Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

MyStart by Incredibar


  • This topic is locked This topic is locked
5 replies to this topic

#1 jackbetal

jackbetal

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 09 June 2012 - 08:24 PM

I also seem to have a problem whereby words are underlined and I am redirected to an ad. I tried fixing the "MyStart by Incredibar" problem by using this thread "http://www.bleepingcomputer.com/forums/topic444724.html" but to no avail.
I would very much appreciate help.
Thank you.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,924 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:39 PM

Posted 09 June 2012 - 08:40 PM

Hello, I moved this to Am I Infected for now.

By referebcing the other thread did you rin Combofix,TDSSKiller and aswMBR ?

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 jackbetal

jackbetal
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 10 June 2012 - 06:07 AM

Hello, I moved this to Am I Infected for now.

By referebcing the other thread did you rin Combofix,TDSSKiller and aswMBR ?

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:

  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Hi boopme. Thanks for the quick reply.

I did run the others but to be honest was not sure exactly what it was I was looking for.

Here is the toolbox log.

MiniToolBox by Farbar Version: 09-06-2012
Ran by INSPIRON (administrator) on 10-06-2012 at 11:50:11
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================
::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

1394 Net Adapter = 1394 Connection (Connected)
Intel® PRO/Wireless 2200BG Network Connection = Wireless Network Connection (Connected)
Broadcom 440x 10/100 Integrated Controller = Local Area Connection (Media disconnected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Wireless Network Connection"

set address name="Wireless Network Connection" source=dhcp
set dns name="Wireless Network Connection" source=dhcp register=PRIMARY
set wins name="Wireless Network Connection" source=dhcp

# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp

# Interface IP Configuration for "{13D6F6C8-098D-4318-8E36-3F879EA4912F}"

set address name="{13D6F6C8-098D-4318-8E36-3F879EA4912F}" source=dhcp
set dns name="{13D6F6C8-098D-4318-8E36-3F879EA4912F}" source=dhcp register=PRIMARY
set wins name="{13D6F6C8-098D-4318-8E36-3F879EA4912F}" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : dell-3de6a87245

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Wireless Network Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® PRO/Wireless 2200BG Network Connection

Physical Address. . . . . . . . . : 00-12-F0-38-45-01

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.15

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.1

DHCP Server . . . . . . . . . . . : 192.168.1.1

DNS Servers . . . . . . . . . . . : 89.101.160.5

89.101.160.4

Lease Obtained. . . . . . . . . . : 10 June 2012 11:41:17

Lease Expires . . . . . . . . . . : 10 June 2012 12:41:17



Ethernet adapter Local Area Connection:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Broadcom 440x 10/100 Integrated Controller

Physical Address. . . . . . . . . : 00-11-43-70-B4-D1



Ethernet adapter {13D6F6C8-098D-4318-8E36-3F879EA4912F}:



Media State . . . . . . . . . . . : Media disconnected

Description . . . . . . . . . . . : Anchorfree HSS Adapter - Packet Scheduler Miniport

Physical Address. . . . . . . . . : 00-FF-13-D6-F6-C8

Server: ie-dub01a-dns02.upc.ie
Address: 89.101.160.5

Name: google.com
Addresses: 209.85.143.101, 209.85.143.100



Pinging google.com [209.85.143.101] with 32 bytes of data:



Reply from 209.85.143.101: bytes=32 time=33ms TTL=57

Reply from 209.85.143.101: bytes=32 time=33ms TTL=57



Ping statistics for 209.85.143.101:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 33ms, Maximum = 33ms, Average = 33ms

Server: ie-dub01a-dns02.upc.ie
Address: 89.101.160.5

Name: yahoo.com
Addresses: 72.30.38.140, 209.191.122.70, 98.139.183.24



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:



Reply from 209.191.122.70: bytes=32 time=182ms TTL=53

Reply from 209.191.122.70: bytes=32 time=209ms TTL=53



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 182ms, Maximum = 209ms, Average = 195ms

Server: ie-dub01a-dns02.upc.ie
Address: 89.101.160.5

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Request timed out.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 1, Lost = 1 (50% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 12 f0 38 45 01 ...... Intel® PRO/Wireless 2200BG Network Connection - Packet Scheduler Miniport
0x3 ...00 11 43 70 b4 d1 ...... Broadcom 440x 10/100 Integrated Controller - Packet Scheduler Miniport
0x4 ...00 ff 13 d6 f6 c8 ...... Anchorfree HSS Adapter - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.15 25
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.15 192.168.1.15 25
192.168.1.15 255.255.255.255 127.0.0.1 127.0.0.1 25
192.168.1.255 255.255.255.255 192.168.1.15 192.168.1.15 25
224.0.0.0 240.0.0.0 192.168.1.15 192.168.1.15 25
255.255.255.255 255.255.255.255 192.168.1.15 3 1
255.255.255.255 255.255.255.255 192.168.1.15 192.168.1.15 1
255.255.255.255 255.255.255.255 192.168.1.15 4 1
Default Gateway: 192.168.1.1
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/10/2012 02:43:03 AM) (Source: Application Error) (User: )
Description: Faulting application startupmgr.exe, version 2.22.0.1, faulting module startupmgr.exe, version 2.22.0.1, fault address 0x0003761a.
Processing media-specific event for [startupmgr.exe!ws!]

Error: (06/09/2012 11:37:47 PM) (Source: Application Error) (User: )
Description: Faulting application startupmgr.exe, version 2.22.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [startupmgr.exe!ws!]

Error: (06/09/2012 09:57:30 PM) (Source: Application Error) (User: )
Description: Faulting application explorer.exe, version 6.0.2900.5512, faulting module unknown, version 0.0.0.0, fault address 0xc0000001.
Processing media-specific event for [explorer.exe!ws!]

Error: (06/09/2012 07:36:26 PM) (Source: NTBackup) (User: )
Description: End Operation: Warnings or errors were encountered.

Consult the backup report for more details.

Error: (06/09/2012 07:36:21 PM) (Source: NTBackup) (User: )
Description: End Backup of 'C:' 'Warnings or errors were encountered.'


Verify: Off

Mode: Replace

Type: Normal


Consult the backup report for more details.

Error: (06/09/2012 06:57:14 PM) (Source: Application Error) (User: )
Description: Faulting application explorer.exe, version 6.0.2900.5512, faulting module unknown, version 0.0.0.0, fault address 0xdb2359db.
Processing media-specific event for [explorer.exe!ws!]

Error: (06/07/2012 09:10:19 PM) (Source: Application Error) (User: )
Description: Faulting application chrome.exe, version 19.0.1084.52, faulting module ntdll.dll, version 5.1.2600.6055, fault address 0x00019af2.
Processing media-specific event for [chrome.exe!ws!]

Error: (06/06/2012 01:20:24 PM) (Source: Application Error) (User: )
Description: Faulting application chrome.exe, version 19.0.1084.52, faulting module chrome.dll, version 19.0.1084.52, fault address 0x000261df.
Processing media-specific event for [chrome.exe!ws!]

Error: (06/03/2012 05:18:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6609

Error: (06/03/2012 05:18:32 PM) (Source: Bonjour Service) (User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6609


System errors:
=============
Error: (06/10/2012 01:36:49 AM) (Source: Service Control Manager) (User: )
Description: The NMIndexingService service terminated unexpectedly. It has done this 1 time(s).

Error: (06/10/2012 01:36:47 AM) (Source: Service Control Manager) (User: )
Description: The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s).

Error: (06/10/2012 01:36:47 AM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless Registry Service service terminated unexpectedly. It has done this 1 time(s).

Error: (06/10/2012 01:36:47 AM) (Source: Service Control Manager) (User: )
Description: The LightScribeService Direct Disc Labeling Service service terminated unexpectedly. It has done this 1 time(s).

Error: (06/10/2012 01:36:47 AM) (Source: Service Control Manager) (User: )
Description: The Expat Shield Monitoring Service service terminated unexpectedly. It has done this 1 time(s).

Error: (06/10/2012 01:36:47 AM) (Source: Service Control Manager) (User: )
Description: The Expat Shield Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (06/10/2012 01:36:47 AM) (Source: Service Control Manager) (User: )
Description: The Expat Shield Routing Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (06/10/2012 01:36:46 AM) (Source: Service Control Manager) (User: )
Description: The AVG WatchDog service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 0 milliseconds: Restart the service.

Error: (06/10/2012 01:36:46 AM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless Service service terminated unexpectedly. It has done this 1 time(s).

Error: (06/10/2012 01:36:46 AM) (Source: Service Control Manager) (User: )
Description: The Intel® PROSet/Wireless SSO Service service terminated unexpectedly. It has done this 1 time(s).


Microsoft Office Sessions:
=========================
Error: (06/10/2012 02:43:03 AM) (Source: Application Error)(User: )
Description: startupmgr.exe2.22.0.1startupmgr.exe2.22.0.10003761a

Error: (06/09/2012 11:37:47 PM) (Source: Application Error)(User: )
Description: startupmgr.exe2.22.0.1unknown0.0.0.000000000

Error: (06/09/2012 09:57:30 PM) (Source: Application Error)(User: )
Description: explorer.exe6.0.2900.5512unknown0.0.0.0c0000001

Error: (06/09/2012 07:36:26 PM) (Source: NTBackup)(User: )
Description: Warnings or errors were encountered.

Error: (06/09/2012 07:36:21 PM) (Source: NTBackup)(User: )
Description: C:Warnings or errors were encountered.OffReplaceNormal

Error: (06/09/2012 06:57:14 PM) (Source: Application Error)(User: )
Description: explorer.exe6.0.2900.5512unknown0.0.0.0db2359db

Error: (06/07/2012 09:10:19 PM) (Source: Application Error)(User: )
Description: chrome.exe19.0.1084.52ntdll.dll5.1.2600.605500019af2

Error: (06/06/2012 01:20:24 PM) (Source: Application Error)(User: )
Description: chrome.exe19.0.1084.52chrome.dll19.0.1084.52000261df

Error: (06/03/2012 05:18:32 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledSPRetry 6609

Error: (06/03/2012 05:18:32 PM) (Source: Bonjour Service)(User: )
Description: Task Scheduling Error: m->NextScheduledEvent 6609


=========================== Installed Programs ============================

32 Bit HP CIO Components Installer (Version: 2.1.4)
Adobe AIR (Version: 3.1.0.4880)
Adobe Flash Player 10 Plugin (Version: 10.3.183.11)
Adobe Flash Player 11 ActiveX (Version: 11.1.102.63)
Adobe Reader X (10.1.3) (Version: 10.1.3)
AliIM Plugins for Browser (Version: 1.0)
AliSetup 0.1.0.52 (Version: 0.1.0.52)
ALPS Touch Pad Driver
Apple Application Support (Version: 2.1.7)
Apple Mobile Device Support (Version: 5.1.1.4)
Apple Software Update (Version: 2.1.3.127)
ATI - Software Uninstall Utility (Version: 6.14.10.1012)
ATI Control Panel (Version: 6.14.10.5160)
ATI Display Driver (Version: 8.162-050803a2-025823C-Dell)
µTorrent (Version: 3.1.3)
AVG 2012 (Version: 12.0.2178)
AVG 2012 (Version: 12.0.2433)
AVG 2012 (Version: 2012.0.2178)
bitcontrol® Digital TV Link v2.5 (Version: 2.5)
bitcontrol® MPEG-2 Video Decoder v1.5 (Version: 1.5)
Broadcom 440x 10/100 Integrated Controller (Version: 5.51.03)
C-Major Audio (Version: 42xx)
CCleaner (Version: 3.10)
Citrix online plug-in (USB) (Version: 12.1.44.1)
Compatibility Pack for the 2007 Office system (Version: 12.0.6612.1000)
Conexant D110 MDC V.92 Modem
Dell Photo AIO Printer 922
Expat Shield 2.24 (Version: 2.24)
FileZilla Client 3.5.2 (Version: 3.5.2)
FTDI USB Serial Converter Drivers (Version: 2.00.00)
Google Chrome (Version: 19.0.1084.52)
Google Talk (remove only)
HiJackThis (Version: 1.0.0)
Hotspot Shield Toolbar (Version: 6.8.9.0)
Intel® PROSet/Wireless Software (Version: 11.01.0000)
iTunes (Version: 10.6.1.7)
Java Auto Updater (Version: 2.0.7.1)
Java™ 6 Update 31 (Version: 6.0.310)
LightScribe 1.4.136.1 (Version: 1.4.136.1)
MaxiLink (Version: 1.00.0000)
mCore (Version: 9.03.0000)
mDriver (Version: 9.03.0000)
mDrWiFi (Version: 9.03.0000)
mFaraj DB viewer4.0.0
mHlpDell (Version: 9.03.0000)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Professional Edition 2003 (Version: 11.0.8173.0)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft Works 6-9 Converter (Version: 9.7.0621)
mIWA (Version: 9.03.0000)
mLogView (Version: 9.03.0000)
mMHouse (Version: 9.03.0000)
Mozilla Firefox (3.6.19) (Version: 3.6.19 (en-GB))
mPfMgr (Version: 9.03.0000)
mPfWiz (Version: 9.03.0000)
mProSafe (Version: 9.00.0000)
mSCfg (Version: 9.03.0000)
mSSO (Version: 9.03.0000)
MSXML 6.0 Parser (Version: 6.00.3883.8)
mWlsSafe (Version: 9.00.0000)
mWMI (Version: 9.03.0000)
mZConfig (Version: 9.03.0000)
Nero 7 Essentials (Version: 7.02.5017)
OpenOffice.org 3.3 (Version: 3.3.9567)
PDFCreator (Version: 1.2.3)
PowerDVD
Rainlendar2 (remove only)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
RealUpgrade 1.1 (Version: 1.1.0)
Skype Click to Call (Version: 5.10.9560)
Skype™ 5.8 (Version: 5.8.158)
Sony Ericsson PC Suite
TradeManager 2011 SP3
Unlocker 1.9.1 (Version: 1.9.1)
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB898461) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
Vid-Saver (Version: 1.18.149.149)
VLC media player 1.1.11 (Version: 1.1.11)
WebFldrs XP (Version: 9.50.7523)
WheresJames Startup Manager 2.22
Windows Driver Package - FTDI CDM Driver Package (05/19/2006 2.00.00) (Version: 05/19/2006 2.00.00)
Windows Driver Package - STMicroelectronics (STTub203) USB
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Media Format 11 runtime
Windows XP Service Pack 3 (Version: 20080414.031525)
WinRAR archiver
Yahoo! Detect

========================= Memory info: ===================================

Percentage of memory in use: 39%
Total physical RAM: 2047.37 MB
Available physical RAM: 1243.91 MB
Total Pagefile: 2662.12 MB
Available Pagefile: 1926.63 MB
Total Virtual: 2047.88 MB
Available Virtual: 1972.76 MB

========================= Partitions: =====================================

1 Drive c: () (Fixed) (Total:55.88 GB) (Free:3.35 GB) NTFS

========================= Users: ========================================

User accounts for \\DELL-3DE6A87245

Administrator Guest HelpAssistant
INSPIRON SUPPORT_388945a0


**** End of log ****

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,924 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:39 PM

Posted 10 June 2012 - 03:40 PM

OK. I think we need you to start a new topic in the Malware removal forum. You will probably need a custom script to fix this. Two points of advice for the future.
ComboFix is a tool that should only be run under the supervision of someone who has been trained in its use. Using it on your own can cause problems with your computer.

Do not folow another persons solution in that forum. Especially when there OS is different than yours.

Now we need to see changes made. Having run ComboFix we need to see that and a DDS log.

Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
Skip the GMER step and instead post the ComboFix log you posted earlier.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 jackbetal

jackbetal
  • Topic Starter

  • Members
  • 32 posts
  • OFFLINE
  •  
  • Local time:11:39 PM

Posted 10 June 2012 - 08:03 PM

Thanks boopme.

As requested.

http://www.bleepingcomputer.com/forums/topic456589.html#entry2726854

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,924 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:39 PM

Posted 11 June 2012 - 08:01 PM

Thank You!!
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 3 days and ALL logs are answered.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users