coltm4carbine

Nope I don't smoke and I'll never will. Hate the smell and it's a waste of money. Most of my friends smokes though.

Log looks good. You might want to update your java though. Also I believe your running 2 antivirus. Uninstall one, or at least make sure it's resident scanner isn't running (basically not running at start-up). can't help you with the game, though. P.S could it be to do with another program that you have installed? I know BF2 doesn't work for me when I run a specific program.

Lol! True. Well, it's just a matter of following instructions. Make sure you read the whole thing. Anyways, who actually puts crap in their computers? At least you got the log. Please Do NOT fix anymore things with HJT. Please download VundoFix[Caution: ExecutableFile] to your desktop [*:2hw3gzeu]Double-click VundoFix[Caution: ExecutableFile] to run it. [*:2hw3gzeu]Click the Scan for Vundo button. [*:2hw3gzeu]Once it's done scanning, click the Remove Vundo button. [*:2hw3gzeu]You will receive a prompt asking if you want to remove the files, click YES [*:2hw3gzeu]Once you click yes, your desktop will go blank as it starts removing Vundo. [*:2hw3gzeu]When completed, it will prompt that it will reboot your computer, click OK. [*:2hw3gzeu]Please post the contents of C:\vundofix.txt and a new HiJackThis log in a reply to this thread.Note: It is possible that VundoFix encountered a file it could not remove. In this case, VundoFix will run on reboot, simply follow the above instructions starting from "Click the Scan for Vundo button" when VundoFix appears upon rebooting. Post a new hjt log and the vundo log.

I don't have vista installed on any of my computers (I gave my key away since i had no use for it).. Control panel ->Appearance and Personalization -> Personalization -> Window Color and Appearance. Pick the one you want and ok. Try that.

Getting there.... Please RE-NAME hijackthis to scan[Caution: ExecutableFile] Do you know everything you've fixed then? (anything else apart from winantivirus) How many entries did you fix in total. P.S. Rename Hijackthis to Scan!!!!

Have you restored the backup? or didn't it work? Move HJT out of the temp and into a permanent folder like your desktop. You have to do that before fixing anything. Also rename hijackthis to scan[Caution: ExecutableFile].

Oh dear. Now that you've told me you've been fixing random stuff with HJT that log you've posted doesn't have a lot of use. Please tell me you've downloaded and extracted it to a permanent folder. To restore the backups: [*:11xackj4]Open HiJackThis [*:11xackj4]Click on "View the list of Backups" [*:11xackj4]Place a check mark next to everything in that window [*:11xackj4]Click Restore [*:11xackj4]Click Yes [*:11xackj4]Reboot your computer [*:11xackj4]Run HiJackThis and post a new HiJackThis log for review. Re-run scan[Caution: ExecutableFile] then choose save log. Save the log and notepad should open with a FULL scan[Caution: ExecutableFile] log. Then do what Mercifull said. It's because we need to see what's running, Where HJT is running from, Which version of windows you have etc, etc. All those information are in the top part of the log which can't be seen from the screenshot.

Since you've done a system restore then I think your alright now. The reason why you can still see the file is because system restore saves all your files too. You can manually delete that file if you want. Move HJT out of the temp. Save it to a new folder on your desktop.

Ditto. Rename Hijackthis[Caution: ExecutableFile] to scan[Caution: ExecutableFile]. I can see vundo from here which needs to be nuked but i can't do that until I get a full log. By that...Have you been fixing things with HJT?

Can you do a HJT log please. Smells like vundo to me. IMO none of them are trustworthy.

Nothing wrong with my version of WLM 8.1 Beta. If it's causing to much problems then go back to the stable WLM. If you can reproduce the error then you might want to pass it on to a Msn Rep. Might be a bug.

we'll need the whole thing. Including the top part. Also I said antivirus...NOT antispyware. (Norton in your case) I think your clean though. when I installed his software on my PC the only entry there was was the tile explorer[Caution: ExecutableFile] running from the system32 folder.

He installs the BFK perfect keylogger. I took apart his file. If you have an antivirus update then run that in safemode (f8 while booting up, choose safemode). It should get rid of it.

Update your McAfee then try scanning your computer in safemode (f8 while booting up, choose safemode) If it finds something then it should be able to delete it. If not then post the location of the file (path). Safemode works most of the time. Also while your in safemode scan with Ad-aware and spybot. Those'll help. Oops to late....

Try Belarc advisor and see if it will show your GFX card make / model http://www.belarc.com/free_download.html Or you can just check your computer manual /stickers. there are usually stickers saying what you have on the side / front of your computer if it's made by a company.

Well, um I think u'll need to reply to that thread with a hjt log - since u don't know the toolbar you have. by vanished what do you mean? can you still see it if you went to Start -> All programs -> accessories ?

ok Let's try this. You might want to print this out or save a copy so you know what to do in safemode. Download the Hoster Here and unzip it to your desktop. Next, open the Hoster [*:19ng65xn]Make sure that the "make hosts writable?" button in the upper right corner is checked [*:19ng65xn] Now, click on 'back up Host files' [*:19ng65xn] then click on 'Restore orginal host files' [*:19ng65xn] Finally, close the hoster Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below. R3 - URLSearchHook: Yahoo! ÃÆÃÂ¥ÃâïÃâüÃÆèÃâ¹Ã¢â¬Â ÃâêÃÆæÃâÃ

Nope, Still free. You'll have to register to get a key from them first though. As long as your using it for non-profit uses...(home / non-commercial use)

Ok I won't guarantee anything I'll try my best. The IP from the hosts smells like a new Chinese infection. Do this with HJT, Let's uninstall some crap first (Before we fix anything). Open HijackThis, click Config, click Misc Tools Click "Open Uninstall Manager" Click "Save List" (generates uninstall_list.txt) Click Save. Exit HijackThis Post the uninstall log and a new HJT log.

Please don't disable system restore yet. If I accidentally cripple your system then at least you have something to restore to. (no, I'll try not to cripple your system but I think I'll play it safe for this log). Is your computer a Chinese computer (I think it is)? I don't trust translators. That's why I asked. If your computer is not a Chinese version then I would just nuke the entries. Did you add the files into your HOSTS? The files in the hosts looks dodgy. Can you also give me a log from the programs you've scanned with? Let's get you started by cleaning out some crap: Please go HERE to run Panda's ActiveScan [*:25yzv5hx]Once you are on the Panda site click the Scan your PC button [*:25yzv5hx]A new window will open...click the Check Now button [*:25yzv5hx]Enter your Country [*:25yzv5hx]Enter your State/Province [*:25yzv5hx]Enter your e-mail address and click send [*:25yzv5hx]Select either Home User or Company [*:25yzv5hx]Click the big Scan Now button [*:25yzv5hx]If it wants to install an ActiveX component allow it [*:25yzv5hx]It will start downloading the files it requires for the scan (Note: It may take a couple of minutes) [*:25yzv5hx]When download is complete, click on My Computer to start the scan [*:25yzv5hx]When the scan completes, if anything malicious is detected, click the See Report button, then Save Report and save it to a convenient location. Post the contents of the ActiveScan report Also rename Hijackthis[Caution: ExecutableFile] to scan[Caution: ExecutableFile] Cheers

Erm HJT log? It's not a standalone tool but it should tell us what's in your PC. Also the site you've mentioned. I've visited it and it literally crippled my VM. lol

Poop, I didn't see this and replied to your original thread. Anyway once again. Start -> control panel -> add/remove program Look for the name of the toolbar and uninstall it.

Do you know the name of the toolbar? If you do you can go to add/remove programs (Start -> control panel -> add/remove) and remove it from there.

There are loads of MSN viruses running around. but there's shouldn't be any need not to use the program. Just don't click on any dodgy links sent to you from your friends. Also..watch out for MSN adwares. They are a pain to remove.

Norman is a German antivirus (I think). No, it's not norton. Update to your latest detection files. It shouldn't be flagged anymore. I also know panda flags it as suspicious. Norman ain't the best AV out there. It's full of F/Ps. I think the reason why it's flagged is because it's packed with UPX...