Troj_agent.lik found

- Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post).

 

Please remember to exit browsers before you run HijackThis.

If you still have IEhost in Add/Remove programs, see if it will uninstall.

You do not really have any major issues that show in your log. Only a few minor problems.

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O2 - BHO: (no name) - {9ECB9560-04F9-4bbc-943D-298DDF1699E1} - (no file)
O2 - BHO: (no name) - {BDF3E430-B101-42AD-A544-FADC6B084872} - (no file)
O16 - DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} -
O16 - DPF: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA} -
O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} -

After clicking Fix, exit HJT.

 

Please download, install, and update: Spy Sweeper

Then run a full scan with Spy Sweeper and fix what it finds. Post the log from Spy Sweeper as an attachment.

I'm hoping it will take care of IEHost.

 

Okay! SpySweeper found and cleaned a bunch of things (including Spy Agent you mentioned).

It would be a good idea for you to disable Spybot's Teatimer as it could be blocking some changes we are trying to make and in addition it can be a resource hog at times. Also running it plus Spy Sweeper plus MS Antispyware at the same time can slow things down dramatically.

To disable TeaTimer, run Spybot and click Mode and select Advanced Mode. Then click Tools and select Resident. Now in the right window pane, uncheck TeaTimer.
Also while this is open, in the left column now select IE Tweaks and then in the right pane make sure all the Miscellaneous locks are unchecked.
Now quit Spybot!

Now have HijackThis fix the below lines:

O16 - DPF: {CAFEEFAC-0014-0002-0004-ABCDEFFEDCBA} -
O16 - DPF: {CAFEEFAC-0014-0002-0005-ABCDEFFEDCBA} -


Try this for the IEhost program:

Copy the contents of the Quote Box below to Notepad. Then click File and then Save As. Change the Save as Type to All Files. Name the file fixieh.reg and then click save. (make sure you save it somewhere you can find it. Saving it to your Desktop may make that easy.) Double-click on the fixieh.reg file on your desktop (or locate it with Windows Explorer and double click on it if not saved to the Desktop) and when it prompts to add to the registry say yes.

And look for the below two files and delete them if found (also look in c:\windows\system32 ):
c:\windows\clbcatq5.exe
c:\windows\commdlg5.exe

 

That was my fault (your right - I'm very busy and I left something out that is needed. Try the below.


Copy the contents of the Quote Box below to Notepad. Then click File and then Save As. Change the Save as Type to All Files. Name the file fixieh.reg and then click save. (make sure you save it somewhere you can find it. Saving it to your Desktop may make that easy.) Double-click on the fixieh.reg file on your desktop (or locate it with Windows Explorer and double click on it if not saved to the Desktop) and when it prompts to add to the registry say yes.

Then let me know how things are looking.