Here is the log for the 8th step

[ingsmacher]

This is my problem:

Ok, this is serious. When I go on Google chrome, or Internet Explorer, I open a tab. But when I want to see what is on the tab (I click it) it closes. I didn't press the X button on the tab and it closes!!! Also, I can't minimize windows I open. If I go on limewire, I can't click on library and I can't search for music. This is serious because all my functions on other windows like MicrosoftWord (I can't save files) and Eset (I can't scan) and my "Play" button for my games are not working well. I have restarted my computer several times and it's still not working. Please help would be appreciated. Also, when I click back, it opens it in a new tab but since when I click the tab it disappears I can't go back , I can't even close internet without task manager! This is serious please help! And note that I can't restore my cpu to the 21st (and before) for some weird reason.

Now, I would please like some help I beg you. Thank you

 

[ingsmacher]

I also just found out that in Google chromes, when I try to click "Book Mark", all my bookmarks open. And especially tomorrow is the last day of school and finally I can have fun but now 1 day before the end, I get a virus or what ever problem that destroys my computer. If I want to ghost the computer, I need to wait until September.

 

[ingsmacher]

Bumped. I need help quickly.

 

[ingsmacher]

Please i need help!

 

[mflynn]

Uninstall BitComet!

Run MBAM and SAS again FULL SCANS and post logs. There were findings in last logs and we need clan logs.

Only after above has clean logs do the below!

Download ComboFix

Get it here: https://www.techspot.com/downloads/5587-combofix.html
Or here: http://subs.geekstogo.com/ComboFix.exe

Double click combofix.exe follow the prompts.

Install Recovery Console if connected to the Internet!

When finished, it will open a log.
Attach the log and a new HJT log in your next reply.

Note: Do not click combofix's window while its running. That may cause it to stall.

Mike

 

[ingsmacher]

Here you go mike. It DID NOT fix my problem. I don't know if it should, but it isn't.

 

[mflynn]

Run SAS click Preferences-Repairs then one at a time do the below
Home page reset
Internet Zone Security reset
Local Page reset
Remove Policy Restrictions
Remove Internet Explorer Policy Restrictions
Remove WinOldApp Policy Restrictions
Repair broken Network Connection (WinSock LSP Chain)
Reset URL Prefixes
Reset Web Setings
Reset Winlogon shell
ResetZoneMap Settings
User Agent Post Platform Reset
User Agent Reset

Reboot
Test
Report results

Mike

 

[ingsmacher]

Well it only worked for the 3 first minutes :/ Then the same problem came back.

 

[ingsmacher]

I know now how to solve the problem but we haven't "officially" deleted the virus/malware

 

[mflynn]

Or most likely reinfected from a Website.

OK do these steps!

D/L DrWeb Cureit:http://www.freedrweb.com/cureit/ (do not run)

Repeat the SAS steps above and do not open any other websites except Techspot and the below.

I have been using ThreatFire for more than a year, it just went from ver 3 to ver 4.

It was designed to be used with and to co-exist with other Virus scanners.

Additionally it uses a totally different process to protect. While conventional Virus scanners work from definitions ThreatFire works on recognizing Virus/Malware activity.

It's like looking at it with 2 sets of eyes and from a different angle.

It works like some Firewalls do to learn what is good/bad.

After install it will ask you about everything that could be a security issue. For example the first time you run IE or FireFox it will prompt you. You would answer to approve and remember the setting. From then on no more prompts about IE or FireFox unless the exe changes like in an update.

As it queries you about the prompt to help you determine to approve or not you can google it with one click.

Download and install ThreatFire: http://www.threatfire.com/download/

Download and install Hostman: http://www.abelhadigital.com/2008/07/hostsman-3157-released.html add and update all hosts files (Do not Merge but replace your host file),

Last reboot to regular Safe Mode and..
Repeat the SAS Fixes
Then DrWeb Cureit, post log when back to Normal Mode

When finished reboot back to normal and do an update and scan with ThreatFire.

Mike

 

[ingsmacher]

Nothing is working!
Please help i can't use my computer i'm beginning to freak out!!!!!! ='(

 

[ingsmacher]

Well, I just fixed the problem (temporarily for 30 seconds) by clicking left and right on my mouse and keep clicking it repeatedly (It is a function (eg: bookmarks) that is not working properly). I keep clicking it until it works. Well it kind of worked. But i want a Permanent fix.

 

[ingsmacher]

I really, really need help.

 

[ingsmacher]

Hello,i'm now talking from another computer (my dad's). The virus is now almost unstoppable. Doing the SAS repair functions does no longer stop the malware or even stop it for 3 minutes, clicking left and right does not work anymore. It's like the virus is "intelligent". I'm talking on my dad's cpu because the virus blocked connection to the Internet. Please this is getting serious. I'm planning on ghosting my computer but now without the connection I can't get anything back (because I ghost my computer with the school technician. He requires connection afterwards to put all the necessary school files. Now, because of the virus blocking the internet I can no longer get the necessary files (unless he can repair it)). I need to wait until september to ghost my computer. I'm now afraid it will eat up my files one by one until total corruption lol. Can't work, play, run scans, browse the internet, save. I'm basically screwed. If I am right, we should find a way to delete the virus the first time we use this way because it can "adapt" to the method the first time it is used (if not stopped yet). I'm in need of help.

 

[ingsmacher]

I ran an MSN troubleshoot thing and I seem to have a problem with Key Ports.

 

[ingsmacher]

Well, I fixed the Internet problem. Now only the original problem remains. (Only for 12:30 minutes) It also detected DNS problems.

 

[ingsmacher]

Help is still wanted.

 

[ingsmacher]

Bumped. Also now, when I click one time, it sometimes double clicks.

 

[ingsmacher]

Bumped once again.

 

[ingsmacher]

Bumped again...

 

[ingsmacher]

buuuuuuummmmmmppppppeeed! Someone else than mike Help me!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!

 

[ChrisDown]

We are all volunteers who help in our spare time, and Mike has not been online for three days. Please, have patience.

Firstly, stop running pirated/cracked software, that's half the problem. I don't actually see anything wrong with that HJT log, unless I'm missing something. My suggestion would be to run ComboFix and to upload a log, which may be able to help further (or may even remove more malware).

You can download ComboFix from here (and you should download it from only the websites listed there). Once you have downloaded it, please rename it to Combo-Fix.exe. Then, run it, but please do not click the main window, as this has been known to stall it on occasion.

Once this is done, please upload the log. Thanks.

 

[Bobbye]

We do not support piracy:
adobe cs4 activation\adobe keygen.exe
crack vegas 9\Keygen.exe

You are also running 2 P2P programs:
Limewire and BitComet

Sometimes you just get what you pay for. With cracks and file sharing, you get more> malware.

 

[ingsmacher]

Yeah i deleted limewire Thanks bobbye u fixed my problem.