Delete all files in AVG Antispyware quarantine.
You have not renamed HijackThis_v2.exe as per the instructions. Please do so, before posting any further HJT logs.
Click start/run and type services.msc into the run box and press the enter key.
When the window appears, maximise it. Double click on the following services(
if there) and select stop if they are running. Set the startup type to disabled. Click apply/ok for each service you disable.
WEP/WPA-PMK key recovery service (WZCOOK)
Close the services window.
Open notepad and copy/paste the text in the code box below into it:
NOTE* make sure to only highlight and copy what is inside the quote box nothing out side of it.
Also ..
Pay particular attention to this :-
Make sure the word File:: is on the first line of the text file you save (no blank line above it, & no space in front of it)
Code:
File::
C:\WINDOWS\movctrlnkd.dll
C:\windows\ALCMTR.EXE
C:\WINDOWS\ocgrep.dll
C:\WINDOWS\bxsbang.dll
C:\WINDOWS\privacy_danger\index.htm
Folder::
C:\WINDOWS\privacy_danger
Save this as
CFScript.txt
Then drag the CFScript.txt into ComboFix.exe as you see in the screenshot below.
This will start ComboFix again. After reboot, (in case it asks to reboot), post the contents of Combofix.txt in your next reply together with a fresh HJT log.
Regards Howard
This thread is for the use of A1181899 only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.