ran logs for trojan now need help to fix

What malware problems were you having that prompted you to work thru the procedures to begin with?

You appear to have both Trend Micro and Symantec antivirus or security centers installed. You must only use one as mentioned in step 3 of the READ ME. You need to uninstall one!

Is your copy of Spyware Doctor a paid or free version?

No you don't need to hide files! But that is your choice. Changing the settings back will allow any future malware files to hide from your sight again.

Why are you saying you want to do a system restore? That would possibly bring back any malware that you have already removed.

Make sure viewing of hidden files is enabled (per the tutorial).

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R3 - URLSearchHook: (no name) - ~CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
R3 - URLSearchHook: (no name) - ~EA756889-2338-43DB-8F07-D1CA6FB9C90D} - (no file)
O2 - BHO: (no name) - {c6d44bc0-cf2b-47a7-824c-2e30a9ddd3ec} - C:\WINDOWS\system32\igftat.dll (file missing)

After clicking Fix, exit HJT.:
Now we need to Reset Web Settings:

1. If you have an Internet Explorer icon on your Desktop, goto step 2. If not, skip to step 3.
2. Now right click on your desktop Internet Explorer icon and select Properties. Then click the Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK. Then skip step 3.
3. If you do not have an Internet Explorer icon on your Desktop, click Start, Control Panel (for some systems it may be Start, Settings, Control Panel), Internet Options, Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK.

Now reboot in normal mode and post a new HJT log.

Make sure you tell me how things are working now.

Reminder Note: Once we have determined you are malware free you will need to disable System Restore, reboot, and re-enable system restore per step 1 of the READ & RUN ME. This only applies to if using WinXP or WinMe.

 

Let's speed things up a little more!

If you plan on keeping the Spyware Doctor subscription and keeping it up to date (this means you have to pay the yearly subscription) then it is fine to keep it. If you do this, then uninstall the free Windows Defender.

If you are not going to keep Spyware Doctor up to date then you should uninstall it and keep Windows Defender installed.

Buying PC Cillin is your choice but if you want full support and all the features from it, you will have to buy it. Otherwise you can you the free tools in our How to protect thread (sticky).

You can know have HijackThis fix the below non-malware items (they are just not needed) to help speed things up some more:


O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - https://www-secure.symantec.com/techsupp/asa/ctrl/SymAData.cab


Your log is clean. If you are not having any other malware problems, it is time to go back to step 1 of the READ & RUN ME to Disable System Restore which will flush your Restore Points. Then reboot and enable System Restore to create a new clean Restore Point.

After that, you should work thru the below link:

How to Protect yourself from malware!

 

Re: TROJAN FREE Thanks to you!!!!

You're welcome. Surf safely!