TechSpot

Only one problem, I cannot load blogs on MySpace

Resolved
By Fea
May 23, 2011
Topic Status:
Not open for further replies.
  1. I have an account on Myspace and a few weeks ago, the ability to comment on blogs just stopped working, its like as if the page just won’t finish loading up.

    I have no other problems other than my system is running slower that I’d like.

    These are some of the things I’ve tried (from what I can remember, there are others but to be honest, I hadn’t a clue what I was doing at the time other than grasping at straws).

    Tried IE and Firefox
    Uninstalled and reinstalled Firefox
    System Restore
    AVG Scan
    SuperAntiVirus Scan
    Deleted all older versions of Java, installed latest version
    Checked for all new updates on IE
    Contacted Myspace
    Contacted my service provider

    All yielded nothing.



    I found the link for the 7 (5) step process and these are the results I got back.
    If anyone can help, I would be forever in debt to you, thanks so much.




    Malwarebytes' Anti-Malware 1.50.1.1100


    Database version: 6642

    Windows 5.1.2600 Service Pack 3
    Internet Explorer 8.0.6001.18702

    22/05/2011 22:19:42
    mbam-log-2011-05-22 (22-19-41).txt

    Scan type: Quick scan
    Objects scanned: 259786
    Time elapsed: 35 minute(s), 14 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 2
    Folders Infected: 8
    Files Infected: 4

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

    Folders Infected:
    c:\program files\funwebproducts (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    c:\program files\funwebproducts\screensaver (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    c:\program files\funwebproducts\screensaver\Images (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    c:\program files\mywebsearch (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    c:\program files\mywebsearch\bar (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    c:\program files\mywebsearch\bar\1.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    c:\program files\mywebsearch\SrchAstt (Adware.MyWebSearch) -> Quarantined and deleted successfully.
    c:\program files\mywebsearch\SrchAstt\1.bin (Adware.MyWebSearch) -> Quarantined and deleted successfully.

    Files Infected:
    c:\WINDOWS\system32\f3PSSavr.scr (PUP.FunWebProducts) -> Quarantined and deleted successfully.
    c:\WINDOWS\mdsys.s (Malware.Trace) -> Quarantined and deleted successfully.
    c:\WINDOWS\mdusys.s (Malware.Trace) -> Quarantined and deleted successfully.
    c:\WINDOWS\winbrd.jpg (Malware.Trace) -> Quarantined and deleted successfully.










    GMER 1.0.15.15627 -
    Rootkit quick scan 2011-05-23 07:47:36
    Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-e HDT722516DLA380 rev.V43OA80A
    Running: 9y3k58m8.exe; Driver: C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\awldrpob.sys


    ---- Devices - GMER 1.0.15 ----

    AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
    AttachedDevice \FileSystem\Fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
    AttachedDevice \FileSystem\Fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
    AttachedDevice \Driver\Tcpip \Device\Ip avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
    AttachedDevice \Driver\Tcpip \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
    AttachedDevice \Driver\Tcpip \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
    AttachedDevice \Driver\Tcpip \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)

    ---- EOF - GMER 1.0.15 ----
  2. Fea

    Fea Newcomer, in training Topic Starter

    dds.txt

    .
    DDS (Ver_11-05-19.01) - NTFSx86
    Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_25
    Run by HP_Administrator at 8:05:13 on 2011-05-23
    Microsoft Windows XP Professional 5.1.2600.3.1252.44.1033.18.1022.134 [GMT 1:00]
    .
    AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
    .
    ============== Running Processes ===============
    .
    C:\WINDOWS\system32\svchost -k DcomLaunch
    svchost.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
    svchost.exe
    svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    svchost.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\WINDOWS\arservice.exe
    C:\Program Files\AVG\AVG10\avgwdsvc.exe
    svchost.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    svchost.exe
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\ARPWRMSG.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe
    C:\WINDOWS\PixArt\PAC207\Monitor.exe
    C:\HP\KBD\KBD.EXE
    C:\WINDOWS\System32\DLA\DLACTRLW.EXE
    C:\Program Files\AVG\AVG10\avgtray.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe
    C:\Program Files\MySpace\IM\MySpaceIM.exe
    C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\Program Files\Mobile Partner\Mobile Partner.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\AVG\AVG10\avgui.exe
    C:\WINDOWS\system32\wscntfy.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Documents and Settings\HP_Administrator\My Documents\Downloads\dds.scr
    C:\WINDOWS\system32\WSCRIPT.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uSearch Bar = hxxp://www.google.ie
    uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
    uStart Page = hxxp://www.facebook.com/
    uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
    mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
    BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
    BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
    BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - c:\program files\avg\avg10\avgssie.dll
    BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
    BHO: DriveLetterAccess: {5ca3d70e-1895-11cf-8e15-001234567890} - c:\windows\system32\dla\DLASHX_W.DLL
    BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
    BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
    BHO: Skype Plug-In: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll
    BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn\YTSingleInstance.dll
    TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn\yt.dll
    TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
    TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
    TB: {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No File
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [CTSyncU.exe] "c:\program files\creative\sync manager unicode\CTSyncU.exe"
    uRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
    uRunOnce: [FlashPlayerUpdate] c:\windows\system32\macromed\flash\FlashUtil10p_Plugin.exe -update plugin
    mRun: [ehTray] c:\windows\ehome\ehtray.exe
    mRun: [AlwaysReady Power Message APP] ARPWRMSG.EXE
    mRun: [RTHDCPL] RTHDCPL.EXE
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRun: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect
    mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
    mRun: [PCDrProfiler]
    mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup
    mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
    mRun: [Monitor] c:\windows\pixart\pac207\Monitor.exe
    mRun: [KBD] c:\hp\kbd\KBD.EXE
    mRun: [DLA] c:\windows\system32\dla\DLACTRLW.EXE
    mRun: [AVG_TRAY] c:\program files\avg\avg10\avgtray.exe
    mRun: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    dRun: [MySpaceIM] c:\program files\myspace\im\MySpaceIM.exe
    IE: {E2D4D26B-0180-43a4-B05F-462D6D54C789} - c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\iebutton\support.htm
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    IE: {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - {552781AF-37E4-4FEE-920A-CED9E648EADD} - c:\program files\common files\microsoft shared\encarta search bar\ENCSBAR.DLL
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
    DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab
    DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
    TCP: {98E26B4B-9BB9-4BF3-B661-0BF7C75B6117} = 83.136.47.249 193.120.14.101
    Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\avg\avg10\toolbar\IEToolbar.dll
    Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - c:\program files\common files\microsoft shared\web folders\PKMCDO.DLL
    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - c:\program files\avg\avg10\avgpp.dll
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
    SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\documents and settings\hp_administrator\application data\mozilla\firefox\profiles\9daztzvq.default\
    FF - prefs.js: network.proxy.type - 0
    FF - component: c:\program files\avg\avg10\firefox4\components\avgssff4.dll
    FF - component: c:\program files\avg\avg10\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils3.dll
    FF - component: c:\program files\avg\avg10\toolbar\firefox\avg@igeared\components\IGeared_tavgp_xputils35.dll
    FF - component: c:\program files\avg\avg10\toolbar\firefox\avg@igeared\components\xpavgtbapi.dll
    FF - component: c:\program files\mozilla firefox\extensions\{ab2ce124-6272-4b12-94a9-7303c7397bd1}\components\SkypeFfComponent.dll
    FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
    FF - plugin: c:\program files\google\update\1.3.21.53\npGoogleUpdate3.dll
    FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [2010-9-13 22992]
    R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [2010-9-7 32592]
    R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [2010-9-7 248656]
    R1 Avgmfx86;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\drivers\avgmfx86.sys [2010-9-7 34896]
    R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [2010-9-7 297168]
    R2 avgwd;AVG WatchDog;c:\program files\avg\avg10\avgwdsvc.exe [2011-2-8 269520]
    R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]
    R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [2005-1-3 2777472]
    R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [2010-8-19 134480]
    R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [2010-8-19 24144]
    R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [2010-8-19 27216]
    S2 AVGIDSAgent;AVGIDSAgent;c:\program files\avg\avg10\identity protection\agent\bin\AVGIDSAgent.exe [2011-4-18 7398752]
    S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-1-28 135664]
    S3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\avg\avg10\toolbar\ToolbarBroker.exe [2011-4-9 947528]
    S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-1-28 135664]
    S3 ICScsiSV;Image Converter SCSI Service;c:\program files\sony\image converter 3\ICScsiSV.exe [2007-8-15 75952]
    S3 IcVzMonLauncher;IcVzMonLauncher;c:\program files\sony\image converter 3\IcVzMonLauncher.exe [2007-8-15 67760]
    S3 mr97310c;CIF Dual-Mode Camera;c:\windows\system32\drivers\mr97310c.sys [2006-10-30 121472]
    S3 PAC207;PC Camer@;c:\windows\system32\drivers\PFC027.SYS [2006-11-20 506112]
    .
    =============== Created Last 30 ================
    .
    2011-05-22 20:41:14 -------- d-----w- c:\documents and settings\hp_administrator\application data\Malwarebytes
    2011-05-22 20:40:30 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-05-22 20:40:29 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
    2011-05-22 20:40:25 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
    2011-05-22 20:40:25 -------- d-----w- C:\Malwarebytes' Anti-Malware
    2011-05-22 17:17:47 -------- d-sh--w- c:\documents and settings\hp_administrator\IETldCache
    2011-05-22 17:08:00 -------- d-----w- c:\windows\ie8updates
    2011-05-22 17:00:43 -------- dc-h--w- c:\windows\ie8
    2011-05-22 16:51:23 7680 ------w- c:\windows\system32\dllcache\iecompat.dll
    2011-05-22 16:51:11 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
    2011-05-22 16:51:09 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
    2011-05-22 16:51:09 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
    2011-05-22 15:07:21 388096 ----a-r- c:\documents and settings\hp_administrator\application data\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
    2011-05-22 15:07:20 -------- d-----w- c:\program files\Trend Micro
    2011-05-22 14:38:18 73728 ----a-w- c:\windows\system32\javacpl.cpl
    2011-05-22 13:07:43 -------- d-----w- c:\windows\system32\scripting
    2011-05-22 13:07:42 -------- d-----w- c:\windows\system32\en
    2011-05-22 13:07:42 -------- d-----w- c:\windows\system32\bits
    2011-05-20 19:26:37 872192 ----a-w- c:\windows\system32\drivers\mod7700.sys
    2011-05-20 19:26:37 24448 ----a-w- c:\windows\system32\drivers\ewdcsc.sys
    2011-05-20 19:26:37 103168 ----a-w- c:\windows\system32\drivers\ewusbfake.sys
    2011-05-20 19:26:37 101376 ----a-w- c:\windows\system32\drivers\ewusbmdm.sys
    2011-05-20 19:26:37 100992 ----a-w- c:\windows\system32\drivers\ewusbnet.sys
    2011-05-19 11:02:55 -------- d-----w- c:\windows\system32\wbem\repository\FS
    2011-05-19 11:02:55 -------- d-----w- c:\windows\system32\wbem\Repository
    2011-05-18 20:03:07 -------- d-----w- c:\windows\l2schemas
    2011-05-18 20:00:03 -------- d-----w- c:\program files\Huawei Modems
    2011-05-16 17:55:40 -------- d-----w- c:\documents and settings\hp_administrator\application data\SUPERAntiSpyware.com
    2011-05-16 17:55:18 -------- d-----w- c:\program files\SUPERAntiSpyware
    2011-05-12 10:11:49 -------- d-----w- c:\program files\POKAT
    .
    ==================== Find3M ====================
    .
    2011-05-22 14:37:57 472808 ----a-w- c:\windows\system32\deployJava1.dll
    2011-05-22 13:13:43 61440 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\modemutil.dll
    2011-05-22 13:13:43 45056 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\uninstallui\eHelpSetup.exe
    2011-05-22 13:13:43 44032 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\scripts\devcon.exe
    2011-05-22 13:13:43 40960 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\ScDmi.dll
    2011-05-22 13:13:43 32768 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\uploadHSC.dll
    2011-05-22 13:13:43 32768 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\Scom.dll
    2011-05-22 13:13:43 287310 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\HPBasicDetection.dll
    2011-05-22 13:13:43 163840 ----a-w- c:\windows\pchealth\helpctr\vendors\cn=hewlett-packard,l=cupertino,s=ca,c=us\plugin\modemcheck.dll
    2011-04-14 20:28:42 134480 ----a-w- c:\windows\system32\drivers\AVGIDSDriver.sys
    2011-04-04 23:59:56 297168 ----a-w- c:\windows\system32\drivers\avgtdix.sys
    2011-03-16 15:03:20 32592 ----a-w- c:\windows\system32\drivers\avgrkx86.sys
    2011-02-22 23:06:29 916480 ----a-w- c:\windows\system32\wininet.dll
    2011-02-22 23:06:29 43520 ------w- c:\windows\system32\licmgr10.dll
    2011-02-22 23:06:29 1469440 ------w- c:\windows\system32\inetcpl.cpl
    2011-02-22 11:41:59 385024 ------w- c:\windows\system32\html.iec
    2011-02-22 07:13:02 22992 ----a-w- c:\windows\system32\drivers\AVGIDSEH.sys
    .
    ============= FINISH: 8:07:11.78 ===============
  3. Fea

    Fea Newcomer, in training Topic Starter

    Attach.txt

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_11-05-19.01)
    .
    Microsoft Windows XP Professional
    Boot Device: \Device\HarddiskVolume2
    Install Date: 3/16/2006 11:23:26 AM
    System Uptime: 5/23/2011 6:48:15 AM (2 hours ago)
    .
    Motherboard: ASUSTek Computer INC. | | LITHIUM
    Processor: Intel(R) Pentium(R) 4 CPU 3.00GHz | Socket 775 | 3000/200mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 143 GiB total, 46.252 GiB free.
    D: is FIXED (FAT32) - 6 GiB total, 1.622 GiB free.
    E: is CDROM (CDFS)
    F: is Removable
    G: is Removable
    H: is Removable
    I: is Removable
    J: is Removable
    K: is CDROM (CDFS)
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP764: 2/22/2011 10:43:28 AM - System Checkpoint
    RP765: 2/23/2011 11:41:11 AM - System Checkpoint
    RP766: 2/23/2011 8:18:02 PM - Software Distribution Service 3.0
    RP767: 2/25/2011 8:05:56 AM - System Checkpoint
    RP768: 2/26/2011 4:45:57 PM - System Checkpoint
    RP769: 2/28/2011 2:30:29 PM - System Checkpoint
    RP770: 3/1/2011 7:37:47 PM - System Checkpoint
    RP771: 3/2/2011 8:49:38 PM - System Checkpoint
    RP772: 3/4/2011 12:06:41 PM - System Checkpoint
    RP773: 3/5/2011 12:22:35 PM - System Checkpoint
    RP774: 3/6/2011 6:24:26 PM - System Checkpoint
    RP775: 3/7/2011 6:44:16 PM - System Checkpoint
    RP776: 3/9/2011 7:12:15 AM - System Checkpoint
    RP777: 3/9/2011 10:19:27 PM - Software Distribution Service 3.0
    RP778: 3/11/2011 7:24:12 AM - System Checkpoint
    RP779: 3/12/2011 11:49:57 AM - System Checkpoint
    RP780: 3/13/2011 6:06:11 PM - System Checkpoint
    RP781: 3/15/2011 7:21:34 AM - System Checkpoint
    RP782: 3/16/2011 8:46:17 AM - System Checkpoint
    RP783: 3/17/2011 11:35:59 AM - System Checkpoint
    RP784: 3/18/2011 6:06:16 PM - System Checkpoint
    RP785: 3/20/2011 10:45:06 AM - System Checkpoint
    RP786: 3/21/2011 6:25:00 PM - System Checkpoint
    RP787: 3/23/2011 7:29:03 AM - System Checkpoint
    RP788: 3/24/2011 1:00:20 PM - System Checkpoint
    RP789: 3/26/2011 2:43:43 PM - System Checkpoint
    RP790: 3/27/2011 4:35:02 PM - System Checkpoint
    RP791: 3/28/2011 7:01:45 PM - System Checkpoint
    RP792: 3/29/2011 7:33:11 PM - System Checkpoint
    RP793: 3/30/2011 7:40:40 PM - System Checkpoint
    RP794: 4/1/2011 7:19:45 AM - System Checkpoint
    RP795: 4/2/2011 7:22:01 AM - System Checkpoint
    RP796: 4/3/2011 11:28:14 AM - System Checkpoint
    RP797: 4/4/2011 3:24:03 PM - System Checkpoint
    RP798: 4/6/2011 7:39:12 AM - System Checkpoint
    RP799: 4/7/2011 7:48:51 AM - System Checkpoint
    RP800: 4/8/2011 8:21:58 AM - System Checkpoint
    RP801: 4/9/2011 1:10:04 PM - System Checkpoint
    RP802: 4/9/2011 9:05:48 PM - Installed AVG 2011
    RP803: 4/9/2011 9:10:57 PM - Removed AVG 2011
    RP804: 4/13/2011 6:29:02 PM - System Checkpoint
    RP805: 4/13/2011 9:18:45 PM - Software Distribution Service 3.0
    RP806: 4/15/2011 5:10:42 PM - System Checkpoint
    RP807: 4/17/2011 8:26:22 PM - System Checkpoint
    RP808: 4/19/2011 8:42:32 AM - System Checkpoint
    RP809: 4/20/2011 1:53:46 PM - System Checkpoint
    RP810: 4/21/2011 6:59:11 PM - System Checkpoint
    RP811: 4/23/2011 12:50:56 PM - System Checkpoint
    RP812: 4/24/2011 1:20:11 PM - System Checkpoint
    RP813: 4/26/2011 9:01:36 AM - Software Distribution Service 3.0
    RP814: 4/27/2011 9:31:14 AM - System Checkpoint
    RP815: 4/27/2011 1:08:32 PM - Software Distribution Service 3.0
    RP816: 4/28/2011 1:21:41 PM - System Checkpoint
    RP817: 4/30/2011 12:18:22 PM - System Checkpoint
    RP818: 5/1/2011 1:44:13 PM - System Checkpoint
    RP819: 5/3/2011 3:34:15 PM - System Checkpoint
    RP820: 5/5/2011 1:39:14 PM - System Checkpoint
    RP821: 5/7/2011 7:40:54 AM - System Checkpoint
    RP822: 5/9/2011 7:17:41 AM - System Checkpoint
    RP823: 5/10/2011 7:29:45 AM - System Checkpoint
    RP824: 5/11/2011 8:07:25 AM - System Checkpoint
    RP825: 5/11/2011 1:01:57 PM - Software Distribution Service 3.0
    RP826: 5/13/2011 10:18:36 AM - System Checkpoint
    RP827: 5/16/2011 4:24:11 PM - System Checkpoint
    RP828: 5/18/2011 7:35:17 AM - System Checkpoint
    RP829: 5/18/2011 9:00:49 PM - Installed Windows XP Wdf01009.
    RP830: 5/18/2011 9:01:30 PM - Installed mobile broadband
    RP831: 5/18/2011 10:17:59 PM - Removed mobile broadband
    RP832: 5/19/2011 9:27:36 AM - Restore Operation
    RP833: 5/19/2011 11:59:43 AM - Restore Operation
    RP834: 5/19/2011 12:14:10 PM - Unsigned driver install
    RP835: 5/22/2011 1:35:05 PM - Software Distribution Service 3.0
    RP836: 5/22/2011 1:37:57 PM - Software Distribution Service 3.0
    RP837: 5/22/2011 3:26:38 PM - Removed Java(TM) 6 Update 22
    RP838: 5/22/2011 3:30:46 PM - Removed J2SE Runtime Environment 5.0
    RP839: 5/22/2011 3:37:44 PM - Installed Java(TM) 6 Update 25
    RP840: 5/22/2011 4:07:19 PM - Installed HiJackThis
    RP841: 5/22/2011 6:03:15 PM - Installed Windows Internet Explorer 8.
    RP842: 5/22/2011 6:06:41 PM - Software Distribution Service 3.0
    .
    ==== Installed Programs ======================
    .
    .
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader 7.0.7
    Agere Systems PCI Soft Modem
    AiO_Scan
    AiOSoftware
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    ArcSoft PhotoImpression
    ArcSoft VideoImpression 1.6
    ArcSoft VideoImpression 2
    AVG 2011
    BufferChm
    CameraDrivers
    CIF Dual-Mode Camera
    Content Transfer
    CP_AtenaShokunin1Config
    CP_CalendarTemplates1
    CP_Package_Basic1
    CP_Package_Variety1
    CP_Package_Variety2
    CP_Package_Variety3
    CP_Panorama1Config
    Creative Software AutoUpdate
    Creative System Information
    Creative ZEN
    Critical Update for Windows Media Player 11 (KB959772)
    CueTour
    Destinations
    DeviceManagementQFolder
    Digital Locker Assistant
    DocProc
    DocumentViewer
    DocumentViewerQFolder
    Fax
    Google Earth
    Google Earth Plug-in
    Google Toolbar for Internet Explorer
    Google Update Helper
    High Definition Audio Driver Package - KB888111
    HiJackThis
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Hotfix for Windows Internet Explorer 7 (KB947864)
    Hotfix for Windows Media Format 11 SDK (KB929399)
    Hotfix for Windows Media Player 10 (KB903157)
    Hotfix for Windows Media Player 11 (KB939683)
    Hotfix for Windows XP (KB952287)
    Hotfix for Windows XP (KB954550-v5)
    Hotfix for Windows XP (KB961118)
    Hotfix for Windows XP (KB970653-v3)
    Hotfix for Windows XP (KB976002-v5)
    Hotfix for Windows XP (KB976098-v2)
    Hotfix for Windows XP (KB979306)
    Hotfix for Windows XP (KB981793)
    HP Deskjet 2050 J510 series Basic Device Software
    HP Deskjet Printer Preload
    HP DigitalMedia Archive
    HP Document Viewer 5.3
    HP Image Zone 5.3
    HP Image Zone for Media Center PC
    HP Imaging Device Functions 5.3
    HP Multimedia Keyboard Software
    HP Photosmart 330,380,420,470,7800,8000,8200 Series
    HP Photosmart Cameras 5.0
    HP PSC & OfficeJet 5.3.B
    HP Simple Backup 4.1 (PSD)
    HP Software Update
    HP Solution Center & Imaging Support Tools 5.3
    HP Tunes
    HPProductAssistant
    HpSdpAppCoreApp
    HPTunesAddIn
    Image Converter 3
    InstantShareDevices
    Intel(R) PRO Network Connections Drivers
    InterActual Player
    InterVideo WinDVD Player
    iTunes
    Java Auto Updater
    Java(TM) 6 Update 25
    MAGIX Movie Edit Pro 10 (UK)
    MAGIX Music Manager (UK)
    MAGIX Photo Manager (UK)
    MainConcept for Software Encoder
    Malwarebytes' Anti-Malware
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Security Update (KB979906)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft Application Error Reporting
    Microsoft Away Mode
    Microsoft Choice Guard
    Microsoft Compression Client Pack 1.0 for Windows XP
    Microsoft Digital Image Library 9 - Blocker
    Microsoft Internationalized Domain Names Mitigation APIs
    Microsoft Money
    Microsoft National Language Support Downlevel APIs
    Microsoft Photo Premium 10
    Microsoft Picture It! Library 10
    Microsoft Speech 5.1
    Microsoft User-Mode Driver Framework Feature Pack 1.0
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2005 Redistributable - KB2467175
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Word 2002
    Microsoft Works
    Microsoft Works 2005 Setup Launcher
    Microsoft Works Suite Add-in for Microsoft Word
    Microsoft XML Parser
    Mobile Partner
    Mozilla Firefox 4.0.1 (x86 en-US)
    MSVCRT
    MSXML 4.0 SP2 (KB927978)
    MSXML 4.0 SP2 (KB936181)
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MSXML 6 Service Pack 2 (KB973686)
    MySpaceIM
    Nero Suite
    NewCopy
    NVIDIA Drivers
    OpenMG Limited Patch 4.7-07-14-05-01
    OpenMG Secure Module 4.7.00
    Otto
    PanoStandAlone
    PC-Doctor 5 for Windows
    PC CIF Camer@
    PDF Manual NW-A800 Series
    PhotoGallery
    POKATreader
    PowerProducer
    Pro Media Director Version 1.1.1.1
    PS2
    PSPrinters08
    PSTAPlugin
    PVR Plus
    QFolder
    QuickTime
    RandMap
    RapidGX Media Free Trial
    Readme
    RealPlayer
    Sage MIS 3.01
    Scan
    ScannerCopy
    Security Update for CAPICOM (KB931906)
    Security Update for Step By Step Interactive Training (KB898458)
    Security Update for Step By Step Interactive Training (KB923723)
    Security Update for Windows Internet Explorer 7 (KB937143)
    Security Update for Windows Internet Explorer 7 (KB938127)
    Security Update for Windows Internet Explorer 7 (KB939653)
    Security Update for Windows Internet Explorer 7 (KB942615)
    Security Update for Windows Internet Explorer 7 (KB944533)
    Security Update for Windows Internet Explorer 7 (KB950759)
    Security Update for Windows Internet Explorer 7 (KB953838)
    Security Update for Windows Internet Explorer 7 (KB956390)
    Security Update for Windows Internet Explorer 7 (KB958215)
    Security Update for Windows Internet Explorer 7 (KB960714)
    Security Update for Windows Internet Explorer 7 (KB961260)
    Security Update for Windows Internet Explorer 7 (KB963027)
    Security Update for Windows Internet Explorer 7 (KB969897)
    Security Update for Windows Internet Explorer 7 (KB972260)
    Security Update for Windows Internet Explorer 7 (KB974455)
    Security Update for Windows Internet Explorer 7 (KB976325)
    Security Update for Windows Internet Explorer 7 (KB978207)
    Security Update for Windows Internet Explorer 7 (KB982381)
    Security Update for Windows Internet Explorer 8 (KB2497640)
    Security Update for Windows Internet Explorer 8 (KB982381)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player (KB954155)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows Media Player (KB978695)
    Security Update for Windows Media Player 10 (KB917734)
    Security Update for Windows Media Player 10 (KB936782)
    Security Update for Windows Media Player 11 (KB936782)
    Security Update for Windows Media Player 11 (KB954154)
    Security Update for Windows Media Player 6.4 (KB925398)
    Security Update for Windows XP (KB2229593)
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB923689)
    Security Update for Windows XP (KB923789)
    Security Update for Windows XP (KB938464)
    Security Update for Windows XP (KB941569)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950760)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951376)
    Security Update for Windows XP (KB951698)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB953839)
    Security Update for Windows XP (KB954211)
    Security Update for Windows XP (KB954600)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956391)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956841)
    Security Update for Windows XP (KB956844)
    Security Update for Windows XP (KB957095)
    Security Update for Windows XP (KB957097)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958687)
    Security Update for Windows XP (KB958690)
    Security Update for Windows XP (KB958869)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960715)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB960859)
    Security Update for Windows XP (KB961371)
    Security Update for Windows XP (KB961373)
    Security Update for Windows XP (KB961501)
    Security Update for Windows XP (KB968537)
    Security Update for Windows XP (KB969059)
    Security Update for Windows XP (KB969898)
    Security Update for Windows XP (KB969947)
    Security Update for Windows XP (KB970238)
    Security Update for Windows XP (KB970430)
    Security Update for Windows XP (KB971468)
    Security Update for Windows XP (KB971486)
    Security Update for Windows XP (KB971557)
    Security Update for Windows XP (KB971633)
    Security Update for Windows XP (KB971657)
    Security Update for Windows XP (KB971961)
    Security Update for Windows XP (KB972270)
    Security Update for Windows XP (KB973346)
    Security Update for Windows XP (KB973354)
    Security Update for Windows XP (KB973507)
    Security Update for Windows XP (KB973525)
    Security Update for Windows XP (KB973869)
    Security Update for Windows XP (KB973904)
    Security Update for Windows XP (KB974112)
    Security Update for Windows XP (KB974318)
    Security Update for Windows XP (KB974392)
    Security Update for Windows XP (KB974571)
    Security Update for Windows XP (KB975025)
    Security Update for Windows XP (KB975467)
    Security Update for Windows XP (KB975560)
    Security Update for Windows XP (KB975561)
    Security Update for Windows XP (KB975562)
    Security Update for Windows XP (KB975713)
    Security Update for Windows XP (KB977165)
    Security Update for Windows XP (KB977816)
    Security Update for Windows XP (KB977914)
    Security Update for Windows XP (KB978037)
    Security Update for Windows XP (KB978251)
    Security Update for Windows XP (KB978262)
    Security Update for Windows XP (KB978338)
    Security Update for Windows XP (KB978542)
    Security Update for Windows XP (KB978601)
    Security Update for Windows XP (KB978706)
    Security Update for Windows XP (KB979309)
    Security Update for Windows XP (KB979482)
    Security Update for Windows XP (KB979559)
    Security Update for Windows XP (KB979683)
    Security Update for Windows XP (KB980195)
    Security Update for Windows XP (KB980218)
    Security Update for Windows XP (KB980232)
    Security Update for Windows XP (KB981349)
    Segoe UI
    SetupSBD
    Shockwave
    SkinsHP1
    Skype Toolbars
    Skype™ 5.1
    SolutionCenter
    Sonic Encoders
    Sonic Express Labeler
    Sonic MyDVD Plus
    Sonic RecordNow Audio
    Sonic RecordNow Copy
    Sonic RecordNow Data
    Sonic UDF Reader
    Sonic Update Manager
    Sonic_PrimoSDK
    SonicStage 4.3
    Sony Picture Utility
    Sony USB Driver
    Sony Video Shared Library
    Status
    Supreme Commander
    The Sims 2
    The Sims 2 Open For Business
    TrayApp
    Unload
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Windows Internet Explorer 7 (KB976749)
    Update for Windows Internet Explorer 7 (KB980182)
    Update for Windows Internet Explorer 8 (KB2447568)
    Update for Windows Media Player 10 (KB913800)
    Update for Windows Media Player 10 (KB926251)
    Update for Windows XP (KB2467659)
    Update for Windows XP (KB951072-v2)
    Update for Windows XP (KB955759)
    Update for Windows XP (KB955839)
    Update for Windows XP (KB961503)
    Update for Windows XP (KB967715)
    Update for Windows XP (KB968389)
    Update for Windows XP (KB971737)
    Update for Windows XP (KB973687)
    Update for Windows XP (KB973815)
    Update Rollup 2 for Windows XP Media Center Edition 2005
    Video Downloader
    WALKMAN Launcher
    Wallpapers
    WebFldrs XP
    WebReg
    Windows Driver Package - MARS (mr97310c) Image 04/11/2005 2.0.0.0
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Imaging Component
    Windows Internet Explorer 7
    Windows Internet Explorer 8
    Windows Live Call
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Messenger
    Windows Live Sign-in Assistant
    Windows Live Upload Tool
    Windows Media Format 11 runtime
    Windows Media Player 10 Hotfix - KB895316
    Windows Media Player 11
    Windows XP Media Center Edition 2005 KB2502898
    Windows XP Media Center Edition 2005 KB925766
    Windows XP Media Center Edition 2005 KB973768
    Windows XP Service Pack 3
    WinRAR archiver
    Works Upgrade
    WWII: IwoJima
    Yahoo! Messenger
    Yahoo! Software Update
    Yahoo! Toolbar
    .
    ==== Event Viewer Messages From Past Week ========
    .
    5/22/2011 10:24:24 PM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: IntelIde ViaIde
    5/21/2011 9:46:26 PM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the avgwd service.
    5/18/2011 9:16:10 PM, error: W32Time [17] - Time Provider NtpClient: An error occurred during DNS lookup of the manually configured peer 'time.windows.com,0x1'. NtpClient will try the DNS lookup again in 15 minutes. The error was: A socket operation was attempted to an unreachable host. (0x80072751)
    .
    ==== End Of File ===========================
  4. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    Welcome to the Virus and Malware forum. I see that you found us okay.

    I will be glad to review logs for malware. However, if the only problem you're having is not accessing the blog, it is doubtful that it is caused by malware.

    Please stay away from the FunWebProducts and MyWebSearch and any related sites. You may be getting all that "fun" stuff free, but each new cursor, wallpaper, screen saver, Smiley, etc. comes with a price. It will be adware at least, with strong possibility of spyware or 'pests'.
    ==============================================
    • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
      ESETOnlineScan
    • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
      [o] Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
      [o] Double click on the [​IMG]on your desktop.
    • Check 'Yes I accept terms of use.'
    • Click Start button
    • Accept any security warnings from your browser.
      [​IMG]
    • Uncheck 'Remove found threats'
    • Check 'Scan archives/
    • Leave remaining settings as is.
    • Press the Start button.
    • ESET will then download updates for itself, install itself, and begin scanning your computer. Please wait for the scan to finish.
    • When the scan completes, press List of found threats
    • Push Export of text file and save the file to your desktop using a unique name, such as ESETScan. Paste this log in your next reply.
    • Push the Back button
    • Push Finish

    NOTE: If no malware is found then no log will be produced. Let me know if this is the case.
    =============================================
    I want you to run Combofix. Unfortunately, AVG has not left any way to disable the program and Combofix won't run with it, so it must be uninstalled temporarily:
    Download AppRemover and save to the desktop
    1. Double click the setup on the desktop> click Next
    2. Select “Remove Security Application”
    3. Let scan finish to determine security apps
    4. A screen like below will appear:
      [​IMG]
    5. Click on Next after choice has been made
    6. Check the AVG program you want to uninstall
    7. After uninstall shows complete, follow online prompts to Exit the program.

    Temporary AV: Use one:
    Avira-AntiVir-Personal-Free-Antivirus
    Avast Free Version
    =============================
    Please note: If you have Combofix on the desktop already, please uninstall it. The download the current version and do the scan: Uninstall directions, if needed:
    • Click START> then RUN
    • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
    -----------------------------
    Download Combofix from HERE or HERE and save to the desktop
    • Double click combofix.exe & follow the prompts.
    • ComboFix will check to see if the Microsoft Windows Recovery Console is installed. It is recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode if needed.
      **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.
    • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
    • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
      [​IMG]
    • .Click on Yes, to continue scanning for malware
    • .If Combofix asks you to update the program, allow
    • .Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    • .Close any open browsers.
    • .Double click combofix.exe[​IMG] & follow the prompts to run.
    • When the scan completes , a report will be generated-it will open a text window. Please paste the C:\ComboFix.txt in next reply..
    Re-enable your Antivirus software.
    Notes:
    1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
    2. ComboFix may reset a number of Internet Explorer's settings, including making I-E the default browser.
    3. Combofix prevents autorun of ALL CD, floppy and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you -- please tell your helper.
    4. CF disconnects your machine from the internet. The connection is automatically restored before CF completes its run. If CF runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your machine.
  5. Fea

    Fea Newcomer, in training Topic Starter

    Esetscan

    Thank you so much for getting back to me on this. I genuinely am grateful.

    This is all I got back from the ESETScan

    C:\Documents and Settings\Áine\Local Settings\Temporary Internet Files\Content.IE5\4JC5QBJM\cool-optical-illusions-for-kids[1].htm JS/Redirector.NIF trojan



    I'll keep going with your next instruction in the morning (its pretty late here now) ESETScan took over 2 hours to run.

    Fea.
  6. Fea

    Fea Newcomer, in training Topic Starter

    Combofix

    Ok I've tried to run the first link you put up for this. It told me I had over 1,000 registry errors but it wouldn't give me a report until I registered with their site.

    So I tried the second link but a box came up and told me that I needed to uninstall AVG before it would run. I had it disabled. Is this right? I won't do anything else until I hear back from you again.

    (Thanks for your patience in this, I'm just about ready to just give up.)

    Fea.
  7. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    I gave you the directions to use the App Remover to uninstall AVG to run Combofix. You cannot 'disable' AVG- you have to temporarily uninstall it.

    Please specify which links you are referring to for 'first link'?

    The first link for Combofix is embedded in the first HERE and should give you the download directly. I just tried it. See if you notice any difference pasting the full link in the Address Bar:
    http://download.bleepingcomputer.co...c24c19ae04b18f101ed0b1c/4ddbbd51/ComboFix.exe

    And I tried it again from within this post and got the download.
  8. Fea

    Fea Newcomer, in training Topic Starter

    Update

    I have no idea whats happened, but I logged in this morning to check to see if I could post to the blog and it was still the same. I came home just now, and its working perfectly.

    Whatever or however it happened, I am forever grateful to you, thank you so much.
    I offer you a virtual hug and a massive bottle of champagne. Your a life saver.

    As soon as I have time, I'll start a new thread for my laptop. It hasn't worked in about a year now but thats not todays worry.

    thanks again

    Fea.
  9. Bobbye

    Bobbye Helper on the Fringe Posts: 16,392   +36

    It was most likely a glitch on the site itself. The is a file in the Java cache that needs to be removed:
    To clear the Java Plug-in cache:

    • [1]. Click Start > Control Panel.
      [2]. Double-click the Java icon in the control panel. The Java Control Panel appears.
      [​IMG]
      [3].Click Settings under Temporary Internet Files.The Temporary Files Settings dialog box appears.
      [4] Click Delete Files.The Delete Temporary Files dialog box appears.
      [​IMG]
      There are three options on this window to clear the cache.Check all.
    • . Delete Files
    • .View Applications
    • .View Applets
      [5]. Click OK on Delete Temporary Files window.
      Note: This deletes all the Downloaded Applications and Applets from the cache.
      [6]. Click Apply> OK on Temporary Files Settings window.
    Note: If you want to delete a specific application and applet from the cache, click on View Application and View Applet options respectively.
    ====================================
    Then you can remove all of the tools we used and the files and folders they created
    I'm not sure if you got Combofix on the system. If you did not, skip that uninstall.
    • Uninstall ComboFix and all Backups of the files it deleted
    • Click START> then RUN
    • Now type Combofix /Uninstall in the runbox and click OK. Note the space between the X and the U, it needs to be there.
      [​IMG]
    • Download OTCleanIt by OldTimer and save it to your Desktop.
    • Double click OTCleanIt.exe.
    • Click the CleanUp! button.
    • If you are prompted to Reboot during the cleanup, select Yes.
    • The tool will delete itself once it finishes.
    Note: If you receive a warning from your firewall or other security programs regarding OTC attempting to contact the internet, please allow it to do so.

    Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

    • You should now set a new Restore Point and remove the old restore points to prevent infection from any previous Restore Points.
    • Go to Start > All Programs > Accessories > System Tools
    • Click "System Restore".
    • Choose "Create a Restore Point" on the first screen then click "Next".
    • Give the Restore Point a name> click "Create".
    • Go back and follow the path to > System Tools.
      [*]Choose Disc Cleanup
      [*]Click "OK" to select the partition or drive you want.
      [*]Click the "More Options" Tab.
      [*]Click "Clean Up" in the System Restore section to remove all previous Restore Points except the newly created one.


    Empty the Recycle Bin
    ===========================
    You're very welcome for the support. You can skip the bubbly, but hugs are always welcome!
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.