QUADS,
I utilized your advice and solved the problem (but I hope that I did not delete anything else in the process). I used the Task Manager to see which of the ones would take off the Green AV, and it was the END PROCESS for "rwg.exe". I then utilized the Hijack This to take out the following:
04 - H RCU\,,\Run: [69387646557683] C:\ProgramData\gwr\wsn.bat
04 - H RCU\,,\Run: [37465982736455] C:\ProgramData\gwr\mwrdll.exe
04 - H R CU\,,\Run:[038745569874596]C:\ProgramData\gwr\rwg.exe
Did I take out anything I needed? If so, which one(s)? (I cant find the little logo for my WiFi on my quick launch Task Bar(?). Also, I noticed that when the malware appeared, it was always preceded by that little "blackboard" called cmd. But now that does not appear anymore.
Thank you for your advice online. It worked!!! and the Malware is gone (did I get it all??) and it does not appear on my User (Michele);
I am reattaching a copy of my Hijack This Log (without the WordWrapping I hope).
Overall, it took me 6 hours of work on the computer to get rid of this, but I'm sure glad it is off! Interesting to note that when the kids use 911tabs on their iPods, the malware does not appear! Has Apple found a solution? Do GAV's not appear on Mac's and only on IE?
Also, I did not delete the following, but should I:
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
(it seems to bring up the cmd when I pressed it. Maybe they used this as an opener to get the cmd open and jumpstart the malware files(?) i'm no programmer but it looks like they were interconnected.
and I deleted Silverlight (Microsoft) by mistake in the process. I hope I can restore it.
Michi
Message Edited by michijoesm on 09-12-2009 12:34 PM
Message Edited by michijoesm on 09-12-2009 12:40 PM
Message Edited by shannons on 09-12-2009 03:43 PM