managed to get zango and trojan-smitfraud

* Go here to download CCleaner.

* Install CCleaner
* Launch CCleaner and look in the upper right corner and click on the “Options” button.
* Click “Advanced” and remove the check by “Only delete files in Windows temp folders older than 48 hours”.
* Click OK
* Do not run CCleaner yet. You will run it later in safe mode.

* Go here and download Ad-Aware SE.

* Install the program and launch it.
* First in the main window look in the bottom right corner and click on Check for updates now
* Click Connect and download the latest reference files.
* Do not run Adaware yet. Just download the updates and have it ready to run later in safe mode.

* Click here for info on how to boot to safe mode if you don’t already know how.
* Now copy these instructions to notepad and save them to your desktop. You will need them to refer to in safe mode.
* Restart your computer into safe mode now. Perform the following steps in safe mode:
* Run Hijack This again and put a check by these. Close ALL windows except HijackThis and click “Fix checked”

Add entries from the HJT log to be fixed here
* Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen.
Wait for the tool to complete and disk cleanup to finish.
* Now launch Adaware:

* From main window click Start then under Select a scan Mode tick Perform full system scan.
* Next deselect Search for negligible risk entries.
* Now to scan just click the Next button.
* When the scan is finished mark everything for removal and get rid of it.
* Right-click the window and choose select all from the drop down menu and click Next

* Start Ccleaner and click Run Cleaner
* Go to Control Panel > Internet Options. Click on the Programs tab then click the “Reset Web Settings” button. Click Apply then OK.
* Next go to Control Panel > Display. Click on the “Desktop” tab then click the “Customize Desktop” button. Click on the “Web” tab. Under “Web Pages” you should see an entry checked called something like “Security info” or similar. If it is there, select that entry and click the “Delete” button. Click OK then Apply and OK.
* Restart back into Windows normally now.
* Run ActiveScan online virus scan here

When the scan is finished, anything that it cannot clean have it delete it. Make a note of the file location of anything that cannot be deleted so you can delete it yourself.
– Save the results from the scan!

Post a new HiJackThis log along with the results from ActiveScan
Attached Files smitRem.zip (42.2 KB, 12 views)

Reinstall and Reset TCP/IP (Internet Protocol) in Windows Vista, 2003 and XP

 If you facing network connection issue, or more accurately unable to access or connect to Internet or network problem in Windows Vista, Windows 2003 and Windows XP, and repair WinSock settings plus workaround for Vista IE7 strange no connection problem do not save your from Internet woes, you can try to reinstall and reset TCP/IP stack or Internet Protocol, one of the core component of the operating system, which cannot be uninstalled.

Again, with a corrupt TCP/IP stack, the same woes may happen – unable to establish a connection to the server, unable to load a web page, unable to browse and surf the Internet, even though network connection to broadband router or wireless router appear to be OK.

When all means run out, try to reinstall the IP stack with NetShell utility. NetShell utility (netsh) is a command-line scripting interface for the configuring and monitoring of Windows XP, 2003 and Vista networking service.

To reinstall and reset the TCP/IP stack (Internet Protocol) to its original state as same as when the operating system was installed in Windows XP and Windows 2003, simply use the following command in command prompt shell. A log file name must be specified where actions taken by netsh will be recorded on newly created or appended if already existed file..

netsh int ip reset [ log_file_name ]

Example:

netsh int ip reset resetlog.txt

For Windows Vista, things work a little different due to introduction of UAC (Guide: Disable UAC). Use this guide to perform a reinstalling of TCP/IP protocol in Vista:

Click on Start button.
Type Cmd in the Start Search text box.
Press Ctrl-Shift-Enter keyboard shortcut to run Command Prompt as Administrator. Allow elevation request.
Type netsh int ip reset in the Command Prompt shell, and then press the Enter key.
Restart the computer.
The command will remove all user configured settings on TCP/IP stack and return it to original default state by rewriting pertinent registry keys that are used by the Internet Protocol (TCP/IP) stack to achieve the same result as the removal and the reinstallation of the protocol. The registry keys affected are:

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesTcpipParameters

and

HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesDHCPParameters

Repair and Reset Windows Vista TCP/IP Winsock Catalog Corruption

TCP/IP stack Winsock settings in Windows Vista may get corrupted, causing errors and problems with Internet connectivity. Corrupt Winsock or Windows sockets configuration can be due to a lot of reasons such as installation of a networking software, or due to virus, trojan or malware infection, or sometime even due to disinfection of spyware by security software.

When Winsock corrupts, the networking errors that you may face include unable to surf the Internet with “Page cannot be displayed” error message in Internet Explorer or AOL even though the DSL/ADSL/cable Internet connection is connected. Sometimes, Windows Firewall/Internet Connection Sharing (ICS) service is terminated as well.

To repair and reset the Windows Vista

  1. Click on Start button.
  2. Type Cmd in the Start Search text box.
  3. Press Ctrl-Shift-Enter keyboard shortcut to run Command Prompt as Administrator. Allow elevation request.
  4. Type netsh winsock reset in the Command Prompt shell, and then press the Enter key.
  5. Restart the computer.

What netsh winsock reset command does are it resets Winsock Catalog to a clean state or default configuration. It removes all Winsock LSP (Layered Service Providers) previously installed, including the potential malfunctioned LSP that causes loss of network packets transmission failure. So all previously-installed LSPs must be reinstalled. This command does not affect Winsock Name Space Provider entries.

Note: To check which LSPs installed on your Vista system, use netsh winsock show catalog command.

XP to Vista Secret!

Change your boring old Windows XP theme to look like Vista using MSStyles (no shell-packs!) for free! Plus you don’t need to download any software to do it either (so your computer won’t get messed up!). You can do it all by yourself and when you are done it is surely going to look like Windows Vista.

Steps: 1. Theme 2. Wallpaper 3. The Fox 4. Cursor 5. Vista-ish applications 6. Fine Tuning 7. Shell Packs 8. Sidebar 9. Final Result

Changing the XP theme

First make sure that you have patched up your uxtheme.dll file. So go read my other recipe if you haven’t so already. This recipe also tells you how to change your themes.Now you are ready to do some downloading.

There are many msstyles themes out there that look super cool and look like vista/longhorn.

You can also get shell packs and windows blinds themes but some people claim that this can mess up your computer badly.
The theme that I found works best is VistaXP by -kol! (but it was so popular that MS got it removed). Just go to the comments section to find themes you can download. These themes will make your computer look like Windows Vista for sure. So… go ahead and download it.
Then unzip or copy it to C:WINDOWSResourcesThemes
All right now you can change your computers theme to the Vista theme you chose.

Changing the Wallpaper

There are lots of Vista wall papers available… chances are that you have one included with your theme as well. If you don’t then you can try your luck at WinMatrix’s great post for Vista wallpapers. If not then you can always search on Google for Vista Wallpapers.

If you want you can also get this wallpaper which also a CoolGrass wallpaper by ApacheUser plus it has the Windows Vista logo on it!

Getting the Fox

Another great way of getting an impression that you are in fact using Internet Explorer 7, just like how it is on Vista is to get Firefox, and then use one of the many user designed themes and changing the look of the browser. If you don’t have Firefox already, then make sure you get it along with the Google toolbar as well, as it will help you keep track of your e-mail and at the same time search the web![size=14]Once you get Firefox install one of the many Vista like themes here. Vista-aero and myFireFox are one of the popular ones out there.

Changing the cursor
You can download the aero cursor pack over here. Just read the read me file supplied and enjoy. Additionally, you can go to How to change your mouse pointers article and change your mouse pointer to the 3D-White (system scheme), it looks very similar to the original cursor in Vista.

Getting Vista-ish applications
Now once you are done that. And you like some transparency on your computer get these two very cool tools.Vista Explorer: Something like the original Vista explorer but for XP and plus it has….. transparency. YES! IT IS TRANSPARENT! Just like the original one.
Internet Explorer (transparent version!): This is also very similar to the real internet explorer. Plus the internet explorer button on the task bar says internet explorer 7 (good for fooling people)! You can also get the real IE 7 (no transparency though)
Now your system should look like Vista for sure, but why stop when you have come so far?

Get the Alt-Tab Replacement PowerToy! This shows you the windows you are switching to (sort of something like in the real windows vista)…

Fine tuning

After that, fine tune your font settings and turn on ClearType fonts with the ClearType Tuner PowerToy (you can also do this online). Since the real Vista uses the font ‘Segoe UI’ which is a cleartype font, you can mimic the real fonts by using ClearType.However, some themes already come with the Segoe UI font so don’t forget to enable it while you are using it.

Shell Packs
If you really want to get shell packs to do what you can already do on your own then here are some of them:
Vista Customization pack by JoeJoe
The brico pack by CrystalXP
The Windows X longhorn Transformation pack by Windows X
Please keep in mind that the shell packs don’t customize your computer to look like the latest Vista/Longhorn builds, so your computer might not look like the recent Vista screenshots.

The Vista Sidebar
Since the links in Alex the Beast’s recipe do not work anymore, you can head on over to Thoosje’s website and get the Thooseje’s Sidebar version of Windows Vista’s Sidebar instead and put that on your computer too.And when you are done that you can start celebrating! In fact you can claim that you have Windows Vista already, and nobody will doubt you. One last step enjoy and don’t forget to show-off your new look!

Take a look at these screenshots of how your PC will look once you are done. If I didn’t put that System Properties window up there then I’m sure I could have fooled you too!

note: I haven’t included a screenshot with the longhorn sidebar. If you want to view a screenshot of it then please go to Go to Thoosje’s website.