cws make me mad arggg

Chaslang has a complete removal tutorial here:
http://forums.majorgeeks.com/showthread.php?t=38772


We can check your log file after that if needed

 

Right now I do not see the typical O2 BHO hijacker dll so I'm not sure if it is just temporarily missing or it is fixed. Try the easy approach right now and let's see what happens.

Run HijackThis and put check marks on the following lines (do not Fix yet):
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = file://C:\DOCUME~1\Owner\LOCALS~1\Temp\sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = file://C:\DOCUME~1\Owner\LOCALS~1\Temp\sp.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = file://C:\DOCUME~1\Owner\LOCALS~1\Temp\sp.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = file://C:\DOCUME~1\Owner\LOCALS~1\Temp\sp.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = file://C:\DOCUME~1\Owner\LOCALS~1\Temp\sp.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = file://C:\DOCUME~1\Owner\LOCALS~1\Temp\sp.html

Now make sure all Internet Explorer and Windows Explorer sessions are terminated. The click Fix on HijackThis. Let me know if you are still being Hijacked. If so and it still looks similar to your previous HijackThis log, do not try to fix it using anything. Just post a new HijackThis log attachment. I do not believe the type you may have is fixable with About:Buster.

 

Chaslang, you think closing his browser and using a program like CCleaner might help too as it should delete the files in question?

 

It could! The HijackThis lines will still have to be fixed though. But if the DLL, AppInit_DLL, or StreamingDevice DLL (the last two are always very hidden) is still there neither CCleaner or just having HijackThis fix the R0 &R1 registry entries will work.