Hi oreida,
Do you have Norton installed and if so was it just turned off?
You really need to sort out the amount of stuff on your computer,
Create an uninstall list
- Launch Hijackthis
- Click the Open the Misc Tools section button
- Click the Open Uninstall Manager button.
- Click the Save list button.
- Attach this log in your next post
Create a startup list
- Launch Hijackthis
- Click the Open the Misc Tools section button
- Check both boxes next to Generate StartupList log
- Click the Generate Startuplist Log button.
- Attach this log in your next post
Open HijackThis and select do a system scan only,
Put a check next to the following entries,
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - Global Startup: SetPoint.lnk = ?
Close all browsers and windows except HijackThis and select fix checked.
Please go to
Virus Total or
Jotti and upload
C:\WINDOWS\system32\kdusac\smss.exe for scanning.
For Virus Total
- Please copy and paste C:\Windows\system32\wininit.exe in the text box next to the Browse button.
- Click on Send File.
For Jotti
- Please copy and paste C:\Windows\system32\wininit.exe in the text box next to the Browse button.
- Click on Submit.
Let me know the results.
Please go to
Kaspersky website and perform an online antivirus scan.
Please use Internet Explorer as it uses ActiveX.
- Read through the requirements and privacy statement and click on Accept button.
- It will start downloading and installing the scanner and virus definitions. You will be prompted to install an ActiveX from Kaspersky. Click Yes.
- When the downloads have finished, click on Next button.
- Click on Scan Settings button.
- Select extended under Scan using the following antivirus database:
- Check (tick) these boxes under Scan options:
- Scan Archives
- Scan Mail Bases
- Click OK
- Click on My Computer under Please select a target to scan:
- Once the scan is complete it will display if your system has been infected. Click on Save as text button and save it to your desktop.
- Attach this log in your next reply.
Navigate to
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe and right click on
HijackThis.exe and rename it to
crusty.exe then send a shortcut to the desktop.
Right click on the crusty shortcut and run as administrator, select do a system scan and save a log file. Post the log as an attachment back here.
In your next reply you should post,
1)HJT unistall list
2)HJT start up list
3)New HJT log
4)Results of virus total and Jotti
5)Kaspersky report
This thread is for the use of oreida only.
Please don't post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.