THANKS or, my "Do what I want" key missing

You're welcome! Please do not make duplicate threads. I deleted the other one with similar info in it.

 

Please perform the following steps:


- Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post).

 

I really need to see your log after removal otherwise I will just be telling you to fix stuff you may have already fixed. You should be able to upload the second log. The only thing that may prevent that is if the file contents have not changed or if you used the same filename.

Did you empty your Recycle Bin?

 

What delete list? Are you talking about CCleaner? I have no idea what items it is telling you to delete without seeing them, but I have never had a problem when just using Ccleaner to delete temp files (do not use the Issues tab). What part of Ccleaner did you run?

You appear to have multiple antivirus applications installed. You must only use one. So pick the one you wish to keep and uninstall any others.

 

I would also disable Spybot's Teatimer function.

To disable TeaTimer, run Spybot and click Mode and select Advanced Mode. Then click Tools and select Resident. Now in the right window pane, uncheck TeaTimer.
Also while this is open, in the left column now select IE Tweaks and then in the right pane make sure all the Miscellaneous locks are unchecked.
Now quit Spybot!

If you are using WinXP or WinMe, make sure you have system restore disabled (per the tutorial).
For all OS types, make sure viewing of hidden files is enabled (per the tutorial).

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O4 - HKCU\..\Run: [Microsoft Synchronization Manager] msn_update.exe

After clicking Fix, exit HJT.
Boot into safe mode and use Windows Explorer to delete:
C:\windows\system32\msn_update.exe

If you get an error when deleting a file. Right click on the file and check to see if the read only attribute is checked. If it is, uncheck it and try again. Other wise open Task Manager and kill the process if running then delete the file.

Now if running Win XP goto c:\windows\Prefetch and delete all files in this folder.

Now reboot in normal mode and post a new HJT log. And tell us how things are working.