EDOW.EXE removal help please

You have HijackThis installed incorrectly and you did not exit your browser before running HijackThis. You are running HJT from your Desktop.

Please follow the below guidelines from now on:

- Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post).

 

If you are using WinXP or WinMe, make sure you have system restore disabled (per the tutorial).
For all OS types, make sure viewing of hidden files is enabled (per the tutorial).

Look in Add/Remove programs for the below and uninstall them if found:
Admanager Controller
SAHBundle or Bundle

Please run HijackThis and click on the "Open the Misc Tools Section" button on the open page. Then select "Open process manager" on the left-hand side. Look for the following process (or processes) and one at a time kill them by selecting it and then click "Kill process". Then click yes.
C:\Program Files\Admanager Controller\AdManCtl.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\bundle.exe
C:\Program Files\Admanager Controller\AdManKeep.exe
C:\temp\EDowPack.exe
C:\temp\EDowPack.exe
C:\temp\EDowPack.exe


After killing all the above processes, click "Back".

Then please click "Scan" and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS\SYSTEM\blank.htm
O4 - HKLM\..\Run: [Admanager Controller] C:\Program Files\Admanager Controller\AdManCtl.exe
O4 - HKLM\..\Run: [SAHBundle] C:\DOCUME~1\ADMINI~1\LOCALS~1\Temp\bundle.exe

After clicking Fix, exit HJT.

Boot into safe mode and use Windows Explorer to delete:
C:\Program Files\Admanager Controller <--- the whole folder
C:\Documents and Settings\Administrator\Local Settings\Temp\bundle.exe
C:\temp\EDowPack.exe

If you get an error when deleting a file. Right click on the file and check to see if the read only attribute is checked. If it is, uncheck it and try again. Other wise open Task Manager and kill the process if running then delete the file.

Now run Ccleaner (installed while running the READ ME FIRST).

Now reboot in normal mode and post a new HJT log. And tell us how things are working.

 

Okay! That looks better! Are you having any problems?

But note your OS and IE are way out of date! You must update! See and run the steps in the below link:

How to Protect yourself from malware!

Also your Ad-Aware 6 is out of date.

 

Okay! But you must follow all the steps in the How to protect thread I referred you to.
If you do not, you will find yourself back here again looking for help.

 

Ad-Aware 6 is old and out of date. Are the rest of your tools out of date too? Please start your own thread for your problem. But run ALL the steps in the sticky thread first:

READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal

 

You're welcome! If you have anymore problems related to this, please put them into a new thread of your own.