Thank your for your time, Howard. I am not sure he knew about system restore. I have attached the logs. I am still not able to get SE Personal, any suggestions.

Also; how do I find out wht the IP address is?

Wow, it seems your friends sytem is riddled with malware.

1. Please download The Avenger by Swandog46 from HERE. Save it to your Desktop and extract it.

2. Download the attached avengerscript.txt and save it to your desktop. The Avenger script is attached to the bottom of this post.

Note: the above code was created specifically for this user. If you are not this user, do NOT follow these directions as they could damage the workings of your system.

3. Now, start The Avenger program by double clicking on its icon on your desktop.

Under "Script file to execute" choose "Load script from file".
Now click on the folder icon which will open a new window titled "open Script File"
navigate to the file you have just downloaded, click on it and press open
Now click on the Green Light to begin execution of the script
Answer "Yes" twice when prompted.

4. The Avenger will automatically do the following:

It will Restart your computer. ( In cases where the code to execute contains "Drivers to Unload", The Avenger will actually restart your system twice.)
On reboot, it will briefly open a black command window on your desktop, this is normal.
After the restart, it creates a log file that should open with the results of Avenger’s actions. This log file will be located at C:\avenger.txt
The Avenger will also have backed up all the files, etc., that you asked it to delete, and will have zipped them and moved the zip archives to C:\avenger\backup.zip.

5. Please attach the content of c:\avenger.txt into your reply.

Then, go and read the Viruses/Spyware/Malware, preliminary removal instructions. Follow all the instructions exactly. In your friends case, as many of the instructions as possible.

Post fresh HJT, AVG Antispyware and Combofix logs as attachments into this thread, only after doing the above.

Also, let me know the results of the AVG Antirootkit scan.

Regards Howard

This thread is for the use of Stacey only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

Here is the avenger.txt I will be working on the others

I was unable to get SE Personal and AVG Spyware logs. AVG Rootkit found nothing.

Everything looks clean there.

Perhaps the problem really isn`t caused by malware and is more to do with the software that was installed prior to the start of the problems.

Tell your friend to try a system restore.

Regards Howard

This thread is for the use of Stacey only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.

The computer is telling me it is unable to do a restore. I am wondering if it should be reformated. Thanks again Howard. I am glad to see Momok is here helping you.

A reformat may well be the answer.

momok is doing a fantastic job and I`m real pleased to have his help.

Regards Howard

Howard,
The computer is not recognizing the disc drive. Will I be able to reload the disks. I only hope this is the last time this happens to his computer! Thanks again!!!

Which drive isn`t being recognised?

Regards Howard

The disk driver. You've been helping me with a dell Laptop. When it boots up it is telling me there is hardware attached, when I go to safely remove it I cannot even open the disk drive. Yet nothing is there to begin with. Could whatever he installed remove the driver?
HL-DT-ST-DVD+RW GCA-4040N

I suppose it`s possible for a driver to have become corrupted. Go to the Dell website, download and install the drivers for the laptop, see if that helps at all.

Regards Howard

I will let you know how I make out

Dell remote access fixed the driver. They uninstalled and reinstalled. Thank you for sticking with me throgh this ordeal. Have a great day

That`s great news and thanks for letting us know.

If you have any further virus/spyware problems, please post in this thread.

Regards Howard

This thread is for the use of Stacey's Avatar
Stacey only. Please don`t post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.