Hi Timmy_j,
Please copy this page to
Notepad since you will not have any browsers open while you are carrying out these instructions.
Make sure to work through the fixes in the exact order it is mentioned below.
First, download
HSFix
After it is downloaded, create a new folder on your desktop called "HSFix" and extract all the files into the newly created folder.
Locate the HSFix folder on your desktop, open it, and double-click "
hsfix.bat" A log will be produced which you can close out of.
---------------------------
Go to
My Computer->
Tools->
Folder Options->
View tab:
* Under the Hidden files and folders heading:
*
select Show hidden files and folders.
*
Uncheck Hide protected operating system files (recommended) option.
*Also, make sure there is no checkmark beside
Hide file extensions for known file types.
* Click OK.
Next, please reboot your computer in
Safe Mode by doing the following:
1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
3) Instead of Windows loading as normal, a menu should appear
4) Use the up arrow key to highlight Safe Mode and press Enter.
---------------------------
Uninstall the following via the Add/Remove Panel (Start->(Settings)->Control Panel->Add/Remove Programs) if they exist:
AdwareAlert-- was considered rogueware in the past, please see this
link
---------------------------
Run a scan in HijackThis. 'Check' each of the following if they still exist (make sure not to miss any):
O4 - HKLM\..\Run: [AdwareAlert] C:\Program Files\AdwareAlert\AdwareAlert.Exe -boot
O20 - Winlogon Notify: hpprintx - hpprintx.dll (file missing)
Click
'Fix Checked' and close HijackThis.
---------------------------
Delete the following
Files and
Folders if they still exist.
C:\Program Files\
AdwareAlert
C:\WINDOWS\SYSTEM32\
hpprintx.dll (I see Ewido cleaned this, but please check again to ensure it is indeed removed.)
---------------------------
Please go to Start>Run type
MSCONFIG press Enter and enable all startups by selecting
Normal Startup - Load all Device Drivers and Services. Click Apply, OK.
---------------------------
Reboot into Normal Mode.
---------------------------
If your system will stay on long enough:
Perform an online scan using Internet Explorer with
Panda ActiveScan
**
click on "Free use ActiveScan" located on the top right hand corner - Click Check Now & a 'pop up' window shall appear. *ensure that your pop up blocker doesn't block it
- Enter your e-mail address, country, and state & click Scan Now ...begins downloading 8 MB Panda's ActiveX controls
Begin the scan by selecting
My Computer- If it finds any malware, it will offer you a report.
- Please ignore any entry it finds and wants you to buy the program for removal as we will address this later.
- Click on see report. Then click Save report
Please post that log in your next reply along with a
new HijackThis log and an update on how your system is performing.
__________________
Member of ASAP since 2005
Member of UNITE since 2006
"It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."