Hi
Make sure you have already run Adaware, Spybot S & D(check for updates) as these will do a preliminary clean first.Some files below may not be present after running the above programs.
Then....
Turn off your System Restore.(if using xp)
SEE HERE Reinstate it when your log is cleaned.Close your browser window and run hjt in safe mode...
HOW TO RUN SAFE MODE and have "Hijack This" fix the following by placing a check in the appropriate boxes and selecting "fix checked".
Folders that have been
highlighted in RED will need to be uninstalled.
Check first as some folders maybe uninstalled via the Add/Remove program. Files
highlighted in BLACK will need to be removed from your hard drive. Make sure to have your system set to show hidden files and folders..
HOW TO SHOW FILES ..Please get the latest HJT v1.98.2 and post a new log when finished...
R3 - Default URLSearchHook is missing
F1 - win.ini: run=C:\WINDOWS\SYSTEM\SERVICES\
MSXMIDI.EXE
O2 - BHO: (no name) - {00000010-6F7D-442C-93E3-4A4827C2E4C8} - (no file
O2 - BHO: (no name) - {5321E378-FFAD-4999-8C62-03CA8155F0B3} - (no file)
O4 - HKLM\..\Run: [xpsystem] C:\WINDOWS\SYSTEM\SERVICES\MSXMIDI.EXE
O4 - HKLM\..\Run: [WebRebates0] "C:\PROGRAM FILES\
WEB_REBATES\WebRebates0.exe"
O4 - HKCU\..\Run: [xpsystem] C:\WINDOWS\SYSTEM\SERVICES\MSXMIDI.EXE
O4 - Startup: Event Reminder.lnk = D:\Program
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} -
http://public.windupdates.com/get_f...72 640af5cb44d
O16 - DPF: {FF65677A-8977-48CA-916A-DFF81B037DF3} -
http://download.overpro.com/WildApp.cab
Updating to IE6 will help your security.