Damn antispyware-reviews.biz please help!

Abri,

Did you notice that the HJT log shows evidence of THREE antivirus programs? It appears that a very important starting step of the READ ME was skipped.

 

Please answer the below questions.

1. Did you follow the instructions for using MGtools?
2. Did you disable UAC and then reboot?
3. Did you save MGtools.exe to c:\MGtools.exe
4. And then did you run MGtools.exe as administrator as requested?
5. What problems are you having with MGtools?
6. Do you see the C:\MGtools folder?
7. Do you see the C:\MGlogs.zip file?

Please try using the below to uninstall Panda:

Your Uninstaller! 2008

Did that work?



Run C:\HJT\analyse.exe by double clicking on it. (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O4 - HKCU\..\Run: [ynqafbjl] C:\Windows\system32\wtqroxyn.exe
O4 - HKLM\..\Policies\Explorer\Run: [M5mNzfepmi] C:\ProgramData\yjyxejod\ghwtchsb.exe
O9 - Extra button: PalTalk - {4EAFEF58-EEFA-4116-983D-03B49BCBFFFE} - C:\Program Files\Paltalk Messenger\Paltalk.exe (file missing)
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Programs\PartyGaming\PartyPoker\RunApp.exe (file missing)

After clicking Fix, exit HJT.

Now download The Avenger by Swandog46, and save it to your Desktop.

• Extract avenger.exe from the Zip file and save it to your desktop
• Run avenger.exe by double-clicking on it.
• Do not change any check box options!!
• Copy everything in the Quote box below, and paste it into the Input script here: part of the window:

• Now click the Execute button.
• Click Yes to the prompt to confirm you want to execute.
• Click Yes to the Reboot now? question that will appear when Avenger finishes running.
• Your PC should reboot, if not, reboot it yourself.
• A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

After reboot look for all of the above files we had Avenger attempt to delete. If you still see them, delete them yourself.

Now run Ccleaner!

Now run the C:\MGtools\GetLogs.bat file by double clicking on it. Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Avenger.

Make sure you tell me how things are working now!

 

Okay this is the problem and that is why Abri ask you if you were running x64 back in message # 2. The tools are not compatible with your version of Windows.

Please download GRK64.zip to your C:\MGtools folder and extract the GRK64.bat file into the same folder. GRK64.bat should run on x64. Then double click on the GRK64.bat file. It should create a runkeys.txt log and it probably will even ZIP it into the MGlogs.zip file in your root folder of the Windows boot drive. Attach the new MGlogs.zip file now.

I still see Panda in the HijackThis log you attached. Did you get this HijackThis log before or after running Your Uninstaller.

You need to uninstall your old Sun Java versions and install the current version as requested in step 1 of the READ ME.