Hy there SilferFinder , welcome to PCHF.
Lets see if we can clean that right up.
Set "hidden files and folders" to show:
For XP:- On the Tools menu in Windows Explorer, click Folder Options.
- Click the View tab.
- Under Hidden files and folders, click Show hidden files and folders.
- If you see a warning message, click Yes.
- Click Apply.
- Click OK.
Disable System Restore to prevent re-infection.
(If you have/use it. You can turn it back on when youre PC is clean).
How to disable system restore:
WinXP.- Click the Start button.
- Right-click My Computer, and then click Properties.
- On the System Restore tab, check Turn off System Restore or Turn off System Restore on all drives.
Please download
ATF-Cleaner.
Then boot in safemode (hit f8 when booting up) and fix these entry's with hijackthis:
F2 - REG:system.ini: Shell=explorer.exe,settmpui.exe
F2 - REG:system.ini: UserInit=C:\WINDOWS\SYSTEM32\Userinit.exe,C:\WINDO WS\system32\settmpui.exe
O2 - BHO: (no name) - {196B9CB5-4C83-46F7-9B06-9672ECD9D99B} - C:\WINDOWS\system32\winbrume.dll
O4 - HKLM\..\Run: [ Media] C:\WINDOWS\system32\settmpui.exe
O4 - HKCU\..\Run: [ Media] C:\WINDOWS\system32\settmpui.exe
O21 - SSODL: Protocol Player - {09671528-1F9C-472D-AEA7-71B96B9C60AA} - C:\WINDOWS\system32\auditmsg.dll
Now manually delete the files in bold , and run ATF-Cleaner:
First check "Select All" , and then remove the tick infront of "History".
Finally click Empty Selected. When you get the "Done Cleaning" message, click OK.
Reboot youre pc and post a new
hjt log please.
[Fixed] please help I have something amiss here
PC Help Forum
» Security & Safety
» [Fixed] Hijackthis! Logs
»
[Fixed] please help I have something amiss here
Linear Mode
