Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

-

0

Spyware/Antivirus Help & Tips.

Started by Logic , Dec 10 2004 01:54 AM

Next

Reply to this topic

56 replies to this topic

#1 Logic

Wannabe Shia

Advanced Members
4,340 posts

Posted 10 December 2004 - 01:54 AM

instead of surfing the internet looking for answer and program can now find the answer to this annoyance on their favourite site.

Spyware is basically programs that cause problems and frusturation. These include: pop up advertisements on your computer, browser hijacks, search engine hijacks, website redirections, website restrictions and computer problems (like slowdowns and lockdowns)

There are two utilities i use to remove spyware and they are both really good. I suggest you download them and do it now cause these utilities work best only if no windows are open. They are both free to use and abuse.

1) Spybot S&D
Click me to download Spybot

2) Hijack This
Click me to download HiJack This
(under the title of official download you will see the link for this utility)

This is only for people that use Microsoft Internet Explorer

First Step
Turn off System Restore (XP users)
Right click on the start button> Second line would read "Explore"> Click on Explore
On the left side under the heading of "folder" you will see an icon that reads "My Computer"> Right click it and scroll down to properties and left click. You will see the tab for System Restore. Click the tab and disable system restore.

If you need illustrations for this then click this link
Windows XP system restore link

Turn off System Restore (Windows ME/98 users)
The process is a little different. You can click this link for turning off your system restore.
Windows ME/98 System Restore Link.

Now click Start>Settings>Control Panel>Internet Options (double click the icon to launch)
In the general tab right in the middle you will see 2 buttons. Click the one that says "Delete Files" (You may also want to check the box "Delete all offline content"). Then click "Delete Cookies".

Now you are ready to start a system scan. Basically your scanner will search for trojans or download droppers. If you own a virus scanner then let is scan your computer
OR
You can you scan your computer online if you dont own a scanner
Click this link to choose the scanner of your choice

Now for removing the rest of the parasite
1) Launch Spybot
2) Look for the update tab. Click it and update your copy
3) Now click the tab that reads "Check for Problems"

When the scan is completed a button will become visible "Fix Selected Problems" Click the button. it will ask you do you want to delete the selected entries? DUH offcourse you want to click YES

Now Launch Hijack this
1) Click "Scan"

Now if you are not fimiliar with computers then click the button that reads "Save Log" and paste that log here for other people review. Dont proceed further!

If you are fimiliar then check the entries that dont belong in your machine and click "Fix Checked'.
Reboot and you should be fine.

If everything is working smooth then at this point you can turn your system restore on again.

Advanced:
I recently got a real bad spyware which acted a lil different.
It blocked out my general tab. Meaning i couldnt change my home page
It locked me out of the computer registry.

Everytime i would open internet explorer i got a zillion popups. Talk about frusturation! I wanted to kill. How can someone lock me out of my computer!

Here are the steps i took to take over again. Yeah that's right dont mess
1) Launch Spybot>Left side there in navigation click IE Tweaks>In IE current title i wrote "Google". I dont know why i did this but the next time i went in internet tools my general tab was back to normal again! So i changed my home pages and things got a lil better
2) For registry i had no idea where to start but i found this tool called "registar lite" which lets us you view or make changes. You can find this tool at Link for Registar Lite
Or you can visit this site where you can just type a single line in Start>Run command to restore your registry viewing rights. Link for Windows registry help

This is a pretty much basic routine to follow. You can advance this much by
Disconnecting from the internet
Running spybot when in safe mode
Go to Start>Search and type in *.tmp files to delete them

It has become my dream to find one of these nerdy script writers and bust all his car tires so he can have an agonizing time like me.

This is my first time posting on Tips i hope it helps you. I have tried to make it as simple as i could but if you dont understand anything or have any question then let me know. I am no expert but maybe me or some other real experts (which our forum has) can assist you.

Edited by Logic, 10 December 2004 - 01:57 AM.

Shiachat 2012: Everyone is now a Mujtahid and an expert rijalist.

#2 Logic

Wannabe Shia

Advanced Members
4,340 posts

Posted 10 December 2004 - 01:59 AM

Anybody else got any ideas that can benefit everyone? Everyone has their own ways, So post yours.

Shiachat 2012: Everyone is now a Mujtahid and an expert rijalist.

#3 Gypsy

Hal Min Nasirin Yansurna

Advanced Members
22,905 posts

Interests:Exposing hypocrisy and double standards.

Posted 10 December 2004 - 04:18 AM

McAfee Stinger
Stand alone utility used to detect and remove specific viruses. Stinger is extremelly optimized and takes mere minutes to detect well known virus.

http://vil.nai.com/vil/stinger/

Ad Ware SE from LavaSoft
http://www.lavasoftusa.com/

Edited by Zareen, 10 December 2004 - 04:19 AM.

My Blog.

#4 DigitalMo

Member

Advanced Members
3,144 posts

Posted 10 December 2004 - 07:31 AM

Never had a spyware problem since I started using Firefox browser!

Before that, I was using all the above mentioned methods and still being frustrated.

Thanks for the advice it is very good and I am sure it will help lots of people on this site. Jazak Allah khair.

#5 Bollywood_Hero

Exploiting the Oppressed

Advanced Members
2,697 posts

Location:51.36N 00.05W
Interests:I have what can only be discribed as chiselled good looks and superior intellect. In my spare time I enjoy starting reveloutions in latin american countries, founding cilvillizations and saving endagered speicies of bumbelbees. I speak Latin, ancient Greek and a spattering of Dravidian. I constantly monologue with myself and often solve philliosophical questions that have eluded man for centuries on the back of paper napkins.

Posted 10 December 2004 - 07:56 AM

Logic, on Dec 10 2004, 05:59 AM, said:

Anybody else got any ideas that can benefit everyone? Everyone has their own ways, So post yours.

<{POST_SNAPBACK}>

Yeah, unless u have a computer science degree please please don't use a computer

“Each of you, for himself, by himself and on his own responsibility, must speak. And it is a solemn and weighty responsibility, and not lightly to be flung aside at the bullying of pulpit, press, government, or the empty catchphrases of politicians. Each must for himself alone decide what is right and what is wrong, and which course is patriotic and which isn't. You cannot shirk this and be a man. To decide against your convictions is to be an unqualified and inexcusable traitor, both to yourself and to your country, let man label you as they may. If you alone of all the nation shall decide one way, and that way be the right way according to your convictions of the right, you have done your duty by yourself and by your country- hold up your head! You have nothing to be ashamed of.” ~ Mark Twain

I believe that the people, instead of pretty lies, should be told the truth, no matter how ugly it may be. What can we do, destiny hasn't been kind to us; but, with the help of God, we will prevail. ~ Alija Izetbegović

Geoffrey: 'You fool! As if it matters how a man falls down.'
Richard: 'When the fall's all that's left, it matters a great deal.'
The Lion in Winter

#6 LaYdee_110

Milllkkkyyyy

Advanced Members
3,186 posts

Location:GRAVEYARD
Interests:Interesting. Now What?

Posted 10 December 2004 - 12:38 PM

lol yeh sum members of ma family got it installed onto their personal accounts on the pc. its funny coz whenever they type google or sumthing dirty stuff pop up instead!!

#7 Guest_Shireen_*

Guests

Posted 11 December 2004 - 08:39 AM

Quote

Anybody else got any ideas that can benefit everyone? Everyone has their own ways, So post yours.

lol, your post basically contains the main measures which should be taken but since we are asked to post here are some other things which I sometimes do, depends what is needed. (although most is already mentioned above but in another sequence :blush:

) But well, it isn't bad to have a summary either..lol

1. As already explained above firstly Turn off â€˜System Restoreâ€™ (that goes only to XP users) you can do it either as mentioned above or through the system control panel.
Run now all the mentioned steps below (2-10) in order to turn on the System Restore later.
2. Get a Win-update
3. Ad-aware http://www.lavasoftu...pport/download/
Run this tool. But before do take a look at the suggested configuration of the software in order to get the best out of it.Remove the shown entries.
4. SpyBot-S&D (as already suggested above) http://www.safer-net...org/en/mirrors/
5. Search for viruses (download BitDefender Free Edition v7) http://www.bitdefend...cts.php?p_id=24 do an online update - search â€“ and remove found viruses
6. Stinger (install and run it) it deletes pretty dangerous worms and viruses from your pc. http://download.nai....ert/stinger.exe
7. switch on your Firewall -> Netzwork connections -->right click on your connection, properties--> activate security and firewall.
8. HijackThis (also mentioned above, so no need to tell ) it prevents browser hijacking http://www.spychecke...hijackthis.html
9. CWShredder (this is a mini software which prevents browser hijacking) http://www.chip.de/d...s_11353799.html just click on d/l
10. Use your brains. â€“ I know that some might feel as if I treaded on their toe. *cough* But honestly said, that there are many people who are also around the net and also get mails etc. but their pcs arenâ€™t infested to such an extent with worms and viruses as I sometimes get to hear, One record was that of 305 viruses -_-

Briefly said, while surfing the net, be careful. Donâ€™t click on everything that is appealing or colourful or flashing.
1. Donâ€™t open unknown emails.
2. Donâ€™t open links in unknown emails.
3. Always try to only install those software which you really use and which you feel are reliable. And deactivate useless utilities.
4. Be careful while surfing underground. If you are sure that you got the correct settings (firewall, antivrus system etc.) then itâ€™s alright but if you are not sure better refrain from surfing underground because later you wonâ€™t really have a reason to wonder in case you get viruses or certain dialers while looking for stuff like serial numbers of softwares and etc.. There are plenty trojans in crackdownloads.
And some other minor stuff:
1) Always get one of the latest and best av-scanners (kaspersky, the link is given in that favourite google link of Logic mentioned in the first post -_-

) or here http://www.chip.de/d...s_10257892.html
2) Get a good firewall (like outpost by agnitum) http://www.agnitum.c...d/outpost1.html
you got to configure it (for those understanding my language http://www.bananajoe.de
3) Avoid using outlook
4) Do try to use sometimes open source projects which rarely contain spywares or other undesired elements.

some other links:
http://www.tcmagazin...rticle&sid=8278 http://www.heise.de/...rus/links.shtml (thatâ€™s one of my favourites sites, if anyone needs help in translation feel free to ask. The first list is that of antivurs systems, the second contains a list of free online av- scanners and the last list contains links with general information and virus- data bases.
Another link which just came into my mind
http://www.emsisoft.com/en/

Iâ€™ve definetly missed some things, but will add them as soon as Iâ€™ll get some more time. And will also add some links in future.

W'salaam

Edited by Shireen, 11 December 2004 - 08:51 AM.

#8 Baatil Ka Kaatil

R.I.P Syed Ali Naqi

Advanced Members
10,661 posts

Location:Khaak-E-Ahle Bayt (as)

Posted 11 December 2004 - 09:04 AM

Ad Aware SE Pro....

No authorisation required...I think..

Himmat 'gar kisi mei hai to Meesam (ra) se cheen le,
Yeh ishq-E-'Bu Turab (as) hai koi baagh-E-Fidak Nahi!

#9 Ojum

In pursuit of perfection

Advanced Members
2,998 posts

Location:America

Posted 11 December 2004 - 11:54 AM

forgot to add stop using stopped IE and about 90% of your spyware and pop problems will disappear.

Netscape and firefox are great alternatives.

Muslim Gamer Community

Shia Chat flickr group

flickr

#10 Aal-e-Imran

[-Jeo-]

Advanced Members
32,148 posts

Location:North America
Interests:Not You.

Posted 15 December 2004 - 06:18 PM

Baatil Ka Kaatil, on Dec 11 2004, 06:04 AM, said:

Ad Aware SE Pro....

No authorisation required...I think..

<{POST_SNAPBACK}>

That's what I have..

Shia Encyclopedia Project | YouTube Channel | Muslim Blogger

#11 MuslimGirl

Revolution Inc

Advanced Members
359 posts

Posted 21 December 2004 - 01:42 PM

Another tip, that I guess works for me is, if you have an anti-virus software (and you should

), schedule a task - i.e, schedule it to do a system scan at least once a week. If it bothers you that it's in the background or something when you're working, then schedule it for a time when you know no one will be using the computer and it'll be turned on, etc. For example, Thursday nights when you're at the mosque!

Proud Iranaholic
Ansar Karbala

#12 m1ha5

Advanced Members
33 posts

Posted 25 December 2004 - 01:29 PM

switch to BSD, Linux or Mac OS X.

#13 Hasnain

Member

Advanced Members
6,548 posts

Posted 26 December 2004 - 01:45 AM

Here is my list weaponary.

http://ansarkarbala....wdownload&cid=3

#14 sayed_ali

sayed_ali

Advanced Members
2,456 posts

Location:UK

Posted 04 January 2005 - 12:26 PM

I recommend installing the google bar to stop annoying popups when using Internet Explorer

http://toolbar.google.com/

Islamic Dictionary

IslamTutor.com

Shia and live in Leeds? www.AhlulbaytLeeds.com

#15 Abdul Hussain

A Martyred Scholar

Advanced Members
2,469 posts

Location:London, UK

Posted 06 January 2005 - 05:56 PM

Microsoft released its beta-anti Spyware program today to the public, it's pretty good at removing things from the registry, quite quick as well. Download it if you don't have one of those programs.

You will read many traditions about the Ziyara to the shrine of Al-Hussain (S) and come to know how a great thing it is to commit yourself in his service. I go in search of this very thing, to stand at the door of the 'Great Sacrifice' and offer my respects. The tears that flow from my eyes in these days will avail me on the day rivers will be cried by the people. I come to the Imam (S) in humbleness asking him to intercede for me, when "every soul shall know what it has done". It is then, as they drag the sinner to the depths of the Fire, he will say: "not this one, he cried for me on the day of Ashura".

#16 Bismillah

Ya Rabb..

Advanced Members
5,007 posts

Location:...
Interests:knowing myself.

Posted 13 February 2005 - 12:16 AM

okkkkkkkkkkkk plzzzzzzz help ppl!

iv ran microsoft anti spyware on my computer, and it seems to be helping just a lil.......my computer is getting SOOOOO slow and messed up.....and i hav to dl google pop up blocker like every other day!!!......wut do i do??????????????

((((

"Do not consider the misfortune for which you have been blessed with patience and deserved reward from Allah as a misfortune. In fact, the real misfortune is being deprived of its reward and merits due to lack of patience when you suffer."~Imam Jafar Sadiq (as)

That is of which Allah gives the good news to His servants, (to) those who believe and do good deeds. Say: I do not ask of you any reward for it but love for my near relatives; and whoever earns good, We give him more of good therein; surely Allah is Forgiving, Grateful. [42:23]

“Knowest thou not the beauty of thine own face? Quit this temper that leads thee to war with thyself!”~ Rumi

#17 Logic

Wannabe Shia

Advanced Members
4,340 posts

Posted 14 February 2005 - 01:39 AM

Run HiJack this and post the log here.

Make sure you mention what Operating System you are running.

Shiachat 2012: Everyone is now a Mujtahid and an expert rijalist.

#18 Bismillah

Ya Rabb..

Advanced Members
5,007 posts

Location:...
Interests:knowing myself.

Posted 14 February 2005 - 09:46 PM

^thank you SO much!!
o and another thing, pop up blocker seems to not work or somethin cuz i always get redirected to porn sites! :dry:

ok i hav windows XP...i hope idid this rite, heres the log:

Quote

Logfile of HijackThis v1.99.0
Scan saved at 9:48:07 PM, on 02/14/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\pctspk.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\RunDll32.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
C:\WINDOWS\aeagebsu.exe
C:\windows\system32\jln.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\WINDOWS\System32\vmss\vmss.exe
C:\WINDOWS\system32\jln.exe
C:\WINDOWS\System32\rpcxmstu.exe
C:\WINDOWS\a64sddd.exe
C:\windows\msbb.exe
C:\Program Files\Internet Optimizer\optimize.exe
C:\Program Files\AIM95\aim.exe
C:\Program Files\Yahoo!\Messenger\ypager.exe
C:\Program Files\MSN Messenger\msnmsgr.exe
C:\Program Files\Sony Corporation\Image Transfer\SonyTray.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\ISTsvc\istsvc.exe
C:\Program Files\Microsoft Office\OFFICE11\WINWORD.EXE
C:\Program Files\Microsoft Office\OFFICE11\MSTORDB.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\CMMON32.EXE
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\navwindows.exe
C:\WINDOWS\System32\jobexec.exe
C:\Program Files\Web_Rebates\WebRebates1.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.shiachat.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.shiachat.com
R3 - Default URLSearchHook is missing
O2 - BHO: BHObj Class - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - C:\WINDOWS\nem220.dll
O2 - BHO: BAHelper Class - {A3FDD654-A057-4971-9844-4ED8E67DBBB8} - C:\Program Files\SideFind\sfbho.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Band Class - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - C:\Program Files\SEP\sep.dll
O2 - BHO: Band Class - {CC378B83-9577-44D0-B4F8-0DD965E176FC} - C:\Program Files\eSyndicate\esyn.dll
O3 - Toolbar: Band Class - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - C:\Program Files\SEP\sep.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: ISTbar - {5F1ABCDB-A875-46c1-8345-B72A4567E486} - C:\PROGRA~1\ISTbar\istbar.dll (file missing)
O4 - HKLM\..\Run: [SiSUSBRG] C:\WINDOWS\SiSUSBrg.exe
O4 - HKLM\..\Run: [SiS KHooker] C:\WINDOWS\System32\khooker.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [ViewMgr] C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe
O4 - HKLM\..\Run: [msnappau] "C:\Program Files\MSN Apps\Updater\01.02.3000.1001\en-us\msnappau.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_06\bin\jusched.exe
O4 - HKLM\..\Run: [1jUyg] C:\WINDOWS\aeagebsu.exe
O4 - HKLM\..\Run: [SpySpotter] C:\PROGRA~1\SPYSPO~1\SpySpotter.exe
O4 - HKLM\..\Run: [9wGnvZJT] C:\windows\temp\9wGnvZJT.exe
O4 - HKLM\..\Run: [jln.exe] c:\windows\system32\jln.exe
O4 - HKLM\..\Run: [e] C:\windows\system32\e.exe
O4 - HKLM\..\Run: [c0fb0543e8d3] C:\WINDOWS\System32\aclui661.exe
O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe"
O4 - HKLM\..\Run: [mnkrmj] C:\WINDOWS\mnkrmj.exe
O4 - HKLM\..\Run: [vmss] C:\WINDOWS\System32\vmss\vmss.exe
O4 - HKLM\..\Run: [antiware] C:\windows\system32\eliterob32.exe
O4 - HKLM\..\Run: [NAV Auto Updates] navwindows.exe
O4 - HKLM\..\Run: [Microsoft System Tree Update] rpcxmstu.exe
O4 - HKLM\..\Run: [popuppers64] C:\WINDOWS\a64sddd.exe
O4 - HKLM\..\Run: [snegtupo] c:\windows\system32\snegtupo.exe
O4 - HKLM\..\Run: [msbb] c:\windows\msbb.exe
O4 - HKLM\..\Run: [wnqv] C:\WINDOWS\wnqv.exe
O4 - HKLM\..\Run: [IST Service] C:\Program Files\ISTsvc\istsvc.exe
O4 - HKLM\..\Run: [Internet Optimizer] "C:\Program Files\Internet Optimizer\optimize.exe"
O4 - HKLM\..\Run: [version] C:\WINDOWS\System32\Aedfkw.exe
O4 - HKLM\..\Run: [Power Scan] C:\Program Files\Power Scan\powerscan.exe
O4 - HKLM\..\Run: [WebRebates0] "C:\Program Files\Web_Rebates\WebRebates0.exe"
O4 - HKLM\..\RunServices: [NAV Auto Updates] navwindows.exe
O4 - HKLM\..\RunServices: [Microsoft System Tree Update] rpcxmstu.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM95\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [NAV Auto Updates] navwindows.exe
O4 - HKCU\..\Run: [jobexec] C:\WINDOWS\System32\jobexec.exe
O4 - Global Startup: Image Transfer.lnk = ?
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O8 - Extra context menu item: Web Rebates - file://C:\Program Files\Web_Rebates\Sy1150\Tp1150\scri1150a.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_06\bin\npjpi142_06.dll
O9 - Extra button: SideFind - {10E42047-DEB9-4535-A118-B3F6EC39B807} - C:\Program Files\SideFind\sidefind.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM95\aim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
O15 - Trusted Zone: *.media-motor.net
O15 - Trusted Zone: *.popuppers.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....738&clcid=0x409
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} (YAddBook Class) - http://us.dl1.yimg.c...utocomplete.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D22D4BC5-7DAB-4465-A622-C2FF17A91A92}: NameServer = 146.186.157.22 146.186.15.18
O23 - Service: iPod Service - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: PCTEL Speaker Phone - PCtel, Inc. - C:\WINDOWS\system32\pctspk.exe

Edited by Bismillah, 16 February 2005 - 12:40 AM.

"Do not consider the misfortune for which you have been blessed with patience and deserved reward from Allah as a misfortune. In fact, the real misfortune is being deprived of its reward and merits due to lack of patience when you suffer."~Imam Jafar Sadiq (as)

That is of which Allah gives the good news to His servants, (to) those who believe and do good deeds. Say: I do not ask of you any reward for it but love for my near relatives; and whoever earns good, We give him more of good therein; surely Allah is Forgiving, Grateful. [42:23]

“Knowest thou not the beauty of thine own face? Quit this temper that leads thee to war with thyself!”~ Rumi

#19 Logic

Wannabe Shia

Advanced Members
4,340 posts

Posted 16 February 2005 - 12:49 AM

Spyware removal by itself is a waste of time cause it usually comes with a dropper and it re-installs it self everytime.
Thats is why you gotta start with deleting the temp files and cookies then run a system scan on your computer..

CMMON32.EXE <- This is a trojan
optimize.exe
webrebates
a64sddd.exe

O15 - Trusted Zone: *.media-motor.net
O15 - Trusted Zone: *.popuppers.com

There are bunch of fruity names in your log but i cant really say if they are legit or not. The above i am sure off so its safe to delete them... BTW cmmon32 could be the one slowing your internet connection.

Shiachat 2012: Everyone is now a Mujtahid and an expert rijalist.

#20 Bismillah

Ya Rabb..

Advanced Members
5,007 posts

Location:...
Interests:knowing myself.

Posted 17 February 2005 - 02:12 AM

..ok im lost :blush:

..i ran the online scan thingy..but then after a bit it just shut on me..is it supposed to do that?..and i noticed that there was ALOT of things that said "non removable"..but its a virus...so that means im just stuck with it? wuts it mean? :huh:

..and i havnt ran spybot yet, but i will sometime soon inshallah..but i ran adaware SE again..and man is there a list of stuff or wut..but im not deleting nething cuz i hav no idea wut they are

..but there are lots of 'regkeys' 'regvalues' and 'regdata'.....

..srry but im so lost

thanks again, jazakullah khair

salamz

"Do not consider the misfortune for which you have been blessed with patience and deserved reward from Allah as a misfortune. In fact, the real misfortune is being deprived of its reward and merits due to lack of patience when you suffer."~Imam Jafar Sadiq (as)

That is of which Allah gives the good news to His servants, (to) those who believe and do good deeds. Say: I do not ask of you any reward for it but love for my near relatives; and whoever earns good, We give him more of good therein; surely Allah is Forgiving, Grateful. [42:23]

“Knowest thou not the beauty of thine own face? Quit this temper that leads thee to war with thyself!”~ Rumi

#21 Logic

Wannabe Shia

Advanced Members
4,340 posts

Posted 17 February 2005 - 04:26 PM

Easy way:
Reinstall your OS all over again

Right way:
Run the scan again and follow the steps. You dont have to run both adaware and spybot just use either one of them.

Shiachat 2012: Everyone is now a Mujtahid and an expert rijalist.

#22 Bismillah

Ya Rabb..

Advanced Members
5,007 posts

Location:...
Interests:knowing myself.

Posted 19 February 2005 - 07:16 PM

^ok i finally got it..much faster!

jazakullah kheir

"Do not consider the misfortune for which you have been blessed with patience and deserved reward from Allah as a misfortune. In fact, the real misfortune is being deprived of its reward and merits due to lack of patience when you suffer."~Imam Jafar Sadiq (as)

That is of which Allah gives the good news to His servants, (to) those who believe and do good deeds. Say: I do not ask of you any reward for it but love for my near relatives; and whoever earns good, We give him more of good therein; surely Allah is Forgiving, Grateful. [42:23]

“Knowest thou not the beauty of thine own face? Quit this temper that leads thee to war with thyself!”~ Rumi

#23 Logic

Wannabe Shia

Advanced Members
4,340 posts

Posted 21 February 2005 - 01:03 PM

^ Good deal

I hope people will post Hijack this log here instead from now on.. Make sure the path does not include any personal information like your name unless you dont care.

example:
C:\Documents and Settings\[Your name here]\filename.exe

Shiachat 2012: Everyone is now a Mujtahid and an expert rijalist.

#24 Guest_Mehdi_Husain_Lover_*

Guests

Posted 18 April 2005 - 08:27 AM

start--> run----> type msconfig click enter
click start up... and if you recognize files that are not supposed to be starting up like spyware... you can prevent them from starting up... plus do install microsoft spyware beta or sp2