Solved Browser Not Connecting To Web Pages

Status
Not open for further replies.
Here are the logs requested:

From OTL-
All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\*{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared deleted successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}\ not found.
File {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - Reg Error: Key error. File not found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter\ deleted successfully.
C:\Documents and Settings\user\Desktop\avgremover.exe moved successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET138.tmp deleted successfully.
C:\WINDOWS\System32\SET13C.tmp deleted successfully.
C:\WINDOWS\System32\SET13D.tmp deleted successfully.
C:\WINDOWS\System32\SET144.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISx20E.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB55.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB56.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB57.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB58.tmp deleted successfully.
C:\WINDOWS\002930_.tmp deleted successfully.
C:\WINDOWS\DUMPb0b3.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\cache folder moved successfully.
C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\Chjw\26d8b469d8b4393f folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\Chjw folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update\prepare\temp folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update\prepare folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint folder moved successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 5615 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 13 bytes
->Flash cache emptied: 8797 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 78991 bytes
->FireFox cache emptied: 2188164 bytes
->Flash cache emptied: 405 bytes

User: user
->Temp folder emptied: 1348874 bytes
->Temporary Internet Files folder emptied: 6267676 bytes
->Java cache emptied: 49806993 bytes
->FireFox cache emptied: 42602102 bytes
->Flash cache emptied: 1625131 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Java cache emptied: 15194 bytes
->FireFox cache emptied: 74530867 bytes
->Flash cache emptied: 4467 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 18915 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 67 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 170.00 mb


[EMPTYFLASH]

User: Default User

User: All Users

User: NetworkService
->Flash cache emptied: 0 bytes

User: LocalService
->Flash cache emptied: 0 bytes

User: Administrator
->Flash cache emptied: 0 bytes

User: user
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.14.1 log created on 10102010_120030

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
-----------------------------

From Security Checku-
All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\*{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared deleted successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}\ not found.
File {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - Reg Error: Key error. File not found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter\ deleted successfully.
C:\Documents and Settings\user\Desktop\avgremover.exe moved successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET138.tmp deleted successfully.
C:\WINDOWS\System32\SET13C.tmp deleted successfully.
C:\WINDOWS\System32\SET13D.tmp deleted successfully.
C:\WINDOWS\System32\SET144.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISx20E.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB55.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB56.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB57.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB58.tmp deleted successfully.
C:\WINDOWS\002930_.tmp deleted successfully.
C:\WINDOWS\DUMPb0b3.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\cache folder moved successfully.
C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\Chjw\26d8b469d8b4393f folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\Chjw folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update\prepare\temp folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update\prepare folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint folder moved successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 5615 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 13 bytes
->Flash cache emptied: 8797 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 78991 bytes
->FireFox cache emptied: 2188164 bytes
->Flash cache emptied: 405 bytes

User: user
->Temp folder emptied: 1348874 bytes
->Temporary Internet Files folder emptied: 6267676 bytes
->Java cache emptied: 49806993 bytes
->FireFox cache emptied: 42602102 bytes
->Flash cache emptied: 1625131 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Java cache emptied: 15194 bytes
->FireFox cache emptied: 74530867 bytes
->Flash cache emptied: 4467 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 18915 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 67 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 170.00 mb


[EMPTYFLASH]

User: Default User

User: All Users

User: NetworkService
->Flash cache emptied: 0 bytes

User: LocalService
->Flash cache emptied: 0 bytes

User: Administrator
->Flash cache emptied: 0 bytes

User: user
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.14.1 log created on 10102010_120030

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
------------------------------------------------------
From ESET-
C:\Program Files\Trend Micro\HijackThis\backups\backup-20091125-004423-887.dll Win32/Toolbar.AskSBar application
D:\Lwire\let music play instrumenta(Club RMX).mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan
D:\Lwire\let music play instrumenta (320k stereo).mp3 a variant of WMA/TrojanDownloader.GetCodec.gen trojan
 
Hi Broni,

It's right before the ESET log. I've re-pasted it again here:

All processes killed
========== OTL ==========
Registry value HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks\\*{CFBFAE00-17A6-11D0-99CB-00C04FD64497} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\*{CFBFAE00-17A6-11D0-99CB-00C04FD64497}\ not found.
Registry value HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\avg@igeared deleted successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_48 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_40 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_39 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\skin folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content\Languages folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content\html folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome\content folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23\chrome folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared\ch_23 folder moved successfully.
C:\Program Files\AVG\AVG9\Toolbar\Firefox\avg@igeared folder moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Brows er Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Brows er Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Internet Explorer\Restrictions\ deleted successfully.
Registry key HKEY_CURRENT_USER\Software\Policies\Microsoft\Internet Explorer\Control Panel\ deleted successfully.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}\ not found.
File {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - Reg Error: Key error. File not found not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter\ deleted successfully.
C:\Documents and Settings\user\Desktop\avgremover.exe moved successfully.
C:\WINDOWS\System32\CONFIG.TMP deleted successfully.
C:\WINDOWS\System32\SET138.tmp deleted successfully.
C:\WINDOWS\System32\SET13C.tmp deleted successfully.
C:\WINDOWS\System32\SET13D.tmp deleted successfully.
C:\WINDOWS\System32\SET144.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISx20E.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB55.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB56.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB57.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\ISxB58.tmp deleted successfully.
C:\WINDOWS\002930_.tmp deleted successfully.
C:\WINDOWS\DUMPb0b3.tmp deleted successfully.
C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar\cache folder moved successfully.
C:\Documents and Settings\All Users\Application Data\AVG Security Toolbar folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\Chjw\26d8b469d8b4393f folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\Chjw folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update\prepare\temp folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update\prepare folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9\update folder moved successfully.
C:\Documents and Settings\All Users\Application Data\avg9 folder moved successfully.
C:\Documents and Settings\All Users\Application Data\Viewpoint folder moved successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32768 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 5615 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 13 bytes
->Flash cache emptied: 8797 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 78991 bytes
->FireFox cache emptied: 2188164 bytes
->Flash cache emptied: 405 bytes

User: user
->Temp folder emptied: 1348874 bytes
->Temporary Internet Files folder emptied: 6267676 bytes
->Java cache emptied: 49806993 bytes
->FireFox cache emptied: 42602102 bytes
->Flash cache emptied: 1625131 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Java cache emptied: 15194 bytes
->FireFox cache emptied: 74530867 bytes
->Flash cache emptied: 4467 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 18915 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 67 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 170.00 mb


[EMPTYFLASH]

User: Default User

User: All Users

User: NetworkService
->Flash cache emptied: 0 bytes

User: LocalService
->Flash cache emptied: 0 bytes

User: Administrator
->Flash cache emptied: 0 bytes

User: user
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.14.1 log created on 10102010_120030

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
 
Sorry, realized it didn't copy over properly. Here's the Security Check log:

Results of screen317's Security Check version 0.99.5
Windows XP Service Pack 3
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
avast! Free Antivirus
Antivirus up to date!
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
HijackThis 2.0.2
Java(TM) 6 Update 21
Java(TM) 6 Update 7
Out of date Java installed!
Adobe Flash Player 10.1.85.3
Adobe Reader 7.0
Out of date Adobe Reader installed!
Mozilla Firefox (3.6.3) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent
Alwil Software Avast5 AvastSvc.exe
Alwil Software Avast5 avastUI.exe
````````````````````````````````
DNS Vulnerability Check:
GREAT! (Not vulnerable to DNS cache poisoning)

``````````End of Log````````````
 
Now, you're talking :)

1. Update Firefox

2. We need to remove old Java version and its remnants...

Download JavaRa to your desktop and unzip it to its own folder
  • Run JavaRa.exe (Vista users! Right click on JavaRa.exe, click Run As Administrator), pick the language of your choice and click Select. Then click Remove Older Versions.
  • Accept any prompts.

3. Update Adobe Reader

You can download it from https://www.techspot.com/downloads/2083-adobe-reader-dc.html
After installing the latest Adobe Reader, uninstall all previous versions.
Note. If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

Alternatively, you can uninstall Adobe Reader (33.5 MB), download and install Foxit PDF Reader(3.5MB) from HERE.
It's a much smaller file to download and uses a lot less resources than Adobe Reader.
Note: When installing FoxitReader, make sure to UN-check any pre-checked toolbar, or other garbage.
On this page:

FoxitReaderInstallation.png


make sure, you have both boxes UN-checked AND (important!) click on Decline button

When done....


Your computer is clean

1. We need to reset system restore to prevent your computer from being accidentally reinfected by using some old restore point(s). We'll create fresh, clean restore point, using following OTL script:

Run OTL

  • Under the Custom Scans/Fixes box at the bottom, paste in the following:

Code: 
:OTL
:Commands
[purity]
[emptytemp]
[EMPTYFLASH]
[CLEARALLRESTOREPOINTS]
[Reboot]

  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot the PC when it is done
  • Post resulting log.

2. Now, we'll remove all tools, we used during our cleaning process

Clean up with OTL:

  • Double-click OTL.exe to start the program.
  • Close all other programs apart from OTL as this step will require a reboot
  • On the OTL main screen, press the CLEANUP button
  • Say Yes to the prompt and then allow the program to reboot your computer.

If you still have any tools or logs leftover on your computer you can go ahead and delete those off of your computer now.

3. Make sure, Windows Updates are current.

4. If any Trojan was listed among your infection(s), make sure, you change all of your on-line important passwords (bank account(s), secured web sites, etc.) immediately!

5. Download, and install WOT (Web OF Trust): http://www.mywot.com/. It'll warn you (in most cases) about dangerous web sites.

6. Run Malwarebytes "Quick scan" once in a while to assure safety of your computer.

7. Run Temporary File Cleaner (TFC) weekly.

8. Download and install Secunia Personal Software Inspector (PSI): https://www.techspot.com/downloads/4898-secunia-personal-software-inspector-psi.html. The Secunia PSI is a FREE security tool designed to detect vulnerable and out-dated programs and plug-ins which expose your PC to attacks. Run it weekly.

9. (optional) If you want to keep all your programs up to date, download and install FileHippo Update Checker.
The Update Checker will scan your computer for installed software, check the versions and then send this information to FileHippo.com to see if there are any newer releases.

10. Run defrag at your convenience.

11. Read How did I get infected?, With steps so it does not happen again!: http://www.bleepingcomputer.com/forums/topic2520.html

12. Please, let me know, how is your computer doing.
 
You are a lifesaver!! Thanks for all your help with the problem!! Working on installing the other programs you recommended :)

Here's the log from running OTL after the fix:

All processes killed
========== OTL ==========
========== COMMANDS ==========

[EMPTYTEMP]

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 56504 bytes

User: All Users

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: user
->Temp folder emptied: 1643 bytes
->Temporary Internet Files folder emptied: 5325199 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 26112441 bytes
->Flash cache emptied: 643 bytes

User: Guest
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 483 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 30.00 mb


[EMPTYFLASH]

User: Default User
->Flash cache emptied: 0 bytes

User: All Users

User: NetworkService
->Flash cache emptied: 0 bytes

User: LocalService
->Flash cache emptied: 0 bytes

User: Administrator
->Flash cache emptied: 0 bytes

User: user
->Flash cache emptied: 0 bytes

User: Guest
->Flash cache emptied: 0 bytes

Total Flash Files Cleaned = 0.00 mb

Restore points cleared and new OTL Restore Point set!

OTL by OldTimer - Version 3.2.14.1 log created on 10102010_201850

Files\Folders moved on Reboot...
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...
 
Status
Not open for further replies.

Similar threads

B
Windows 11 not connecting remotely to server
Replies
0
Views
453
blakhatter
B
AnilD
Instagram is not loading on any desktop browser - here's a fix
Replies
0
Views
2K
AnilD
AnilD
Daniel Sims
Google Chrome now targets ads based on your browser history, here's how to turn that off
Replies
10
Views
651
trieste1s
T

Latest posts

Back