please please help me

If you have run the tutorial, post your logfile for us to see.

 

You did not follow all the steps of the tutorial. You show no signs of running the online scans and possibly some of the other steps were not run either. You also have the wrong version of HijackThis which would not be the case had you followed directions either. Also you have HijackThis running from your Desktop instead of its own directory and you did not shut down your browser before running the HijackThis scan. It is very important to follow directions completely if you want to resolve your problems. Skipping steps will only delay get your problems fixed.

I will try to work with the log you have posted but you need to finish running the steps of the READ ME and you must get HijackThis into its own directory (also referred to as a folder).

 

Goto Add/Remove Programs and look for WeatherBug and SyncroAd or Windows SyncroAd. If found, uninstall them.
In the below steps I include WeatherBug and SyncroAd steps. If Add/Remove programs was able to uninstall them, just ignore the lines below that mentioned them.

Make sure you have system restore disabled and viewing of hidden files enabled (per the tutorial).

Please bring up Task Manager by hitting CTRL-ALT-DEL and click the Processes tab. Find the below processes and End them:
WinSync.exe <--- If found, select WinSync. Right click on it and choose "end process tree".
SyncroAd.exe <--- if still running after the above, end this too.
Weather.exe
wpabaln.exe

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R3 - URLSearchHook: (no name) - _{707E6F76-9FFB-4920-A976-EA101271BC25} - (no file)
O2 - BHO: (no name) - {3BFA1259-B66B-0F94-D357-60550BF3791A} - C:\WINNT\system32\eidq.dll
O2 - BHO: (no name) - {6DA61704-B311-01BE-8720-115578F3714E} - C:\WINNT\System32\hyhacpd.dll
O4 - HKLM\..\Run: [Windows SyncroAd] C:\Program Files\Windows SyncroAd\SyncroAd.exe
O4 - HKCU\..\Run: [Weather] C:\Program Files\AWS\WeatherBug\Weather.exe 1
O16 - DPF: {15AD4789-CDB4-47E1-A9DA-992EE8E6BAD6} - http://public.windupdates.com/get_f...b23c1caca093805
O16 - DPF: {3FE16C08-D6A7-4133-84FC-D5BFB4F7D886} (WebGameLoader Class) - http://zone.msn.com/bingame/rtlw/de...bGameLoader.cab
O16 - DPF: {4B9F2C37-C0CF-42BC-BB2D-DCFA8B25CABF} (PopCapLoaderCtrl Class) - http://zone.msn.com/bingame/rock/de...pcaploader1.cab
O16 - DPF: {511073AD-BE56-4D43-AE68-93390514385E} (TechToolsActivex.TechTools) - hcp://system/TechTools.CAB
O16 - DPF: {56336BCB-3D8A-11D6-A00B-0050DA18DE71} (RdxIE Class) - http://software-dl.real.com/0627bd2...ip/RdxIE601.cab
O16 - DPF: {739E8D90-2F4C-43AD-A1B8-66C356FCEA35} (RunExeActiveX.RunExe) - hcp://system/RunExeActiveX.CAB
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} - http://www.nick.com/common/groove/gx/GrooveAX25.cab
O16 - DPF: {99CDFD87-F97A-42E1-9C13-D18220D90AD1} (StartFirstControl.CheckFirst) - hcp://system/StartFirstControl.CAB
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://antu.popcap.com/games/popcaploader_v5.cab


Boot into safe mode and use Windows Explorer to delete:
C:\Program Files\Windows SyncroAd <--- the whole directory
C:\Program Files\AWS\WeatherBug <--- the whole directory
C:\WINNT\system32\wpabaln.exe
C:\WINNT\system32\eidq.dll
C:\WINNT\System32\hyhacpd.dll

No reboot in normal mode and post a new HJT log. And tell us how things are working.

 

But that just confirms what I said. You did not run all the steps. You should have come back here and told us what problems you were having. The steps need to be run completely, in the order written, and you must have system restore disabled and you must be in safe mode where specified.

Downloading HijackThis would not crash your computer. You must have been doing something else before it crashed. Also, if you downloaded HijackThis from the link given in the READ ME FIRST thread there is no way you would have the wrong version. Unless you are not using the version you downloaded from Majorgeeks. And if you reinstalled Windows, why do you still have problems? And even more importantly why didn't you tell us this info? We have no idea what is happening at your end unless you give us feedback. You must help us to help you by following directions and telling us the results. If there are problems or you do not understand something, ask for help.

If you re-installed Windows and were having problems again, you should have begun the process from the first step all over.

Delete the version of HijackThis that you have and download ours Hijack This
Unzip the executable file into its own directory. Then follow the steps I gave you in message # 5.

 

Obviously when your PC is down you cannot communicate with us. I'm taking about when you came back and post that HJT log. All you said was your computer was down for a few days. You did not say you re-installed the OS. At anyrate let's get your problems fixed.

So you were able to disable system restore. Right?
You were able to boot in safe mode. Right?
Did you re-run the online scans yet?
Did you run the steps I gave you in message number 5?

You do not have to buy an anti-virus application. There are free ones here. See this thread: How to Protect yourself from malware!

If I used any form of a messenger program, I would never get anything done. I would be to busy with instant messages.

 

When you get into safe mode you just run the steps as written. Step 1 is boot to safe mode and do the scans recommended. If you have a problem for some reason running those scans from safe mode. Then do step one in normal boot mode and then boot to safe mode again and continue on at step 2.

If you re-install Windows, you will loose everything you have downloaded and configured.

You may have a crash log in drive C root. What is the full filename?

 

Okay! Just ask questions if you have problems.