Cant Get Rid Of Win 32 Swizzor

I Have Win 32 Swizzor Ive Tried To Get Rid Of It But I Am Completly Stuck Coz Now I Can Only Start In Safe Mode And Cant Access The Internet ,please Help!!!

 

Hi Thanks For Your Reply But Already Read The "read And Run First" And I Am Not Able To Download Any Of The Tools Needed As I Cant Get On To My Internet Is There Anything Else I Can Do Your Help Is Much Apprieciated

 

Hi Thanks For Your Reply But I Have Already Read The "read And Run First"and I Am Not Able To Download Any Of The Tools Needed As I Cant Get On To My Internet Is There Anything Else I Can Do Your Help Is Much Apprieciated

 

yes i have messenger plus installed but cant uninstall it for some reason i will download the tools needed now transfer them thanks for your help i will get back to you on how it goes

 

Still Got Problems

I Copied The Tools Needed From The Read And Run Me First Instructions To Cd From A Working Pc But It Wouldnt Let Me Use Microsoft Windows Defender , Counter Spy Or Spy Bot And I Still Cant Access My Internet And Can Still Only Boot Up In Safe Mode. My Pc Wont Let Me Copy My Hijack This Log To Cd So I Cant Post It You From This Pc So Have You Anymore Advice That Might Help Me Please

 

Re: Still Got Problems

Stay in one thread; don't start multiple threads.

 

Re: Still Got Problems

Save it to floppy or a thumb drive.

 

My Floppy Doesnt Work , Whats A Thumb Drive (sorry Im A Bit Thick)

 

Heres My Hijack This Log

 

Please Can Someone Take A Peek At My Hijack This Log To See What Need Fixing, Any Help Much Appreiciated.

 

You have to be paitient, we are volunteers here; and aren't always online. Chaslang and myself are the only 2 who work this forum regularly. Halo, helps out when neither one of us are around.

HijackThis is not correctly installed, move it to C:\Program Files\HJT.

That is a very incomplete HijackThis log. Whatever you are using MSCONFIG to disable don't. I need to see everything. Don't use MSCONFIG to get into Safe Mode unless absolutely necessary. Enable all processes and services you stopped with MSCONFIG, reboot to Normal Mode and run HijackThis and save the log.

First follow the directions for Running Hoster. Then run HijackThis.

Post a fresh HijackThis log from Normal Mode.

A "Thumb Drive" is a USB Flash Memory Stick.

 

Hi Idont Know How To Enable All Processes Using Msconfig Please Can You Tell Me, Also I Have Run Hoster But Still Can Only Reboot In Safe Mode

 

Hi
Have Just Done Msconfig And Changed To Normal Startup But When I Reboot I Can Only Get As Far As The Windows Xp Loading Screen And It Just Stays As That Is There Any Other Way To Get It In To Normal Mode Thanks For Al Your Help

 

Heres My New Hijack This Log

 

Download
- Pocket Killbox

Running processes:
C:\WINDOWS\system32\sessmgr.exe <<=== This belongs to the Remote Desktop Assistance Program. Are you running this for some reason?
C:\Program Files\Java\j2re1.4.2_01\bin\jusched.exe <<=== Your version of Java is extremely out-of-date. Install version 1.5.0_07 available from http://www.java.com/en/download/manual.jsp. Make sure you uninstall all older versions of Java
C:\Program Files\Messenger\msmsgs.exe <<=== This is Windows Messenger and should NOT be running on a Home Computer. Disable Windows Messenger by running Shoot The Messenger.
C:\Program Files\HijackThis.exe <<=== HijackThis still is not in the proper location. Move HijackThis to C:\Program Files\HJT before proceeding any further.

Now Run HijackThis. Click the 'Do a system scan only' button. Place a checkmark in the box next to the following lines:

Click on the 'Fix checked' button. Wait for HijackThis to finish; close HijackThis.

Now run Pocket Killbox:

Choose Tools -> Delete Temp Files and click the RED X.

Run Killbox.exe. Paste the below filenames into KILL BOX one at a time. Check mark the box that says "Delete on Reboot" and checkmark the box "Unregister DLL" (If available) Click the RED X and it will ask you to confirm the file for deletion say YES and when the next box opens prompting you to reboot now...click NO...and proceed with the next file. Once you get to the last one click YES and it will reboot. Note many of the file list below may not exist but we need to check for them anyway.

If Killbox does not reboot or you get a Pending Operations type error message just reboot your PC yourself.

Now boot into SAFE MODE

Open Windows Explorer navigate to and DELETE the following: (Some of these may have already been deleted by Pocket Killbox)

Now run CCleaner. If you have Windows XP delete the contents of C:\WINDOWS\Prefetch.

Then, as an added precaution, Go to Start -> Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.

REBOOT to Normal Mode.

Follow the directions for the following procedures:
- Running WinPfind by OldTimer
- Using GetRunKey

Post WinPFind.txt, runkey.txt and a fresh HijackThis log.