Both of these programs were running during the scans, as shown here inSpyware has been turned off this whole time but I'm not sure how to even find adAware....Both are running at start up as Services. You CAN disable these services by going to Start, Control Panel, Administrative Tools, Services.Running Processes;
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\Program Files\Spyware Terminator\SpywareTerminatorShield.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
Go through the list, it is alphabetical order, when you see one of these listed then double click the entry and when the Properties Box opens then Stop the program and change it's start up to Disabled.
I would then like you to run HJT again.
Place checkmarks next to the following entries if still present;
O2 - BHO: 0 - {5F392644-6706-43CA-21AB-018AF048B709} - C:\Program Files\ComPlus Applications\temadiroh478.dll
O2 - BHO: (no name) - {BCA22F20-B2C0-E34D-EA48-9A6C571E55CB} - C:\WINDOWS\System32\ilgeuhxo.dll (file missing)
O2 - BHO: (no name) - {BCA22F2D-B2C9-E34E-EA4E-EC6C2F1E55C6} - C:\WINDOWS\System32\ilgeuhxo.dll (file missing)
O2 - BHO: {509b916a-e9f3-9ce8-adb4-1dac9974a66f} - {f66a4799-cad1-4bda-8ec9-3f9ea619b905} - C:\WINDOWS\system32\giealbih.dll
O3 - Toolbar: (no name) - {BA52B914-B692-46c4-B683-905236F6F655} - (no file)
O4 - HKUS\.DEFAULT\..\Run: [Windows installer] C:\winstall.exe (User 'Default user')
O21 - SSODL: lWhOkNH - {1C661E1D-B6CC-B4B7-01FE-EDCA57C911E0} - C:\WINDOWS\System32\ktb.dll (file missing)
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
Once you have placed the checkmarks then click the Fix Checked button.
Exit HJT. Reboot the computer.
Then attempt to run the Eset Scanner again but be sure to place checkmarks in both boxes;
Remove Found Threats and Scan Unwanted Applications.
Please allow it to complete this time. It may take a very long time and it may look like it has stalled. If you can allow it to run until complete maybe we can get most of the remaining nasties off the system. I want to try all of these again before going onto other programs, which may be needed.
Once you have completed this Eset Scan and Removal then save the log. If it takes several hours then let it scan through the night. It will not harm anything doing so. Have no idea what time it is where you are, here it is 1:15 a.m.
Rescan and with the MalwareBytes Anti-malware program. Please allow it to clean. Save the log.
Rescan with HJT and post all three of those logs here
Judy
Reply With Quote