Hi
Please download ATF Cleaner by Atribune and save
it to desktop. Don't use it yet.
Double-click ATF-Cleaner.exe to run the program.
Under Main choose: Select All
Click the Empty Selected button.
If you use Firefox browser
Click Firefox at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
If you use Opera browser
Click Opera at the top and choose: Select All
Click the Empty Selected button.
NOTE: If you would like to keep your saved passwords, please click No at the prompt.
Click Exit to close ATF-Cleaner.
Delete these:
C:\net.exe
C:\oo.exe
C:\Program Files\HijackThis\backups\backup-20070415-223213-340.dll
C:\Program Files\Internet Explorer\msimg32.dll
Empty Recycle Bin
Upload this file -> C:\Program Files\MSN Messenger\msnmsgr.exe to VirusTotal
Re-scan with kaspersky
Post:
- a fresh HijackThis log
- kaspersky report
- VirusTotal results