Hi ragates,
Welcome to Tech Support Forum!
I apologize for the delay getting to your log. The helpers here are all volunteers and we have been very busy here lately. If you are still having malware problems, I will be glad to help.
First of all, while it is acceptable to have two anti-virus programs installed, it is not a good idea to have them both running in auto-protect mode as it may make both less effective. Choose just one to run in auto-protect and use the other for ad-hoc scans only.
NEXT:
Please run
HijackThis and click "
Scan". Place a check (tick) next to the following entries (if present):
O4 - HKCU\..\Run: [Agent] C:\WINDOWS\system32\alsys.exe
Close
ALL programs and browsers (including this one), leaving
ONLY HijackThis open, then click "
Fix checked".
Then please exit HijackThis.
NEXT:
Using Windows Explorer, please navigate to and delete the following FILES (if they exist):
C:\WINDOWS\system32\
alsys.exe
Please let me know if you encountered any problems finding or deleting the file.
NEXT:
Please download
CCleaner (freeware) and save it to your desktop:
- Run the CCleaner installer.
- During installation process, please UNCHECK "Add CCleaner Yahoo! Toolbar".
- Once installed, run CCleaner and click the Windows tab.
- Select the following:
- Check everything under the Internet Explorer section.
- Check everything under the Windows Explorer section.
- Check everything under the System section.
- Check ONLY Old Prefetch data under the Advanced section.
- Then, click the Applications tab:
- UNCHECK everything there.
- Next, click the Options button, then click the Advanced button:
- UNCHECK : "Only delete files in Windows Temp folders older than 48 hours".
- Next, click the Cleaner button, then click the Run Cleaner button (bottom right), then Exit.
CAUTION : Please do
NOT use the
Issues button. This is a built-in registry cleaner. If you don’t know how to use it, you may cause irreparable damage to your system.
NEXT:
Just in case there is something still hiding in your system, let’s try to do an online scan here:
CLICK HERE to use
Panda ActiveScan:
- Once you are on the Panda site click the "Scan your PC" button located at the bottom of the page.
- A new window will open... click the "Check Now" button.
- Enter your Country.
- Enter your State/Province.
- Enter your e-mail address.
- Select either Home User or Company.
- Click the big "Free Online Scan" button.
- If it wants to install an ActiveX component allow it.
- It will start downloading the files it requires for the scan (Note: It may take a couple of minutes).
- When the download is complete, click on "Local Disks" to start the scan.
- When the scan completes, if anything malicious is detected, click the "See Report" button; then "Save Report" and save it to a convenient location. Post the contents of the Panda scan report in your next reply.
NEXT:
Please
reboot your computer normally into Windows, then post the
log from the Panda scan and a new
HijackThis log in your next reply.
How are things running now?