I will just answer my own questions I suppose. First off all, you have some infections that I have not seen in a while. You have spywareQuake and CWS.
Step1
We are going to download the first set of programs we will be using.
Download:
- Please download LSPFix from HERE.
- Download CWShredder from HERE to its own folder.
Update CWShredder
* Open CWShredder and click I AGREE
* Click Check For Update
* Close CWShredder
- Download Smitfraudfix by S!ri from HERE
--------------------------------------------------------------
Step 2
********PRINT OR SAVE THIS SECTION TO A NOTEPAD FILE ON YOUR DESKTOP TO HAVE WHILE IN SAFE MODE**************
Boot into Safe Mode
- Restart your computer and start pressing the F8 key on your keyboard.
- Select the Safe Mode option when the Windows Advanced Options menu appears, and then press ENTER.
------------------------------------------
Run Smitfraudfix
- Double-click SmitfraudFix.exe
- Select 2 and hit Enter to delete infected files.
- You will be prompted: Do you want to clean the registry ? answer Y (yes) and hit Enter in order to remove the Desktop background and clean registry keys associated with the infection.
- The tool will now check if wininet.dll is infected. You may be prompted to replace the infected file (if found): Replace infected file ? answer Y (yes) and hit Enter to restore a clean file.
- A reboot may be needed to finish the cleaning process. The report can be found at the root of the system drive, usually at C:\rapport.txt, attach it here at the end.
-----------------------------------------------------------
Still in safe mode
Run CWShredder
Now run CWShredder. Click I Agree, then Fix and then Next, let it fix everything it asks about. Reboot your computer into normal windows.
-----------------------------------------------------------
Step 3
Now you are back in normal mode
LSP fix
A .DLL file is disrupting the LSP chain on your computer. We need to get rid of it.
- Run the LSPFix.exe that you downloaded in step 1
- Check the I know what I'm doing box.
- In the Keep box you should see one or more instances of mdnsnsp.dll
- Select every instance of mdnsnsp.dll and move each one to the Remove box by clicking the >> button.
- When you are done click Finish>>.
-------------------------------------------------------
Run a new scan with Hijackthis and in your reply I want to see:
1)C:\rapport.txt from smitfraudfix
2)Fresh Hijackthis after following everything else