my own misterious problems

here are the reports.
i get frequent pop-ups all the time, no matter what i do!
i would be very thankful if you could help me!

she

 

Please EXTRACT HijackThis from the ZIP File to a Safer location. Here's how:

To create a new folder:

• Click START > My Computer > Local Disc C: > Program Files
• Now, Right Click on an Empty Area and select New > Folder & name it HijackThis and ENTER

To Extract HijackThis:

• Now, Right Click your HijackThis ZIP File and select Extract All > Next > and browse to your newly created HijackThis Folder
• (C:\Program Files\HJT) and click Next.

After you have completed the above steps to relocate HJT, run it from the new location. Please save your HJT log as a .txt file and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

The reason HJT needs its own safe folder is so that backups will be safely preserved. That way, if a mistake is made in the removal process, the mistakenly deleted entry can be restored.

 

ok, i hope i did alright

 

Scan with HijackThis and check the boxes for the following entries:
( Make sure ALL browser windows are closed when you click FIX )

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.myspace.com/index.cfm?fuseaction=user&Mytoken=FE7E344C-F423-1356-7F50 13FE14C26B3B63518254&setonlinenow=1&Mytoken=C6D83155-D370-A0DF-87411045EBBC27E41 1832487
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home1.myspace.com/index.cfm?fuseaction=user&Mytoken=FE7E344C-F423-1356-7F 5013FE14C26B3B63518254

R3 - Default URLSearchHook is missing

O2 - BHO: (no name) - {01D5916B-FFDA-0234-01B2-56B95403A4FF} - C:\DOCUME~1\SHELLY~1\APPLIC~1\SCRJUG~1\audio exit.exe (file missing)

O4 - HKLM\..\Run: [OPEN LICENSE SCR ACID] C:\Documents and Settings\All Users\Application Data\Cakeflapopenlicense\stop scr.exe
O4 - HKCU\..\Run: [AIMOBJ] C:\DOCUME~1\SHELLY~1\APPLIC~1\FIRSTL~1\bash remote.exe

O17 - HKLM\System\CCS\Services\Tcpip\..\{A898B9A9-F985-44BB-A77F-E1B01DEB76E8}: NameServer = 192.115.106.35 62.219.186.7

Again, make sure ALL browser windows are closed when you click FIX.

Now, Please boot into Safe Mode, be sure you have the Viewing of Hidden Files & Folders Enabled per the tutorial. Now, navigate to and DELETE the following if they should remain:

C:\Documents and Settings\SHELLY~1\Application Data\SCRJUG~1 ← Delete this whole folder if it exist!

C:\Documents and Settings\All Users\Application Data\Cakeflapopenlicense ← Delete this whole folder if it exist!

C:\Documents and Settings\Shelly e\Application Data\first less film ← Delete this whole folder if it exist!

C:\Documents and Settings\Shelly e\Local Settings\Temp ← Delete everything in this folder!

C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll

C:\WINDOWS\NDNuninstall6_98.exe

Next, copy the contents of the below Quote Box to Notepad. Then click File and then Save As. Change the Save as Type to All Files. Name the file fix.reg and then click save. (make sure you save it somewhere you can find it. Saving it to your Desktop may make that easy.) Then double-click on the fix.reg file on your desktop (or locate it with Windows Explorer and double click on it if not saved to the Desktop) and when it prompts to Add in to the registry, say yes.

Next, run CCleaner to clean up cookies and temp files.

Run full scans with Ad-Aware SE & Spybot S&D and have both programs fix what they find.
Note: Remember to get all updates before doing the scans.

Then, as an added precaution, Go to Start > Run and type: cleanmgr and then click OK. Make sure the boxes for these are checked:

• Temporary Files
• Temporary Internet Files
• Recycle Bin

And Click OK.

After you complete the above, REBOOT and proceed with the rest of this fix...

Finally, I would like you to flush your System Restore points. Please follow the instructions in the below:

• Disable and Re-enable System Restore
  
  
• Turn OFF System Restore to flush any bad Restore Points.
  
  
• Then, follow the instructions at the bottom of the linked page to Re-enable the Restore Utility which will create a fresh restore point.

After you complete the above reboot once more and then scan with HijackThis and attach the new log.

Let me know of any problems you may have encountered with the above instructions and also let me know how things are running now.

 

I edited it fixed it, got too much going on, can't think.

 

well. i did everything.. hoe is it looking now?

 

Looks good, are you having any further problems?

 

look good to me too

thank u very very much!!1

 

Your Welcome!

You should see this article on How to Protect yourself from malware!

Surf Safely!