Thanks for returning your HJT logs...
C:\Program Files\Java\jre1.6.0_03\ <<< Java needs and update, ses this:
http://forums.spybot.info/showpost.php?p=12880&postcount=2
codys account
1) Go to start > control panel > Display properties > Desktop > Customize Desktop... > Web tab
Select "Privacy Protection" you find in there and press the delete button on the right.
Hit ok below > apply in previous window.
Let me know if that solved your issue.
2) Windows Defender's job is to block changes, you may have to turn it off to complete the HJT removal?
3) Open HijackThis and choose "Do a system scan only" then check the box in front of these line items:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php...MjI6Ojg5&lid=2
R3 - URLSearchHook: (no name) - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
O24 - Desktop Component 0: Privacy Protection - file:///C:\WINDOWS\privacy_danger\index.htm
Close all programs but HJT and all browser windows, then click on "Fix Checked"
Owner account (mine)
Clean
The item in Cody's log makes it almost certain that was the user who got the infection. While I can not say with absolute certainly, it is very likely this is where the infection came from:
http://forums.spybot.info/showthread.php?t=7344
If that takes care of the issues you were having, then remove Smitfraudfix, combofix, the C:Qoobox\Quarantine\ folder, all tools we download but ATF-Cleaner, you may keep that nice small tool if you wish.
Run this online scan using Internet Explorer:
Kaspersky Online Scanner from http://www.kaspersky.com/virusscanner
Next Click on Launch Kaspersky Online Scanner
You will be prompted to install an ActiveX component from Kaspersky, Click Yes.
* The program will launch and then begin downloading the latest definition files:
* Once the files have been downloaded click on NEXT
* Now click on Scan Settings
* In the scan settings make that the following are selected:
* Scan using the following Anti-Virus database:
* Standard
* Scan Options:
* Scan Archives
* Scan Mail Bases
* Click OK
* Now under select a target to scan:
* Select My Computer
* This will program will start and scan your system.
* The scan will take a while so be patient and let it run.
* Once the scan is complete it will display if your system has been infected.
* Now click on the Save as Text button:
* Save the file to your desktop.
Then post it here.
Thanks
C:\Program Files\Java\jre1.6.0_03\ <<< Java needs and update, ses this:
http://forums.spybot.info/showpost.php?p=12880&postcount=2
codys account
1) Go to start > control panel > Display properties > Desktop > Customize Desktop... > Web tab
Select "Privacy Protection" you find in there and press the delete button on the right.
Hit ok below > apply in previous window.
Let me know if that solved your issue.
2) Windows Defender's job is to block changes, you may have to turn it off to complete the HJT removal?
3) Open HijackThis and choose "Do a system scan only" then check the box in front of these line items:
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://softwarereferral.com/jump.php...MjI6Ojg5&lid=2
R3 - URLSearchHook: (no name) - {EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
O24 - Desktop Component 0: Privacy Protection - file:///C:\WINDOWS\privacy_danger\index.htm
Close all programs but HJT and all browser windows, then click on "Fix Checked"
Owner account (mine)
Clean
The item in Cody's log makes it almost certain that was the user who got the infection. While I can not say with absolute certainly, it is very likely this is where the infection came from:
http://forums.spybot.info/showthread.php?t=7344
If that takes care of the issues you were having, then remove Smitfraudfix, combofix, the C:Qoobox\Quarantine\ folder, all tools we download but ATF-Cleaner, you may keep that nice small tool if you wish.
Run this online scan using Internet Explorer:
Kaspersky Online Scanner from http://www.kaspersky.com/virusscanner
Next Click on Launch Kaspersky Online Scanner
You will be prompted to install an ActiveX component from Kaspersky, Click Yes.
* The program will launch and then begin downloading the latest definition files:
* Once the files have been downloaded click on NEXT
* Now click on Scan Settings
* In the scan settings make that the following are selected:
* Scan using the following Anti-Virus database:
* Standard
* Scan Options:
* Scan Archives
* Scan Mail Bases
* Click OK
* Now under select a target to scan:
* Select My Computer
* This will program will start and scan your system.
* The scan will take a while so be patient and let it run.
* Once the scan is complete it will display if your system has been infected.
* Now click on the Save as Text button:
* Save the file to your desktop.
Then post it here.
Thanks