how do i unzip files suggested to get rid of not funny computer problems?

hello, i am new at this. forgive me if i mess up. i have attempted to follow all steps. however, i encountered a few problems along the way. first, i cannot unzip a few files suggested on this site. second, when i try to run symantec security check all i get is a white screen. i have tried to take down good notes if that helps.
i seem to be plagued by 180 search assistant. also, something keeps shutting of my symantec software.
please help, i need my computer right now to find a job FAST!!!!!

 

Download the following two files, create a folder on your desktop, call it TSC. Save these 2 files there!

Sysclean Package

Pattern.zip

Once you have these downloaded into the folder you just created, double click the file sysclean.com

When the system cleaner loads, click SCAN to start the scanner.


After you complete the scan above, run full scans with Spybot S&D and Ad-Aware SE. After you complete these few steps you may procede with a HJT log.

http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

ok. i followed your instructions. here is the log file,,,if i can figure out how to find it and attach it. thank you in advance for all your time!

 

Please boot into Safe Mode with the Viewing of Hidden Files & Folders Enabled


Now scan with HijackThis and Check the Boxes for the following:

Make sure All Browser Windows are Closed when you Click FIX.

O2 - BHO: (no name) - {B75F75B8-93F3-429D-FF34-660B206D897A} - C:\WINDOWS\SYSTEM\ZOLKER001.DLL

O4 - HKLM\..\Run: [PPCRunonce] C:\WINDOWS\SYSTEM\PPCRunOnce.exe
O4 - HKLM\..\Run: [vmtuner] gglib.exe
O4 - HKLM\..\Run: [Auto Update] C:\WINDOWS\stchost.exe
O4 - HKLM\..\Run: [load32] C:\WINDOWS\SYSTEM\winldra.exe
O4 - HKLM\..\Run: [Printer Spooler] C:\WINDOWS\SYSTEM\winspooler.exe
O4 - HKCU\..\Run: [SNInstall] C:\WINDOWS\SYSTEM\CVXH8JKDQ2.EXE

O16 - DPF: {15AD6789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://static.windupdates.com/cab/MediaAccessVerisign/ie/bridge-c15.cab

O21 - SSODL: OLE Module - {0656A137-B161-CADD-9777-E37A75727E78} - (no file)

Again, make sure All Browser Windows are Closed when you Click FIX.

NOW:
Navigate to and DELETE the following if they should remain:

C:\WINDOWS\STCHOST.exe

C:\WINDOWS\SYSTEM\ZOLKER001.dll

C:\WINDOWS\SYSTEM\winspooler.exe

C:\WINDOWS\SYSTEM\CVXH8JKDQ2.exe

C:\WINDOWS\SYSTEM\PPCRunOnce.exe

C:\WINDOWS\SYSTEM\winldra.exe

gglib.exe <-- Search for this file and delete when found!

NEXT:
Run CCleaner to clean up cookies and temp files.

Run full scans with Ad-Aware SE & Spybot S&D and have both programs fix what they find.
Note: Remember to get all updates before doing the scans.

Then, as an added precaution, Go to Start > Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:
Temporary Files
Temporary Internet Files
Recycle Bin

And Click OK.


Reboot to Normal Windows , Scan with HijackThis and attach the new log.

 

so far so good, i think. i have attached the new log as instructed.
when i look at my computer profile it says:
Compatibility - mode paging reduces overall system performance.
Drive A: is using MS-DOS compatibility mode file system.
Drive C: is using MS-DOS compatibility mode file system.
does this have anything to do with my computer problems? i have read about "boot virus" at microsoft site. are these things related? please excuse me if i ask the wrong questions or too many questions.

 

I dont believe so, your HJT log appears to be from Safe Mode so attach a fresh one from normal mode.

 

here is new log from normal mode.

 

Your HJT log is clean, are you having any further problems?

 

i believe you have helped me rid my computer of major problems!!!! A GIANT THANKS FOR YOUR HELP!!!! i really need my computer to help me find a job asap. since i could not punch out the person who wrote the nasty program or programs that plagued my computer, it felt great to fight back and regain control instead of nuking my entire system. i have numerous cover letters that would have been a major pain to recreate. not to mention lots of important bookmarked internet sites related to my current job search. AGAIN, THANKS A TON!!!
are you the right person to assist with the following-
when i look at my computer profile in safe mode it says:
Compatibility - mode paging reduces overall system performance.
Drive A: is using MS-DOS compatibility mode file system.
Drive C: is using MS-DOS compatibility mode file system.
when i look at it in normal mode it says
Drive A: is using MS-DOS compatibility mode file system.
please advise. my computer still looses internet connection (via peoplepc.com) whenever i sit on a page for more than a minute or two. at times, when i fill out apps for jobs, i have to set up info to be cut and pasted instead of taking my time at various employment sites.

 

I think the problem may have resurfaced?! So, I ran many of the programs suggested on majorgeeks site. While running Ad-aware SE the program was interupted by the message-
Repair Successful
C:\Windows\Temp\aawtmp\c4067640\1962d4\eied_s7_c_175.exe
I hit "finish" to get rid of the message and enable adaware to continue. Adaware found nothing. Neither did any of the other detection programs. Also, this quicktime program that I deselected with msconfig has reappeared??? The last words are "atboot" or something to that effect. I don't know if that is a clue or not.
Was the interuption of adaware se and the "repair successful" message indicate further problems?
I reran HJT and have attached the log. I would compare it to the earlier one that you indicated was clear but I am unable to view it. I guess I don't have the right program to see it or something.

 

sorry, i think hjt log may have been from safe mode. i reran hjt and have attached the new log from normal mode.

 

Your HJT log is still clean, for your other issues you mentioned I would recommend posting those in the Software Forum.

Good Luck!

 

i think you are right. sorry to trouble you. i guess i have a new google tool bar that i never authorized or requested? it is very strange and curious if not a bit suspicious?? a function of this tool bar is to flash a strange looking icon each time a pop-up add is intercepted?? i was using dexonline as a job search tool when the pop-up interceptor icon started flashing like crazy. i thought it looked like a sign of trouble. but, maybe it stands to reason that there would be a lot of pop-up ads activated when using dexonline???
hey, thanks again for all your help!!!!! the pressure of my current job search is making me crazy and it is nice to think that someone out there is on my side.

 

If you want to remove the toolbar you should be able to go in Add/Remove Programs and uninstall it.

Let me know if you need any further assistance.

 

I have come to realize that the toolbar is related to this internet site. As far as I am concerned, majorgeeks.com is the coolest thing since the electric guitar! I will keep the toolbar.
This site and yourself and the other people here are the first thing to make sense to me in seven months (when cingular bought att wireless and left me without a job). I wish there were more people like yourself out here in Minnesota!!!!
THANKS AGAIN!!!!! It is very satisfying to beat the FB who wrote the program that had its hooks in my computer.

 

You're Welcome!

You should see this article on How to Protect yourself from malware!