Tech Support Forum - View Single Post

sUBs · 07-14-2005, 11:56 PM

There's a folder I couldn't find enough info about - C:\Program Files\ContextAware
Can You tell me more about it? Is it a program you've installed? Does it have an entry in Add/Remove programs?

In the interest of safety, please visit this website - virusscan.jotti.org
Submit these file(s) for a comprehensive scan & then post the results back here.

C:\Program Files\ContextAware\ContextAware.dll

Panda's online scan has detected malware in Microsoft Antispyware Qurantine folder. You may clear the quarantine cache by doing so..

Double click on the Microsoft Antispyware icon in system tray
Go to Tools>Spyware Scan>Manage Spyware Quarantine
Select all items listed under "Quarantine Threats" & Click "Permanently remove all checked threats"

= = = = = = = = = = =

Please download these additional files/programs. Unless otherwise stated, they should be stored in same directory as the HiJackThis program. Do not run them unless instructed to do so.

KillBox v2.0.0.175

Unplug your computer from the Internet when you have finished downloading

= = = = = = = = = = =

Uninstall the following programs using Add/Remove Programs panel : * Some entries may not be present

AutoUpdate

= = = = = = = = = = =

Copy to clipboard, all the items below by highlighting them & pressing [CTRL]+[C] on your keyboard.

C:\WINDOWS\system32\stlb2.xml
C:\Program Files\support.com\adelphia\scripts\IEconfig.vbs
C:\Program Files\System Mechanic\Undo\Manual\{9CA6026F-B1B3-4E3C-99F1-B6FF9135CD47}\{B10BAA8D-6BEE-49E3-A7A3-8203BFFE43D0}.inf[{B10BAA8D-6BEE-49E3-A7A3-8203BFFE43D0}.inf]
C:\WINDOWS\ru.exe
C:\WINDOWS\system\UpdInst.exe
C:\WINDOWS\system32\auto_update_uninstall.exe
C:\WINDOWS\system32\auto_update_uninstall.log
C:\WINDOWS\system32\Shex.exe
C:\WINDOWS\system32\SplWbr.dll
C:\WINDOWS\system32\stlb2.xm
C:\Program Files\AutoUpdate\AutoUpdate.exe

Start KillBox.
Go to the File menu, and choose Paste from Clipboard * this feature does not work on older versons of Killbox
Click the dropdown-arrow next to the "Full Path of File to Delete" field.
Verify that the filenames you pasted are found in there.
Select/tick the following:
* Replace on Reboot
* Use Dummy
* End Explorer Shell While Killing File
* "Unregister.dll Before Deleting" * if it's not grayed out
Click the RED X button.
Click "Yes" at the 'Delete on Reboot' prompt.
Click "Yes" at the 'Pending Operations' prompt.

* If you receive a message such as: "Component 'MsComCtl.ocx' or one of its dependencies not correctly registered: a file is missing or invalid." when trying to run TheKillbox, click here to download and run missingfilesetup.exe. Then try Killbox again.

= = = = = = = = = = =

Reboot & delete these folders -

C:\Program Files\AutoUpdate
C:\Program Files\etea\

Post a fresh HJT log after that

07-14-2005, 11:56 PM	#11 (permalink)
sUBs Asst Manager Security, Expert Analyst, Moderator, Security Team; Rangemaster, Moderator, TSF Academy Join Date: May 2005 Posts: 24,494 OS: N/A	There's a folder I couldn't find enough info about - C:\Program Files\ContextAware Can You tell me more about it? Is it a program you've installed? Does it have an entry in Add/Remove programs? In the interest of safety, please visit this website - virusscan.jotti.org Submit these file(s) for a comprehensive scan & then post the results back here. C:\Program Files\ContextAware\ContextAware.dll Panda's online scan has detected malware in Microsoft Antispyware Qurantine folder. You may clear the quarantine cache by doing so.. Double click on the Microsoft Antispyware icon in system tray Go to Tools>Spyware Scan>Manage Spyware Quarantine Select all items listed under "Quarantine Threats" & Click "Permanently remove all checked threats" = = = = = = = = = = = Please download these additional files/programs. Unless otherwise stated, they should be stored in same directory as the HiJackThis program. Do not run them unless instructed to do so. KillBox v2.0.0.175 Unplug your computer from the Internet when you have finished downloading = = = = = = = = = = = Uninstall the following programs using Add/Remove Programs panel : * Some entries may not be present AutoUpdate = = = = = = = = = = = Copy to clipboard, all the items below by highlighting them & pressing [CTRL]+[C] on your keyboard. C:\WINDOWS\system32\stlb2.xml C:\Program Files\support.com\adelphia\scripts\IEconfig.vbs C:\Program Files\System Mechanic\Undo\Manual\{9CA6026F-B1B3-4E3C-99F1-B6FF9135CD47}\{B10BAA8D-6BEE-49E3-A7A3-8203BFFE43D0}.inf[{B10BAA8D-6BEE-49E3-A7A3-8203BFFE43D0}.inf] C:\WINDOWS\ru.exe C:\WINDOWS\system\UpdInst.exe C:\WINDOWS\system32\auto_update_uninstall.exe C:\WINDOWS\system32\auto_update_uninstall.log C:\WINDOWS\system32\Shex.exe C:\WINDOWS\system32\SplWbr.dll C:\WINDOWS\system32\stlb2.xm C:\Program Files\AutoUpdate\AutoUpdate.exe Start KillBox. Go to the File menu, and choose Paste from Clipboard * this feature does not work on older versons of Killbox Click the dropdown-arrow next to the "Full Path of File to Delete" field. Verify that the filenames you pasted are found in there. Select/tick the following: * Replace on Reboot * Use Dummy * End Explorer Shell While Killing File * "Unregister.dll Before Deleting" * if it's not grayed out Click the RED X button. Click "Yes" at the 'Delete on Reboot' prompt. Click "Yes" at the 'Pending Operations' prompt. * If you receive a message such as: "Component 'MsComCtl.ocx' or one of its dependencies not correctly registered: a file is missing or invalid." when trying to run TheKillbox, click here to download and run missingfilesetup.exe. Then try Killbox again. = = = = = = = = = = = Reboot & delete these folders - C:\Program Files\AutoUpdate C:\Program Files\etea\ Post a fresh HJT log after that __________________ Question - what have you done for the community today?