Sponsored By

jwbirdsong

Trusted Helpers
  • Content Count

    262
  • Joined

  • Last visited

About jwbirdsong

  • Rank
    Slasher O' Spyware
  • Birthday 08/02/1957

Contact Methods

  • Website URL
    http://
  • ICQ
    0

Recent Profile Visitors

5972 profile views
  1. jwbirdsong

    Hjt Log - Help Me Please!

    Please download OTCleanIt and save it to Desktop. Make sure you have internet connection.. Double-click OTCleanIt.exe Click the CleanUp! button. Select Yes when the "Begin cleanup Process?" prompt appears. If you are prompted to Reboot during the cleanup, select Yes Please read these excellent articles by miekiemoes : Help! My computer is slow! How to prevent Malware
  2. Please visit the webpage HERE for instructions for downloading and running ComboFix. Post the log from ComboFix once you done that.
  3. jwbirdsong

    Ongoing Problems

    I was hoping that would be the case. Using Internet Explorer please do an online scan with Kaspersky Online Scanner Click on Kaspersky Online Scanner Click "I accept" You will be prompted to install an ActiveX component from Kaspersky, Click Yes. The program will launch and then start to download the latest definition files. Once the scanner is installed and the definitions downloaded, click Next. Now click on Scan Settings In the scan settings make sure that the following are selected: Scan using the following Anti-Virus database: Extended (If available otherwise Standard) [*]Scan Options: Scan Archives Scan Mail Bases [*]Click OK [*]Now under select a target to scan select My Computer [*]The scan will take a while so be patient and let it run. Once the scan is complete it will display if your system has been infected. [*]Now click on the Save report button. [*]Call it Kaspersky.txt [*]Expand the arrow beside "file types" and save as .txt file. [*]Save the file to your desktop. [*]Copy and paste that information in your next post. *Note If you have Internet Explorer 7 installed: If you have trouble getting past the initial download you may need to use the "zoom" tool at bottom right of the scanner window and increase it to 125% to see and press the "accept" button. Page will reload and you should be able to carry on scan. If the KAV log has your email all over it -- please attach it rather than copy/paste. Run a fresh Combofix log Post [*]KAV results[*]Combofix log in your next reply.
  4. jwbirdsong

    Hjt Log - Help Me Please!

    Logs looking LOTS better. Are you still getting redirects/blocked sites? You seem to have 2 AV running at one. One is a MUST but two can/will lead to problems. If you wish to use AVG and Norton360..make sure Norton AV is disable. This could have been some of the blocked site issue. No overt sign of any malware left but the log is wayy old...my fault. Please post Fresh HJT Fresh OTViewIt description of any problems issues you are still having in your reply
  5. jwbirdsong

    Ongoing Problems

    Sorry your post has sat unanswered for so long .For a variety of reasons I've been unable to reply. I will post as soon after work today as possible
  6. jwbirdsong

    Hjt Log - Help Me Please!

    Sorry your post has sat unanswered for so long .For a variety of reasons I've been unable to reply. I will post as soon after work today as possible
  7. jwbirdsong

    Hijackthis Log[RESOLVED]

    Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.
  8. jwbirdsong

    Hijackthis Log[RESOLVED]

    Ok i'll leave this open a few days incase anything pops up... I'm also going to forgo the "Normal" You are clean/closing speech as I'm sure you've read a few hundered on here by now.
  9. jwbirdsong

    Hijackthis Log[RESOLVED]

    Sorry I've since changed my speech for OtMoveit3. They are located in C:\_OTMoveIt\MovedFiles\ Files are named by date/time you ran the tool. I have no reason to suspectg it didn't work as it should, and always does. Everything is looking real good. Any other issues?? Just as a point of fact the entries in HJT O4 - Startup: OpenOffice.org 2.4.lnk = C:\Program Files\OpenOffice.org 2.4\program\quickstart.exe O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE Are all (very) un-necessary for startup. Checking them and fix w/ HJT may show a considerable improvment in start time/preformance. Office (both MS and Sun) as well as adobe can simply be opened as needed, saving those resource for other programs.
  10. jwbirdsong

    Hjt Log - Help Me Please!

    Please download the OTMoveIt3 by OldTimer. Save it to your desktop. Please click OTMoveIt3 and then click >> run. Copy the lines in the codebox below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy): :files C:\WINDOWS\System32\uniq.tll C:\WINDOWS\System32\frmwrk32.exe C:WINDOWS\System32\pcload.exe C:\Documents and Settings\tom 1\Desktop\kjgjo.exe C:\Documents and Settings\tom 1\Desktop\SDFix.exe C:\WINDOWS\System32\*.tmp C:\WINDOWS\*.tmp :reg [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Framework Windows"=- :Commands [EmptyTemp] [Reboot] Return to OTMoveIt3, right click in the "Paste Instructions for items to be Moved" window (under the yellow bar) and choose Paste. Click the red Moveit! button. Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply. Close OTMoveIt3 Note: If an item cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. After rebooting please run the F-Secure Online Scanner Note: This Scanner is for Internet Explorer Only! Click on the Start Scanning button at bottom of page. Accept the License Agreement and the ActiveX install. Once the ActiveX installs,Click Full System Scan Once the download completes,the scan will begin automatically. The scan will take some time to finish,so please be patient. When the scan completes, click the Automatic cleaning (recommended) button. Click the Show Report button and Copy&Paste the entire report to your Desktop for posting. Please post C:\_OTMoveIt\MovedFiles\date_time_ran_OtMoveIt.log F-Secure log New OtViewIt logs(s) in your reply here.
  11. jwbirdsong

    Ongoing Problems

    Yeah you've got some ugly infections w/ some probably renamed files. Let's sort this out efficently. Please go HERE and follow the directions for Downloading and running Combofix. Post it's log once done.
  12. jwbirdsong

    Ongoing Problems

    Step 1 Please download ATF Cleaner by Atribune. Double-click ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. If you use Firefox browser Click Firefox at the top and choose: Select All Click the Empty Selected button. NOTE: If you would like to keep your saved passwords, please click No at the prompt. If you use Opera browser Click Opera at the top and choose: Select All Click the Empty Selected button. NOTE: If you would like to keep your saved passwords, please click No at the prompt. Click Exit on the Main menu to close the program. Step 2 Download OTViewIt to your desktop. Close all windows and open it Click Run Scan and let the program run uninterrupted It will produce two logs for you, one will pop up called OTViewIt.txt, the other will be saved on your desktop and called Extras. Post both those logs here. You can ATTACH both of these if needed. You may need to use two posts to get it all on the forum or ATTACH OTviewit logs Please post OTViewIt logs in your reply. You can ATTACH one if needed. EDIT: IMMEDIATLY after a reboot try MBAM again and npost a log from that if able.
  13. jwbirdsong

    Tdssxfum

    Please visit the webpage HERE for instructions for downloading and running ComboFix. Post the log from ComboFix once you done that.
  14. jwbirdsong

    Can't Remove Spyware Guard 2008

    Please visit the webpage HERE for instructions for downloading and running ComboFix. Post the log from ComboFix once you done that.
  15. Step 1 Please download ATF Cleaner by Atribune. Double-click ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. If you use Firefox browser Click Firefox at the top and choose: Select All Click the Empty Selected button. NOTE: If you would like to keep your saved passwords, please click No at the prompt. If you use Opera browser Click Opera at the top and choose: Select All Click the Empty Selected button. NOTE: If you would like to keep your saved passwords, please click No at the prompt. Click Exit on the Main menu to close the program. Step 2 Download Malwarebytes' Anti-Malware from Here or Here Double Click mbam-setup.exe to install the application. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version. Once the program has loaded, select "Perform Quick Scan", then click Scan. The scan may take some time to finish,so please be patient. When the scan is complete, click OK, then Show Results to view the results. Make sure that everything is checked, and click Remove Selected. When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note) The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM. Copy&Paste the entire report in your next reply along with a the following log. Step 3 Download OTViewIt to your desktop. Close all windows and open it Click Run Scan and let the program run uninterrupted It will produce two logs for you, one will pop up called OTViewIt.txt, the other will be saved on your desktop and called Extras. Post both those logs here. You may need to use two posts to get it all on the forum