TechSpot

8 steps logs inside

By TonyG
Mar 2, 2009
  1. This is off my wives computer and she was being redirected after clicking links on google. Please advise. I removed AVG before scanning these. Didnt seem to find much...but what do I know?? THANKS in advance

    Any advice...I dont wanna turn the computer back on until I get the go from you guys. Thanks hopefully I got all the info you needed.
     

    Attached Files:

  2. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    I think support members don't really like helping you here because you have LimeWire installed

    That's my feeling too ;)

    You could run this though:
    Download Combofix
    Lots of info on its use h e r e
    Direct download h e r e

    Locate the downloaded Combofix. Double click on it to run, answering any prompts along the way
    Note: during Combofix scan (lasting up to 10mins) your Desktop and clock may reset (all normal)

    But there's no use, as you will likely be back again due to filesharing with Limewire still installed
     
  3. TonyG

    TonyG TS Rookie Topic Starter

    Thank you for the response. I guess I will have to let the wife know..that limewire will be removed...she wont be too happy since she just paid for a year. Oh well I am definitely not enjoying all this scanning/malware tracking :)
    Thanks I will remove limewire and do combofix.
     
  4. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    Whilst you're at it, you may as well uninstall

    1. AVG7 (you already have an AntiVirus ->Avira)
    2. Spybots S&D (with the resident protection enable, it's possible to hinder support)
    3. Ad-aware (not needed)
     
  5. TonyG

    TonyG TS Rookie Topic Starter

    Do I need to rescan everything after removal?
     
  6. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    With Avira updated (you just open the program and manually confirm it's updated)
    Make sure that it's enabled and protecting in the background (ie near the clock)

    Yes run another Malwarebytes (updated again) full scan
     
  7. TonyG

    TonyG TS Rookie Topic Starter

    I removed software, and updated the malware, and re ran. Please let me know the next step. Thank you again for your time!
     
  8. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    Please re-open HJT and place a tick next to all of the following, then select Fix
    Black-> Not needed
    Blue-> Uninstall in Add Remove Programs
    Red-> Update
     
  9. TonyG

    TonyG TS Rookie Topic Starter

    I did as you mentioned above...minus the AVG removal...it wasnt in my programs, but I ran the removal tool you guys had, along with checked it to fix on HJT.
    Here is my latest HJT...

    Also what is the prefered security software....Avira,.......
    What type of firewall, I see you reccomend Comodo?

    Thanks again!
     
  10. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    Looks good :grinthumb

    You can also remove these 3 as well (in HJT)
    As for 3rd party security software

    1. Avira
    2. Malwarebytes (quick scan, updated first, once in a while)
    3. Windows security updates completed

    4. Oh that's all :rolleyes:

    Firewalls don't stop Malware or anything like that
    They stop things like your Credit card info being stolen (if this is used online)
    Otherwise not needed. Just use Windows firewall

    5. Safe surfing ;)
     
  11. TonyG

    TonyG TS Rookie Topic Starter

    Well still found the computer to be getting redirected via google link.
    So I ran ComboFix.....here is my log. Any advice would be great!
     
  12. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    c:\program files\hideip.exe is not bad for $35 here: http://www.hide-ip-soft.com/

    But generally this is a useless product. It can not hide your IP from anyone in the know. I already have your real IP (not that I care anyway)
    HideIP is made for those real basic things like basic browsing, but when it comes to downloading, everything is sent out as per normal. Except it says User downloading from (I'll use *) From: ***.***.***.*** Using this address **.**.***.**

    Sooo what's the use?

    Anyway because you have Limewire still installed
    Then this thread is finished
    Here's your options:
    Live with malware (you know the stuff that sends all your info everywhere)
    or Uninstall Limewire (well that aint happening for you)
    or Use a live free Linux CD (preferred) Then you won't get any malware! Here's one: http://www.ubuntu.com/products/GetUbuntu
    (you can even get a free CD ;) )

    Anyway, I'm not starting from the start again, but you are advised to (once every 2 days!)

    Good luck :grinthumb

    Edit:
    You know being a gamer, you really should stick around here though
    Basically TechSpot was built on gaming and support
    I have stacks of games, but I'm pretty much bored with all that
    But there's many here that really get into gaming help and support
    ie Lets not burn any bridges here ;)
     
  13. TonyG

    TonyG TS Rookie Topic Starter

    woah I un installed limewire...I did that through add/remove...is there a way its still on my comp some way. Seriously I told the wife its gone, and she has seen my frustration with this...so no worries she said.

    I dont know why it showed up on Combofix. What can I do to remove this file/program? Besides the add/remove via Control Panel.

    I really dont wanna waste any of your time or others on the board. I understand that the limewire is bad news now. My wife has an ipod and she uses it for that, but its gone...at least I thought. Besides, I am wasting a lot of my time too with this stupid problem......so please dont think I am just trying to fix it and go back to Limewire....that is not the case. I am greatful for all the help up to this point, and would hope that someone would help me permenantly remove limewire, so I can get this bug off the computer, and get my wife happy.

    Thanks again for your time and understanding.
     
  14. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    To remove Combofix
    Start-> Run-> combofix /u

    Please download and run SDFix (I'm sorry, but I must refer you to t h i s tutorial on its use, scroll down to "SDFix Instructions")

    Download, and run the "RunThis.bat" in Safe Mode, as advised
    Then attach the log and (after the SDFix scan) a new HJT log
     
  15. TonyG

    TonyG TS Rookie Topic Starter

    Alright here is the sdfix and hjt logs..thanks!!!
     
  16. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    Looks clean, except for "AskBar" an addon to IE that's just not required
    Check in Add\Remove Programs for this entry or even better reset IE settings: http://www.techspot.com/vb/post682762-2.html

    Clear system restore points

    • Clear your existing system restore points and establish a new clean restore point:
      • Go to Start > All Programs > Accessories > System Tools > System Restore
      • Select Create a restore point, and Ok it.
      • Next, go to Start > Run and type in cleanmgr
      • Select the More options tab
      • Choose the option to clean up system restore and OK it.
      This will remove all restore points except the new one you just created.

    Restart
    How does it seem to be working now?
     
  17. TonyG

    TonyG TS Rookie Topic Starter

    Everything seems to be working good now!!! AWESOME!!
    Thanks so much for your time and patience,
     
  18. kimsland

    kimsland Ex-TechSpotter Posts: 14,524

    Thanks for the update :grinthumb
     
Topic Status:
Not open for further replies.

Similar Topics

Add New Comment

You need to be a member to leave a comment. Join thousands of tech enthusiasts and participate.
TechSpot Account You may also...