Heya, think you could help me clear my log please?

Discussion in 'adware, spyware & hijack cleaning' started by Heavyloadz, Jul 14, 2004.

Thread Status:
Not open for further replies.
  1. Heavyloadz

    Heavyloadz Registered Member

    Joined:
    Jul 14, 2004
    Posts:
    5
    friend told me he could get into my comp with this info.
     
    Last edited: Jul 14, 2004
  2. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,350
    Location:
    The Netherlands
    As you have a number of issues, I suggest you proceed as follows:

    Download the latest version of Ad-Aware at http://www.lavasoftusa.com/support/download/

    After installing AAW, and before running the program, you NEED to FIRST update the reference file following these instructions.

    Now do the following:

    - Under Ad-aware 6 > Settings (Gear at the top) > Tweak > Scanning Engine:
    check: "Unload recognized processes during scanning."

    - Under Ad-aware 6 > Settings (Gear at the top) > Tweak > Cleaning Engine:
    Check: "Let Windows remove files in use after reboot."

    Press "Scan Now"

    - Check option "Use Custom scanning options"
    - Check option "Activate In-Depth Scan"
    - Press "Select drives\folders to scan"
    - Select the active partition which is usually C:

    Now press "Next" to let Ad-aware scan your drives...
    It will find a number of "bad" files and registry keys.
    Right-click in that pane and choose "select all"

    Now press "Next" again.
    It will ask you whether you'd like to remove all checked items. Click OK.

    Finally, close Ad-Aware, and reboot.
    That ought to get rid of most of your spyware.

    When you've done all that, restart your computer, re-run Hijack This, and show us a fresh log.
    There will be more to do!

    Cheers,
     
  3. Heavyloadz

    Heavyloadz Registered Member

    Joined:
    Jul 14, 2004
    Posts:
    5
    friend told me he could get into my comp with this info.
     
    Last edited: Jul 14, 2004
  4. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,350
    Location:
    The Netherlands
    You did absolutely great! :)

    Check, and have Hijack This fix the following items, and you'll be good to go:

    R3 - Default URLSearchHook is missing
    O1 - Hosts: 12.129.205.209 search.netscape.com12.129.205.209 sitefinder.verisign.com

    O16 - DPF: {3AF4DACE-36ED-42EF-9DFC-ADC34DA30CFF} (PatchInstaller.Installer) - file://E:\content\include\XPPatchInstaller.CAB
    O16 - DPF: {8B1BC605-C593-4865-8F5B-05517F0CD0BB} (MSSecurityAdvisorCD Class) - file://E:\Content\include\msSecUcd.cab

    Cheers,
     
  5. Heavyloadz

    Heavyloadz Registered Member

    Joined:
    Jul 14, 2004
    Posts:
    5
    thx a whole bunch tony! :D i appriciate this a ton! thanks for the awesome instructions and everything! ill come back again whenever i need help, thanks a billion! :cool:
     
  6. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,350
    Location:
    The Netherlands
    You're very welcome; glad we were able to help.

    Happy surfing! ;)
     
  7. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,350
    Location:
    The Netherlands
    That's utter bull! Noone can misuse the information in a Hijack This log to compromise your system.

    You can tell your friend I told you so... ;)
     
  8. Heavyloadz

    Heavyloadz Registered Member

    Joined:
    Jul 14, 2004
    Posts:
    5
    ok :D just he said he saw my IP adress or something like that, anyways thx again ;)
     
  9. TonyKlein

    TonyKlein Security Expert

    Joined:
    Feb 9, 2002
    Posts:
    4,350
    Location:
    The Netherlands
    Nope, your IP address is not listed anywhere in that log....

    But even if it were, it couldn't really be misused by anyone to actually compromise your system...
     
  10. Heavyloadz

    Heavyloadz Registered Member

    Joined:
    Jul 14, 2004
    Posts:
    5
    ok :D well that makes me feel alot better about posting diff things if i have too later on :p
     
Thread Status:
Not open for further replies.