Hi brikeyes,
That file belongs to a smitfraud infection, please try this.
You may want to print out or make a copy of these instructions before starting, because you will not be able to connect to the internet during most of this fix.
Download smitRem.exe and save the file to your desktop.
http://noahdfear.geekstogo.com/click%20counter/click.php?id=1Double click on the file to extract it to it's own folder on the desktop.
Next, please reboot your computer in Safe Mode by doing the following:
[*]Restart your computer
[*]After hearing your computer beep once during startup, but before the Windows icon appears, press F8.
[*]Instead of Windows loading as normal, a menu should appear
[*]Select the first option, to run Windows in Safe Mode.
Now scan with HJT and place a checkmark next to this entry and click "Fix checked":
O2 - BHO: HomepageBHO - {e9ccf15d-4c68-4b5a-9e9a-8e12e4bd39bd} - C:\WINDOWS\system32\hp8879.tmp
Open the smitRem folder, then double click the RunThis.bat file to start the tool. Follow the prompts on screen. Your desktop and icons will disappear and then reappear again --- this is normal.
Wait for the tool to complete and Disk Cleanup to finish --- this may take a while; please be patient.
Next, run Ad-aware and perform a full scan. Remove everything found.
While still in Safe Mode run Ewido Security Suite
Next go to Start -> Control Panel, click Display -> Desktop -> Customize Desktop -> Web -> Uncheck "Security Info" if present.
Delete these files if still present, end process first:(might no longer present)
C:\WINDOWS\system32\1024\ld3F80.tmp
C:\WINDOWS\system32\1024\ldFAD4.tmp
C:\WINDOWS\system32\nvctrl.exe
Restart your computer in normal mode.
Run the Panda online virus scan at
http://www.pandasoftware.com/products/activescan.htm