TechSpot

HiJackThis Log File!!!!

By Mattiecola
Jan 17, 2006
  1. Im pretty sure that I have done this the right way so if you could please take a look at this.
     
  2. Mattiecola

    Mattiecola TS Rookie Topic Starter

    why does no one want to help me out.... :evil: :evil:
     
  3. howard_hopkinso

    howard_hopkinso TS Rookie Posts: 24,177   +19

    Hello and welcome to Techspot.

    Boot into safe mode, and turn off system restore.

    Go to add remove programmes in your control panel and uninstall anything to do with the following.

    C:\Program Files\SpywareStrike\SpywareStrike.exe /h
    C:\Program Files\MediaGateway\MediaGateway.exe
    C:\Program Files\Security Toolbar\Security Toolbar.dll

    Next. Open your task manager, click on the processes tab, and end process for(if there)

    SpywareStrike.exe
    MediaGateway.exe
    nvctrl.exe

    Close task manager.

    Run HJT with no other programmes open, and let HJT fix the following(if there)

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ef.engr.utk.edu/ef152-2006-01
    O2 - BHO: Restorator - {e0103cd4-d1ce-411a-b75b-4fec072867f4} - C:\WINDOWS\System32\hp8C6A.tmp

    O3 - Toolbar: CM Band - {159C2E51-9823-11D2-8DDC-D84A1B4ACD4D} - C:\Program Files\Crystalys media\cm.dll (file missing)
    O3 - Toolbar: SecurityToolbar - {736b5468-bdad-41be-92d0-22ae2ddf7bcb} - C:\Program Files\Security Toolbar\Security Toolbar.dll

    O4 - HKLM\..\Run: [MediaGateway] C:\Program Files\MediaGateway\MediaGateway.exe
    O4 - HKLM\..\Run: [SpywareStrike] C:\Program Files\SpywareStrike\SpywareStrike.exe /h


    O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} (Yahoo! Audio Conferencing) - http://download.games.yahoo.com/games/voice/yacscom.cab
    O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/12f736ec08417b2c0f03/netzip/RdxIE601.cab
    O16 - DPF: {8FCDF9D9-A28B-480F-8C3D-581F119A8AB8} (MediaGatewayX) - http://static.zangocash.com/cab/Seekmo/ie/bridge-c266.cab

    Close HJT.

    Delete the following bold files(if there)

    C:\Program Files\SpywareStrike\SpywareStrike.exe /h
    C:\Program Files\MediaGateway\MediaGateway.exe
    C:\Program Files\Security Toolbar\Security Toolbar.dll
    C:\WINDOWS\System32\hp8C6A.tmp
    C:\WINDOWS\System32\nvctrl.exe

    Now reboot into normal mode, and turn system restore back on.

    Your Windows version is completely unpatched.

    Run the Windows updates, and install at least service pack 1, but preferably service pack 2.

    Regards Howard :wave: :wave:
     
  4. Mattiecola

    Mattiecola TS Rookie Topic Starter

    Thank you sooo much~! That seemed to have taken care of things and i cannot thank you enough!
    Yee Haw~~!!
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...