hi... you need to run Ad-aware
http://www.lavasoft.de ....
PTsnoop is spyware.... uncheck it in msconfig/startup
uncheck MS MONEY too... you don't need that to start when you reboot your PC
Do you know what this is?CountrySelection Registry (Machine Run) pctptt.exe
if not uncheck it as well as uncheck anything you don't need to open when you reboot
ok flybynight ........ after you finish running the spyware scanner I suggest you cleanup your system... check this out...
http://www.piersontech.com/07-CleanHardDrive.htm
when you have finished that reboot into safe mode & run your scan disk & defrag
That should take care of it well... Post back & let us know please.
oops... you said you have Ad-Aware ... I missed it. Do you have the latest version?
this is what I found on
PTSnoop........ Two descriptions I've come across - both valid as far as I can see :-
(1) Program installed with some modems that monitors the COM ports for the modem driver. Not needed from what I've read - may need a registry edit to get rid of it
(2) Backdoor trojan virus that copies itself as PTSNOOP.EXE -see here for more info...
read this
http://www.f-secure.com/v-descs/ptsnoop.shtml
Ptsnoop is a simple backdoor program written in Visual Basic. Being activated it first looks for active RAS connections and exits immediately if none is found.
If a connection is present, the backdoor installs itself to system by copying itself as PTSNOOP.EXE file to \Windows\System\ directory and modifying WIN.INI file. The backdoor adds its execution string after LOAD= variable in [Windows] section of WIN.INI file. Diring this operation WIN.INI file gets copied to WIN.ANA file, the backdoor's execution st ring is then added and WIN.INI file is deleted. Then WIN.ANA file is renamed to WIN.INI file. This way the backdoor will become active every time Windows starts. .................................etc...............
Considered a Trojan Virus
, this backdoor should be deleted from a system and WIN.INI file should be cleaned from backdoor's execution string after LOAD= variable