Solved

ctf loader

Posted on 2006-07-01
6
1,006 Views
Last Modified: 2011-10-03
My ctf loader executable seems to act as spy ware for my web browser. I noticed when I use the hijack this program and remove the cftmon.exe the browser experiences no hesistation. In researching this issue, it seems that the executable is a language application as part of the office suite. Why is it behaving like spyware and how do I permanentely remove it? Also I noticed the driverT file as well and that seems to help. Both reappear again and again in the hijack log. And once I remove them, I'm able to have seemless web surfing.
Thank you,
Brad
0
Comment
Question by:bstagy
  • 2
6 Comments
 
LVL 97

Expert Comment

by:war1
ID: 17024465
Greetings, bstagy !

Cftmon.exe is part of the Microsoft Office suite and handles speech input for this product.  It can also be added by the Troj/Delbot-B TROJAN/IRC backdoor!

To remove this file, you may need Killbox or Unlocker
Use Killbox or Unlocker in Safe Mode to remove hard to remove file.

Killbox to remove stuborn files
http://www.scancomplete.com/download/killbox/
OR
Unlocker
http://www.majorgeeks.com/download4660.html

Best wishes!
0
 
LVL 19

Accepted Solution

by:
simpswr earned 125 total points
ID: 17024575
Go into msconfig startup and uncheck Ctfmon  . . that will keep it from starting and should allow HJT to kill it for good . . Turn off system restore first, so that it does not come back
0
 
LVL 97

Expert Comment

by:war1
ID: 17043561
bstagy,

We have not heard from you. Did any comment help you solve your problem? Do you have any more question? If an Expert helped you, please accept his/her answer above with an excellent or good grade.

Thanks, war1
0
 

Author Comment

by:bstagy
ID: 17043653
Thanks guys for your help. I tried simpswr's suggestion because it was easiest to do. It worked.
0

Featured Post

Complete Microsoft Windows PC® & Mac Backup

Backup and recovery solutions to protect all your PCs & Mac– on-premises or in remote locations. Acronis backs up entire PC or Mac with patented reliable disk imaging technology and you will be able to restore workstations to a new, dissimilar hardware in minutes.

Join & Write a Comment

cPanel is a Unix based web hosting control panel that provides a graphical interface and automation tools designed to simplify the process of hosting a web site. cPanel utilizes a 3 tier structure that provides functionality for administrators, rese…
If you have done a reformat of your hard drive and proceeded to do a successful Windows XP installation, you may notice that a choice between two operating systems when you start up the machine. Here is how to get rid of this: Click Start Clic…
It is a freely distributed piece of software for such tasks as photo retouching, image composition and image authoring. It works on many operating systems, in many languages.
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

706 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now