I want to know if nmy system is ok

Ok so I was using Limewire a few days ago.....which I am discovering is not a good idea. Anyway, I downloaded a few things and whether it was from something I downloaded or something In was getting the dreaded dcads addware.

This annoyance led to greater annoyances as my internet suddenly closes, that appears to be gone.

Another frustrating thing was the internet optioms security tab was poping up for no reason??? (thisn was after the closing internet thing).

So naturally being annoyed and worried I searched the net and eventually found your helpfull site.


I am prettty sure I followed the instructions to the "T" but I want to make sure I am 100% safe.

As per following the instructions here are my attachments...

Pls let me know if there is more i have to do thanks.

PS: I will tell my freinds about this great and helpfull site.

 

Hi vampirate,
Sorry this has taken awhile.

1) Go to add/remove programs and uninstall the below:

- Java 2 Runtime Environment, SE v1.4.2_03
- Java(TM) 6 Update 2
- Browser Optimizer Dcads
- Browser Optimizer Superiorads

2) Run C:\MGtools\analyse.exe by double clicking on it. This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O2 - BHO: browser optimizer superiorads - {8E015787-B1E3-404a-95DE-3E71E1FA0305} - C:\WINDOWS\system32\spads.dll (file missing)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup
O4 - HKCU\..\Run: [Update Manager] "C:\Program Files\Rogers\Update Manager\UpdateManager.exe" /background
O4 - Startup: BitTorrent.lnk = C:\BitTorrent\bittorrent.exe
O4 - Global Startup: ION Backup Tool.lnk = ?

Do you need the following 015 entry in your trusted zone? If not, please fix it. Also, you can fix all the 018 entries from Logitech.

O15 - ESC Trusted Zone: http://*.update.microsoft.com

After you click fix, just close hijackthis.


3) If you do not use Windows Messenger (not to be confused with MSN Messenger!!) I would like you to run Disable/Remove Windows Messenger

4) Now download The Avenger by Swandog46, and save it to your Desktop.

• Extract avenger.exe from the Zip file and save it to your desktop
• Run avenger.exe by double-clicking on it.
• Check the 'Input script manually' box.
• Click on the magnifying glass icon.
• Copy everything in the Quote box below, and paste it in the box that opens:

• Now click the 'Done' button.
• Click on the traffic light icon and OK the prompt.
• You will be prompted to restart, OK the prompt and your PC should reboot, if not, reboot it yourself.
• A log file from Avenger will be produced at C:\avenger.txt

5) Please download ATF Cleaner by Atribune. This program does not require an installation. The executable actually runs the program.

NOTE: This program is for Windows XP and Windows 2000 only. ATF Cleaner will remove all files from the items that are checked so if you have some cookies you'd like to save. Please move them to a different directory first.

• Double-click ATF-Cleaner.exe to run the program.
• Under Main choose: Select All
• Click the Empty Selected button.

If you use Firefox browser

• Click Firefox at the top and choose: Select All
• Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.

If you use Opera browser

• Click Opera at the top and choose: Select All
• Click the Empty Selected button.
  • NOTE: If you would like to keep your saved passwords, please click No at the prompt.

Click Exit on the Main ATF Cleaner menu to close the program.


6) Please run C:\MGtools\GetLogs.bat and attach the fresh MGlogs.zip it generates along with the Avenger log.


Let me know how things are running now?
abri

 

Well here are them logs you suggested although I don't think the beavers will appriciate them as much as you might.

Dumb corny jokes aside here they are.

 

How is your computer doing?

Please go to add/remove programs and uninstall the following.

Viewpoint Media Player
WildTangent GameChannel (remove only)

If you don't have any further malware symptoms, please continue with the final clean-up instructions:

abri