[Spleenharvester]

Hi,
I don't know what they are, I've had a few folders I haven't made pop up, and spyware doctor found some advertising cookies and 5 of something called 'known_bad_sites' security threat. I got a little worried, so that's why I'm asking. Here are my HJT logs and DSS logs (I can't get CF to work). Thanks

[evilfantasy]

Uninstall
FunWebProducts
MyWebSearch
And any of the Screensavers that were installed from the web. These are loaded with spyware and should be avoided at all costs.

What about the logs from ESET and AVG Antissssspyware?

[Spleenharvester]

Doing my AVG logs now, I'll upload in a minute (make that a few, it's taking its time). How do I remove screensavers?

EDIT:22 infections detected by AVG so far.

P.S.What is ESET?

[evilfantasy]

Quote:

Originally Posted by Spleenharvester

How do I remove screensavers?

Add/remove programs.

Quote:

Originally Posted by Spleenharvester

P.S What is ESET?

STEP 3: of the removal guide.

There is no need to rush logs as each one becomes ready. The removal guide is designed to be worked in the order it is written. Doing things out of step is counter productive.

[Spleenharvester]

AVG found a load of cookies (and 2 traces) which it deleted.

[evilfantasy]

Quote:

Originally Posted by Spleenharvester

AVG found a load of cookies (and 2 traces) which it deleted.

Can you post the log?

How about the ESET log and then a new Hijackthis log.

[Spleenharvester]

Where will I find the log? If it's the report thing I set it to save one but it didn't. I'll upload a some logs in a minute. ESET online found 1 cookie which was deleted.

[evilfantasy]

A log is created in C:\Program Files\EsetOnlineScanner\log.txt


Open Hijackthis and select Do a system scan only then place a check mark next to

• O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL (file missing)
• O8 - Extra context menu item: &Search - http://edits.mywebsearch.com/toolbar...tml?p=ZRfox000

Close all browser windows except Hijackthis and click Fix checked.

----------

Download and install CleanUp!.exe

Open Cleanup! by double-clicking the icon on your desktop (or from the Start > All Programs menu).
Set the program up as follows:

• Click Options...
• Make sure the arrow is set to Standard CleanUp!
• Uncheck the following: (if checked)
  • Delete Newsgroup cache
  • Delete Newsgroup Subscriptions
• Click OK

Click the CleanUp! button to start the program. Reboot/logoff when prompted.

Note: CleanUp! deletes EVERYTHING out of your temp/temporary folders, it does not make backups. If you have any documents or programs that are saved in any Temporary Folders, please make a backup of these before running CleanUp! If you have a 64 bit Operating System do NOT run Cleanup and let me know as we will use another utility

----------

How is the computer now?

[Spleenharvester]

O3 disappeared and 09 has been deleted, doing the cleanup.exe thing now...
The computer is a lot better but still is slow (could just be me though)
I am doing another scan because the log has been overwritten by the looks of it, it's a DSS log.

[evilfantasy]

Is everything malware related seem cleared up?

Let's clear out the programs we've been using to clean up your computer, they are not suitable for
general malware removal and could cause damage if launched accidentally.

Download OTMoveIt2 by OldTimer OTMoveIt2.exe and place it on your desktop.

1. Double click OTMoveIt2.exe to launch it.
2. Click on the CleanUp! button.
3. OTMoveIt2 will download a list from the Internet, if your firewall or other defensive programs alerts you, allow it access.
4. Click YES at the next prompt (list downloaded, Do you want to begin cleanup process?)

• When finished exit out of OTMoveIt2

[Spleenharvester]

It now seems to be working fine.

Thanks very much for all the help

[Howard]

If you have no further questions could you please mark this topic Solved by going to the top of this thread and click Thread tools, then select Mark this thread as solved As seen in the image below:

If you need this thread re-opened please contact a moderator or PM me.

Regards Howard

This thread is for the use of Spleenharvester only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our malware Removal forum.