Browser redirects & weird wallpaper - 1 of 2

Re: Browser redirects & weird wallpaper - 2 of 2

You forgot to attach your HijackThis log. Please follow the instructions in step 7 of the READ ME and attach a HijackThis log. Make sure you follow those instructions properly.

Is your copy of Spy Sweeper a paid version or a free trial? What about AVG Antispyware?

Uninstall the CounterSpy trial now becaue we are finished with it.

Also uninstall Spybot - Search & Destroy 1.4 which is the old version.

 

The below files need to be deleted. See if you can delete them! Try safe mode if necessary.

C:\WINDOWS\bndsrfst.dll
C:\WINDOWS\bndsrsqo.dll
C:\WINDOWS\msvb.dll

If they will not delete, I will give you another way to remove them later.

 

Re: Browser redirects & weird wallpaper - 2 of 2

Run HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O2 - BHO: MSVPS System - {15272B08-F6FE-4E71-B2BD-A59AD23EBE3C} - C:\WINDOWS\bndsrfst.dll (file missing)
O3 - Toolbar: The netadv - {D1413F77-5B69-4562-84E1-78F997794E9D} - C:\WINDOWS\netadv.dll (file missing)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

After clicking Fix, exit HJT.
Delete the below folders if found:
C:\Documents and Settings\Jessica.RUNNERBUG\Application Data\Sunbelt Software
C:\Documents and Settings\All Users.WINDOWS\Application Data\Sunbelt Software
C:\Program Files\Viewpoint

Now run Ccleaner
Now reboot

Now attach the below new logs and tell me how the above steps went.

1. GetRunKey
2. ShowNew
3. HJT

Make sure you tell me how things are working now!

 

Re: Browser redirects & weird wallpaper - 2 of 2

You did not attach any of the requested logs. And to address your question yes you need to run GetRunKey and ShowNew again. That is the only way to get new logs which is what the last step requests.