Hi,

For the past month or so, when i use the google search engine and click a link, it add additional code to the link and it leads to that "cannot find server" screen, where i then have to delete the additional code in order for the website to work.

This is the code of url i get when i click a lonk on google,

http://www.google.com/pagead/iclk?ad...K0RWWEE6TsgBAQ

is anyone else experiencing this problem?? :cry:

Hmm, I don't get this problem... I go straight to the page...

:-) Hi Allvogue,

Could you please post an HJT log in case malware is the culpret? If you don't have it you can download it from my signature. Please make sure that all files and folders are showing (in Windows Explorer, click Tools, Folder Options, View, Show all Hidden Files and Folders), then install HijackThis into its own folder and run it using the top option. Save the log to your desktop and Attach the log at the bottom of your post.

Look forward to your reply,

TTFN

T

Hi,

thanks for your help, I attahced the hijack log file.

Cheers

Attached Files

hijackthis.txt (9.1 KB, 3 views)

Hya allvogue , lets clean that up.


Before using Hijack This Can you please do this for me:


Show hidden files and folders:

For 98/2000/ME:

1.double-click the My Computer icon
2.Click on the View menu, click Folder Options
3.Advanced Settings box, under the "Hidden files" folder, click Show all files.
4.If you see a warning message, click Yes.
5.Click Apply.
6.Click OK.

Download Ccleaner from here.

Boot in safe mode (hit f8 when booting up) and fix these with Hijackthis:

Then run Ccleaner and reboot in normal mode.

Now run atleast one online A.V. scan , see for a link for free online scans below.
And also run stinger from here.

And the give Ewido a try:

Please download ewido Security Suite [*]Install ewido security suite [*]When installing, under "Additional Options" uncheck "Install background guard" and "Install scan via context menu." [*]Launch ewido, there should be a big "E" icon on your desktop, double-click it. [*]The program will prompt you to update click the "OK" button [*]The program will now go to the main screen

You will need to update ewido to the latest definition files.
[*]On the left hand side of the main screen click update [*]Click on Start

The update will start and a progress bar will show the updates being installed. After the updates are installed, exit ewido.

Once the updates are installed do the following:
[*]If you have an "always on" connection to the internet, physically disconnect that connection until you are finished with Safe Mode and have rebooted back into normal mode.
[*]Reboot into Safe Mode, you can do this by restarting your computer, then contiunally tapping F8 until a menu appears. Use your up arrow key to highlight Safe Mode, then hit enter. Then, run ewido.
[*]Close all open windows/programs/folders. Have nothing else open while ewido performs its scan!
[*]Click on scanner [*]Click on Settings[*]Under "How to scan" all boxes should be selected [*]Under "Possibly unwanted software" all boxes should be selected [*]Under "What to scan" select scan every file [*]Click OK[*]Click on Complete system scan [*]Let the program scan the machine
[*]If ewido finds anything, it will pop up a notification. NOTE: We have been finding some cases of false positives with the new version of Ewido, so we need to step through the fixes one-by-one. If Ewido finds something that you KNOW is legitimate (for example, parts of AVG Antivirus, AOL, pcAnywhere and the game "Risk" have been flagged. In particular, watch for alerts that have the word "Heuristic" in them - if you recognize the file name as "friendly," these may actually be false positives) select "none" as the action. DO NOT check "Perform action with all infections." If you are unsure of an entry, select "none" for the time being. I'll see that in the log you will post later and let you know if ewido needs to be run again.

Once the scan has completed, there will be a button located on the bottom of the screen named Save report.
[*]Click Save report [*]Save the report to your desktop [*]Exit ewido

After that please post the Ewido log and a new hjt log.