IE Hijacker- Here's my HijackThis log. PLease help!

Edit by chaslang: Unrequested inline log removed. Please read the announcement and sticky threads at the top of the forum pages.

 

Next time you post your log file please read http://forums.majorgeeks.com/showthread.php?t=38752

And next time also go to "Manage Attachments" and load your log file from there after asking permission.

 

I need help with Hotoffers, too. I followed all applicable steps in the How To: Spyware, Trojan and Virus Removal Thread up to installing Hijack This!. Trend Micro's Free Online Virus Scan ran clean. Symantec Security Check and Virus Scan revealed: No viruses detected in memory, however, C:\Windows\SYSTEM32\systr.dll is infected with Download.dialer. McAfee AVERT Stinger found the W32/Klez.eml virus in C:\America Online 6.0\download\TARGET\TARGET.mim which it deleted, however, it also found the W32/Klez.eml virus in C:\America Online 6.0\download\TARGET.zip\TARGET.mim. Spybot found no immediate threats. However, Ad Aware found 3 critical objects:
IEHijacker.Hotoffers Object recognized
Type: RegKey
Category: Malware
Rootkey: HKEY_CLASSES_ROOT
Object: clsid\{12345678-0000-0010-8000-00aaff6d2ea4}
Type: RegValue
Category: Malware
Comment: {12345678-0000-0010-8000-00AAFF6DEA4}
Rootkey: HKEY_LOCAL_MACHINE
software\microsoft\windows\currentversion\explorer\sharedtaskscheduler
Value: {12345678-000-0010-8000-00AAFF6DEA4}
Possible Browser Hijack attempt
Type: RegData
Data: "http://www.hotoffers.info/287/"
Category: Malware
Comment: Possible Browser Hijack attempt
Rootkey: HKEY_USERS
Object: .DEFAULT\Software\Microsoft\Internet Explorer\Main
Value: Start Page
I saved complete Ad Aware log in a text file. Other removal tools ran clean. Please help this neophyte using dial up with Windows 98 (all critical updates are done) clean this nasty Trojan off my system. Also, on the advice of a friend, I ran Microworld Antivirus Toolkit Utility. Virus log indicates:
File C:\Windows\System32\systrl.dll infected by "Trojan-Downloader.Win32.Agent.Ko" Virus
File System found infected by "IEHijacker.Hotoffers Spyware/Adware" Virus
File System found infected by "cws.therealsearch Spyware/Adware" Virus

 

neo1, next time make a new thread and state your problem, follow the steps below. And post your log file in your own thread.

Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post)

 

XSpeedyX- Thank you for your post. I read those threads AFTER I posted originally. Sorry about that. :/
Now, where do I go to ask permission to post my logfile?

 

Ask chaslang about posting a logfile.