Malware Removal completed

[Lorraine]

Hi Guys,

I have completed steps 1-6 of  removing Malware it took forever!! I am still getting a message when i boot up the computer telling me to install updates. I have also been told to post the following logs.... I am sorry but i had to copy the contents of one of them and save it in Word (i did not alter any of the contents).

thank you again for helping me out with this problem - most appreciated.


[recovering disk space -- attachment deleted by admin]

[SuperDave]

Lorraine, are you running Norton AV?

[evilfantasy]

Open Hijackthis and select Do a system scan only.

Place a check mark next to the following entries: (if there)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://search.bearshare.com/sidebar.html?src=ssb
R3 - URLSearchHook: (no name) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - (no file)
O3 - Toolbar: (no name) - {D3DEE18F-DB64-4BEB-9FF1-E1F0A5033E4A} - (no file)

Important: Close all windows except for Hijackthis and then click Fix checked.

Exit Hijackthis.

Run CCleaner.

----------

Create An Uninstall List

• Start HijackThis
  
• Click on the Open the Misc Tools section
  
• Click on the Open Uninstall Manager button.
  
• Click on the Save list button and specify where you would like to save this file and click Save.
  • When you press Save button a notepad will open with the contents of that file.
• Copy and paste that list in your reply.

[Lorraine]

Hi again sorry about the confusion.......

Here are the results of my system scan and Yes i am using Norton anti virus.

I'll just keep saying thanks!!



[recovering disk space -- attachment deleted by admin]

[evilfantasy]

Go to add/remove programs and uninstall

Java(TM) 6 Update 5
LiveUpdate (Symantec Corporation)
LiveUpdate (Symantec Corporation)
Norton AntiVirus
Norton AntiVirus Help
Norton Confidential Core
Norton Internet Security
Norton Internet Security (Symantec Corporation)
Norton Protection Center
Symantec Real Time Storage Protection Component

How is everything now?

[Lorraine]

Hi again,

I have removed those items from my computer and I had to restart the machine but i am still getting the same message and it is running a little bit slower than usual?? So any more suggestions from here on in would be greatly appreciated, and will I have to re-install my Norton anti virus?

Thank you for the time and effort you are putting in to help me with this problem it is greatly appreciated.

Lorraine

[evilfantasy]

You won't need to re-install Norton because you are running AVG so you are protected.

Download Combofix by sUBs from one of the below links.

• Link #1
  
• Link #2

Important! Combofix.exe MUST be saved to and ran from the Desktop.

• Close any open Web browsers. (Firefox, Internet Explorer, etc) before starting Combofix.
• Important! Temporarily disable your antivirus, script blocking and any antispyware real time protection before performing a scan.
  
  • Click this link to see a list of security programs that should be disabled and how to disable them.
    
  • If yours is not listed and you don't know how to disable it, please ask.
• Warning: Combofix disconnects your computer from the internet. The connection is automatically restored before Combofix completes its run.
  
• Double click combofix.exe & follow the prompts.
• Choose Yes to accept the Disclaimers.
• When finished, it will produce a log for you.
• Post that log in your next reply.

Warning: Do not mouseclick Combofix's window while it is running. That may cause it to stall

• If Combofix runs into difficulty and terminates prematurely, the connection can be manually restored by restarting your computer.
  
• Important: Remember to re-enable your antivirus and antispyware before reconnecting to the Internet.

If needed, see this Combofix tutorial with screenshots that will detail more thoroughly the downloading and running of Combofix.

----------

Next post add
Combofix log

[Lorraine]

Hi again,

thank you for that set of instructions they all seem straight forward enough but before i start it could you tell me in more detail how to disable my anti virus, script blocking and spy ware.

thanks.

[evilfantasy]

Just turn off AVG by right clicking the icon in the system tray on the bottom right hand corner of the computer screen and choose to turn off protection.

[Lorraine]

Hi,

Thats were i ran into the confusion that is the first thing i did and it's not giving me that option - only giving me (Open AVG User Interface), Update now or exit and i just don't want to cause any more problems on my machine by not checking with yourselves first. Is there a way of turning it of if i open up AVG first and use any of the menus.
 

[evilfantasy]

Click exit.

It will turn back on automatically when the computer restarts.

[Lorraine]

Hi again......

Here are the results of the combo fix scan.

Thanks again

[recovering disk space -- attachment deleted by admin]

[evilfantasy]

I'm not seeing any malware. Did the slowdown start around or at the time you installed AVG?

----------

This will uninstall Combofix.


• Click START then RUN
  
• Now type Combofix /u in the runbox
  
• Make sure there's a space between Combofix and /u
• Then hit Enter.
.
----------

Download

Deckard's System Scanner (DSS) to your Desktop.
Note: You must be logged onto an account with administrator privileges.
Vista users Right click DSS and Run as Administrator.

• Close all applications and windows.
  
• Double-click on dss.exe to run it, and follow the prompts.
  
• When the scan is complete, two text files will open.
• main.txt <- this one will be maximized
  
• extra.txt <- this one will be minimized
• Copy (Ctrl+A then Ctrl+C) and paste (Ctrl+V) the contents of main.txt and extra.txt in your reply.

[/list]

[Lorraine]

Hi - here are the results of the Dss scan and i was having this problem before i installed AVG.


thanks

[Lorraine]

Sorry - just previewed my post don't think those items attached.

here they are again anyway - sorry!!

[recovering disk space -- attachment deleted by admin]