The Funweb garbage (shown in the AVG screenshot) is malware that infected your computer when downloading things like screensavers, free games, smileys, etc.
Not a very high risk issue but malware just the same.
The registry entry may be a different story, but you cut off the info in the screenshot you posted that would tell us what it is.
It is a browser helper object that can be either legit or not, depending on what it is, although it probably is malware that was hidden in one of the "free" crapware associated trojans from Funwebs.
Read the EULAS from now on!
Being that AVG has quarantined them, and you had AVG delete them, I suggest that you do the following, (because there is probably a lot more malware infection present than just the few AVG found.
By the way, AVG has issued a new freeware version, V7.5 and their old freeware version will not be supported for too much longer, so go to their website and update your version - not just the definition updates - update the program to the new version which will continue to be supported. Get AVG Anti-Spyware Free while you're at it as well):http://free.grisoft.com/doc/1
Back to your malware infections:
Run The Windows OneCare Free Scan (on-line scan)
To run the Windows One Care Free Scan
Go to Windows Live Onecare Free Scan site using Internet Explorer
It will say "Get a free PC safety scan"http://safety.live.com/site/en-us/default.htm
Make sure you click "Full Service Scan"
in the middle of the page and not the "Try It Now Free" offer on the right side.
Allow the download of a Active X components.
Choose "Complete Scan" in the window that opens
Do not click on anything else that offers you a free trial or to sign up if you live in the US.
Allow it to scan - it may take quite a while, possibly two hours or so depending on the size of your hard drive is and how fragmented your registry and drive may be.
After completing the Windows OneCare Free Scan run both Adaware and Spybot Search and Destroy from safe mode, updating each program’s malware definitions before you reboot into safe mode to scan and allowing both to fix what they find.
If you do not already have these freeware aps installed on your computer, you can get them at the following sites:
*AdAware SE: http://www.majorgeeks.com/download506.html
Spybot (in its default settings) now ignores certain products such as New.Net and Sidestep even though they are crapware. New.Net compromises the WinSock stack and spies on your Internet activity by routing all your DNS queries through the NewDotNet.DLL.
To enable detection of the above malware go to Spybot's "Settings", "Ignore products", "All products" Tab, right click on "Product", left-click on "Deselect all".
Download Spybot from:http://www.safer-networking.org/en/index.html
Be sure to enable “Teatimer” while you are setting up the program which gives you realtime protection against malware infection.
Following that that I suggest you post a “HijackThis”
log in our “Hijack This”
Logs and Analysis Forum for expert assistance with your malware infection.
Read the pinned post in our “HijackThis
Logs and Analysis” forum,
here http://www.bleepingcomputer.com/forums/t/34773/preparation-guide-for-use-before-using-malware-removal-tools-and-requesting-help/ Carefully read and follow all directions carefully.
Following the instructions create a HJT
log, and POST THE HJT LOG THAT YOU CREATED IN OUR HJT LOGS AND ANALYSIS FORUM – not in this forum
, at this link
Include the specs for your computer (i.e., what processor, amount of RAM, brand or motherboard, etc, and briefly describe that AVG found infections)Unless you are expert at editing the registry, Do not use the Hijack This program to try to fix anything by yourself as even what may seem to you to be a small mistake can hose your system and render it inoperable.
Some files when in the correct folder for them may be legitimate and necessary but in different files may be hidden malware.
A member of our expert HJT
Team will analyze your log, make recommendations and offer assistance, guiding you through the complete process necessary to disinfect your computer.
Do not delete your System Restore Points until advised by our HJT Expert to do so. They cannot reinfect your computer unless you use an infected point to "Restore" it, so just being there causes no harm.
It may take a short period of time to get a response to the log you posted because the members of our HJT
Team are kept very busy. Posting your Hijack This log anywhere but in the Hijack This Logs and Analysis forum will delay their response as it will require a moderator to move the log there before the HJT Team will see it and it will fall behind other logs posted after yours was posted, so be sure to post your log in the Hijack This Logs and Analysis forum.Please
be patient as this team is manned by volunteers. They will help you in order received as soon as possible.NOTE
Once you have posted your HJT
log, please DO NOT make any additional posts in the HJT Logs and Analysis forum thread you created until you get a response from a member of our HJT expert team, and do not make any additional changes to your system (changes, including any attempted repairs, will make your computer to be different than as represented in the log you posted and therefore make your log inaccurate).
The first criteria the HJT
Team has when looking for logs that need replies are posts showing 0 replies
. If you make an additional post, it will show as having had 1 reply
A team member, looking for a new log that requires help might well assume another HJT Team member is already assisting you and might not open the thread to respond.
So, post your HJT
Log in our HJT
Forum (not here in this forum) and wait for a response from a HJT
After you post your log, please do not make any changes to your computer. Discontinue trying to delete anything with any program as changes will make your HJT
log obsolete and waste valuable time spent by our HJT
experts analyzing the log made inaccurate by changes and therefore their plan formulated to address the problems will also be obsolete.
If after 5 days you still have gotten no response, then post a re-request and a link to your HJT log HERE. http://www.bleepingcomputer.com/forums/topic14717.htmlMake sure you post your HJT log in the HJT forum, not here, because if you post it here in this forum the response from our HJT Team will be delayed because the post will have to be moved before they see it and it will fall in line behind many others posted that same day.
If you want to continue downloading "freebies" and do not want to read every EULA, I suggest you get the following freeware ap that will help you (somewhat) avoid malware infections that are actually disclosed in the EULAs that accompany "freebie" that include malware as many if not most actually are. The companies that infect your computer while disguising their spyware actually get the user's permission to install their garbage and rely on the fact that most users will not bother to read their EULAs!
EULAlyzer™ 1.1 http://www.javacoolsoftware.com/eulalyzer.html
Edited by Enthusiast, 26 November 2006 - 07:36 PM.