Member Panel

joe5

Please download CCleaner

Boot youre pc in safemode (hit f8 when booting up) and then fix these with hijackthis:

O2 - BHO: (no name) - {34a45b2c-39cf-4dfe-9349-d821be7b3f91} - (no file)
O2 - BHO: (no name) - {5C8B2A36-3DB1-42A4-A3CB-D426709BBFEB} - (no file)
O2 - BHO: CWebDirObj Object - {C003C49F-53E4-4A72-B7D6-0B2B9997392F} - C:\WINNT\webdir.dll (file missing)
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O3 - Toolbar: (no name) - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - (no file)
O4 - HKLM\..\Run: [StillImageMonitor] C:\W
O4 - HKLM\..\Run: [ScanRegistry] C:\W
O4 - Startup: PowerReg Scheduler.exe
O21 - SSODL: SysTray - {34a45b2c-39cf-4dfe-9349-d821be7b3f91} - (no file)
O23 - Service: MicroSoft Media Tools - Unknown owner - C:\WINNT\MSmedia.exe (file missing)

Manually delete the files in bold (if present) , and then run Ccleaner.

Now reboot to normal mode and download the Hoster from here. Press "Restore Original Hosts" and press "OK". Exit Program. This will restore the original Hosts file.

After that please do a search for these files on youre pc:

AntiLogger.dll
33ged.dll

And then upload them one by one to this site:

http://www.virustotal.com/flash/index_en.html

And report back the results please.

Also run a new hjt scan (in regular mode , not safemode) and post the log please.

yoyo

joe still the message of MICROSOFT VIRTUAL C++ appear

when i try to run ccleaner i get error run time error 0

there s somthing which prevent programs from runing properly

#cuerpo { position: relative; margin: 0; padding: 0 0 0 5px; font-family: Verdana, Arial; font-size:12px; line-height: 14px; color: black; text-align: justify; font-weight: none;}#resultados { position: relative; width: 100%; border-style: solid; border-width: 1px;}#resultados thead td { background: lightgray; color: #555555; font-weight: bold; text-indent: 3px;}#resultados tbody td { font-weight: none; text-indent: 2px;}#info { position: relative; color: #444444; font-family: Verdana, Arial; font-size:9px; font-weight: bold;}
This is a report processed by VirusTotal on 03/16/2006 at 21:20:04 (CET) after scanning the file "AntiLogger.dll" file.
AntivirusVersionUpdateResultAntiVir6.34.0.5303.16. 2006no virus foundAvast4.6.695.003.16.2006no virus foundAVG71803.16.2006no virus foundAvira6.34.0.5303.16.2006no virus foundBitDefender7.203.16.2006no virus foundCAT-QuickHeal8.0003.14.2006no virus foundClamAVdevel-2006012603.16.2006no virus foundDrWeb4.3303.16.2006no virus foundeTrust-InoculateIT23.71.10303.16.2006no virus foundeTrust-Vet12.4.212103.16.2006no virus foundEwido3.503.16.2006no virus foundFortinet2.71.0.003.16.2006no virus foundF-Prot3.16c03.16.2006no virus foundIkarus0.2.59.003.16.2006no virus foundKaspersky4.0.2.2403.16.2006no virus foundMcAfee472003.16.2006no virus foundNOD32v21.144603.16.2006no virus foundNorman5.70.1003.16.2006no virus foundPanda9.0.0.403.16.2006no virus foundSophos4.03.003.16.2006no virus foundSymantec8.003.16.2006no virus foundTheHacker5.9.5.11403.15.2006no virus foundUNA1.8303.16.2006no virus foundVBA323.10.503.16.2006no virus found
VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.

joe5

This file wasn't present on youre pc?

33ged.dll

If it is present then please also upload it like that other file and report back the result. If it is not present , then boot in safemode and fix this line with hjt:

O20 - Winlogon Notify: iexplore - 33ged.dll (file missing)

Then reboot and see if the problem is still there , if it is give this a try:

go to start / run and in the run window type in:
sfc /scannow >enter
Have you windows CD in youre drive, and it'll run itself, replacing any missign or damaged protected windows files.

yoyo

thank u joe5 fix the file but the problem still exist

my windows 2000 disc is damged

i dont know what to do

joe5

Can you do a Panda AV scan here:

http://www.pandasoftware.com/products/activescan

And post the log from it.

And also update windows here:

http://update.microsoft.com/windowsu...ult.aspx?ln=en

yoyo

panda sa malicious software found

joe5

Have a look in add/remove programs for Hyperbar , Startnow ToolBar and/or Warez P2P Client and uninstall if present.

Download Smitrem to your desktop:
http://noahdfear.geekstogo.com/click...click.php?id=1

Run the installer and then press Start to Extract the
files to the desktop, Do not run it yet.

Reboot into safe mode (Reboot and keep tapping F8 , then
choose safe mode from the list)

Run SmitRem:

Open the SmitRem folder and double click the "RunThis.bat" file to start the tool. Follow the prompts on screen , wait for the tool to complete , and disk cleanup to finish.

The tool will create a log named smitfiles.txt on the drive that you ran Smitrem on, eg; "C:smitfiles.txt" , or the partition where your operating system is installed on.
Please attach this log to your next reply.

Manually find and delete these files and folder:
(also search for "hidden" and "system" files)(if still present)

C:\xxx.exe
C:\WINNT\Installer\30ad65.msi
C:\Program Files\Warez P2P Client

You will need to reload your wallpaper as the SmitRem
tool will reset it, you can do this by right clicking
desktop and choosing properties, First check Theme and
set it to Windows XP then click the Desktop tab and
choose the one you want to use and press apply.

When done , please post the smitrem log.

Member Panel

Sponsors and Ads

Noticeboard