I followed the instructions, can anyone help?

Mr. Murphy · Apr 7, 2006

I followed the instructions in the READ AND RUN post, and then I ran HiJack This and followed the instructions in that post, and I think things are worse now than they were before (I must have accidentally deleted something I shouldn't have). I'm on my roommates laptop, my own computer doesn't even get the internet anymore, ever since I got slap happy with Hijack. Oh well, even if I can't regain the interweb, I sure would like it if my computer worked again. It's crippled with popup attempts and after a few hours it doesn't work at all.

Logs attached.

Mr. Murphy · Apr 7, 2006

CCleaner log

chaslang · Apr 7, 2006

Welcome to Majorgeeks!

You have a bunch of different problems. This will require some additonal scans to be run and will require multiple stags of removal.

Let's start with your Look 2 Me and SurfSideKick infections.

Please download Look2Me-Destroyer.exe to your desktop.

Close all windows before continuing.

Double-click Look2Me-Destroyer.exe to run it.

Put a check next to Run this program as a task.

You will receive a message saying Look2Me-Destroyer will close and re-open in approximately 10 seconds. Click OK

When Look2Me-Destroyer re-opens, click the Scan for L2M button, your desktop icons will disappear, this is normal.

Once it's done scanning, click the Remove L2M button.

You will receive a Done Scanning message, click OK.

When completed, you will receive this message: Done removing infected files! Look2Me-Destroyer will now shutdown your computer, click OK.

Your computer will then shutdown.

Turn your computer back on.

Please post the contents of C:\Look2Me-Destroyer.txt

If Look2Me-Destroyer does not reopen automatically, reboot and try again.

If you receive a message from your firewall about this program accessing the internet please allow it.

If you receive a runtime error '339' please download MSWINSCK.OCX from the link below and place it in your C:\Windows\System32 Directory.
http://www.ascentive.com/support/new/images/lib/MSWINSCK.OCX

Now run this: SurfSideKick Removal

Now we need some more info so that we can also start to work on your Qoologic infection.

Please download FindQool by LonnyRJones

Extract the files and place the FindQool folder into root folder of your hard disk. This is usually C:\

Open the folder and run Qlocate.bat

Post the contents of the txt.log which will open wen the scan is finished.

Now also attach a new HijackThis log.

Question: Did you install and run Spybot as instructed in the READ ME?

Mr. Murphy · Apr 7, 2006

Thank you very much for your help, I am working on following your instructions.

Mr. Murphy · Apr 7, 2006

I installed and ran SpyBot as part of the read and run this first instructions, but that was on wednesday. I haven't been able to get back to the computer until today and it may have been used in my absence.

I didn't find any replace.dll files. I have followed the proper instructions to show hidden files, even in safe mode. Here are my logs.

chaslang · Apr 7, 2006

You must attach the requested log from Look2Me-Destroyer too.

Also since some more items showed up in your HJT log, I would like you to run one more scan (it is very quick):

Let's get an installed programs list from HijackThis!

Run HijackThis, click Open the Misc Tools section

Click Open Uninstall Manager

Click Save List (generates uninstall_list.txt)

Click Save, to save it to a file where you can find it.

Attach the uninstall_list.txt file to your next message.

Log in or Sign up

I followed the instructions, can anyone help?

Mr. Murphy Private E-2

Attached Files:

hijackthis.lognow.txt

adawarelog.txt

Activescan.txt

bdscan.txt

Mr. Murphy Private E-2

Attached Files:

ccleanerlog04-05-06.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member

Mr. Murphy Private E-2

Mr. Murphy Private E-2

Attached Files:

hijackthis.logrecent.txt

report.txt

chaslang MajorGeeks Admin - Master Malware Expert Staff Member