Hello
Nicolaysen and welcome to
Computer Hope Forum. My name is Dave. I will be helping you out with your particular problem on your computer. I am working under the guidance of one of the specialist of this forum so it may take a bit longer to process your logs.
1. I will be working on your
Malware issues. This
may or may not solve other issues you have with your machine.
2. The fixes are specific to your problem and should only be used for this issue on this machine.
3. If you don't know or understand something, please don't hesitate to ask.
4. Please
DO NOT run any other tools or scans while I am helping you.
5. It is important that you reply to this thread. Do not start a new topic.
6. Your security programs may give warnings for some of the tools I will ask you to use. Be assured, any links I give are safe.
7. Absence of symptoms does not mean that everything is clear.
==================================
Update Your Java (JRE)
Old versions of Java have vulnerabilities that malware can use to infect your system.First
Verify your Java VersionIf there are any other version(s) installed then update now.
Get the new version (if needed)If your version is out of date install the newest version of the
Sun Java Runtime Environment.
Note: UNCHECK any pre-checked toolbar and/or software offered with the Java update. The pre-checked toolbars/software are not part of the Java update.
Be sure to close ALL open web browsers before starting the installation.Remove any old versions
1. Download
JavaRa and unzip the file to your
Desktop.2. Open
JavaRA.exe and choose
Remove Older Versions3. Once complete exit
JavaRA.Additional Note: The Java Quick Starter (JQS.exe) adds a service to improve the initial startup time of Java applets and applications. To disable the JQS service if you don't want to use it, go to
Start > Control Panel > Java > Advanced > Miscellaneous and uncheck the box for
Java Quick Starter. Click
OK and
reboot your computer.
=====================================
Open
HijackThis and select
Do a system scan onlyPlace a check mark next to the following entries: (if there)
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O18 - Filter hijack: text/html - {0FA7FD6B-47C3-425B-AE30-36383F1C4503} - (no file)
Important: Close all open windows except for
HijackThis and then click
Fix checked.Once completed, exit
HijackThis.======================================
Download
ComboFix by sUBs from one of the below links. Be sure to save it to the
Desktop.link # 1link #2Close any open web browsers (Firefox, Internet Explorer, etc) before starting
ComboFix.Temporarily disable your anti-virus, and any anti-spyware real-time protection before performing a scan. Click
this link to see a list of security programs that should be disabled and how to disable them.
Vista users Right-click
combofix.exe and select
Run as Administrator and follow the prompts. (you will receive a UAC prompt, please allow it)
Double-click
combofix.exe and follow the prompts.
When finished,
ComboFix will produce a log for you.
Post the
ComboFix log and a new
HijackThis log in your next reply.
NOTE: Do not mouseclick ComboFix's window while it is running. That may cause it to stall.Remember to re-enable your
anti-virus and
anti-spyware protection when
ComboFix is complete.
If you have problems with ComboFix usage, see
How to use ComboFix
