exe O4 - Startup: PowerReg Scheduler.exe Restart to safe mode. How to start your computer in safe mode First in safe mode click on My Computer then click Tools > Folder Options. In Folder options click on the View tab. Under Files and Folders tick "Show hidden files and folders" then uncheck "Hide file extensions for known file types" and uncheck "Hide protected operating system files (recommended)". Now click "Like current folder" then "Apply" and "OK" Now find and delete these files: C:\WINNT\system32\aightn.exe c:\winnt\system32\ossproxy.exe c:\winnt\system32\wetwork.exe Also in safe mode navigate to the C:\Windows\Temp folder. Open the Temp folder and go to Edit > Select All then Edit > Delete to delete the entire contents of the Temp folder. Go to Start > Run and type %temp% in the Run box. The Temp folder will open. Click Edit > Select All then Edit > Delete to delete the entire contents of the Temp folder. Finally go to Control Panel > Internet Options. On the General tab under "Temporary Internet Files" Click "Delete Files". Put a check by "Delete Offline Content" and click OK. Click on the Programs tab then click the "Reset Web Settings" button. Click Apply then OK. Empty the Recycle Bin Go here and do an online virus scan. Be sure and put a check in the box by "Auto Clean" before you do the scan. If it finds anything that it cannot clean have it delete it or make a note of the file location so you can delete it yourself.
__________________ If I have helped solve your problem, please Click Here and make a donation to help keep this great site running. 100% goes directly to this site. |
 |
| |
| Currently Active Users Viewing This Thread: 1 (0 members and 1 guests) | |
| Thread Tools | |
| |
| You Are Using:  |
Advertisements do not imply our endorsement of that product or service. All times are GMT -4. The time now is 02:18 AM. Copyright © 1996 - 2011 TechGuy, Inc. All rights reserved. |  |
Facebook
Twitter
TechGuy.tv
TSG Mobile