Tech Support Forum - View Single Post

sUBs · 10-13-2007, 06:11 PM

Go to Start > Control Panel > Add or Remove Programs and uninstall the following programs:

The Best Offers

Java(TM) SE Runtime Environment 6 Update 1
J2SE Runtime Environment 5.0
J2SE Runtime Environment 5.0 Update 11
J2SE Runtime Environment 5.0 Update 5
J2SE Runtime Environment 5.0 Update 6

Uninstall ALL the above but do not uninstall this one:

Java(TM) 6 Update 2

---------------

Do a HijackThis scan & place a check next to these items and select "Fix checked":

O4 - HKCU\..\Run: [tbon] C:\Program Files\TBONBin\tbon.exe /r
O15 - Trusted Zone: *.whataboutadog.com
O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll

---------------

Download & Save this file to Desktop -> http://download.bleepingcomputer.com...a/ComboFix.exe

Open notepad and copy/paste the text in the quotebox below into it:

Code:

File::
c:\windows\cdmxtras
c:\windows\smdat32a.sys
c:\windows\smdat32m.sys
Folder::
c:\program files\RXToolBar
C:\Program Files\TBONBin

Save this as "CFScript"

Refering to the picture above, drag CFScript.txt into ComboFix.exe

When finished, it shall produce a log for you, C:\ComboFix.txt. Post that log in your next reply along with a fresh HJT log

10-13-2007, 06:11 PM	#2 (permalink)
sUBs Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy Join Date: May 2005 Posts: 24,465 OS: N/A	Re: howaboutadog Go to Start > Control Panel > Add or Remove Programs and uninstall the following programs: The Best Offers Java(TM) SE Runtime Environment 6 Update 1 J2SE Runtime Environment 5.0 J2SE Runtime Environment 5.0 Update 11 J2SE Runtime Environment 5.0 Update 5 J2SE Runtime Environment 5.0 Update 6 Uninstall ALL the above but do not uninstall this one: Java(TM) 6 Update 2 --------------- Do a HijackThis scan & place a check next to these items and select "Fix checked": O4 - HKCU\..\Run: [tbon] C:\Program Files\TBONBin\tbon.exe /r O15 - Trusted Zone: .whataboutadog.com O18 - Filter hijack: text/html - {2AB289AE-4B90-4281-B2AE-1F4BB034B647} - C:\Program Files\RXToolBar\sfcont.dll --------------- Download & Save this file to Desktop -> http://download.bleepingcomputer.com...a/ComboFix.exe Open notepad* and copy/paste the text in the quotebox below into it: Code: File:: c:\windows\cdmxtras c:\windows\smdat32a.sys c:\windows\smdat32m.sys Folder:: c:\program files\RXToolBar C:\Program Files\TBONBin Save this as "CFScript" Refering to the picture above, drag CFScript.txt into ComboFix.exe When finished, it shall produce a log for you, C:\ComboFix.txt. Post that log in your next reply along with a fresh HJT log __________________ Question - what have you done for the community today?