Helping Malware Removal - Day.js

Hi Guys,

Im brazilian and just learning english, so excusme of some mistake that i´ll make...

well, i found some topics about it, but i think that each case is a case.Cause some them are procediments that not aply to me.
I already read READ AND RUN FIRST and im getting nervous with this virus (day.js) It appears in all, an every page i open in IE. (i dont use FF)
Im using AVAST, and after a Format, the virus still there!!!

idont know what to do anymore!! Please help with it!!

Thanks for all!!!

 

Oh..sorry!!
the message showed at pop up is

http://v.freefl.info/day.js
VBS:Malware-gen

thanks again!

 

My logs

 

one more...

 

i´m a lucky guy..han?! :cry


To tell the true, we talking about a LanHouse, a kind of store that we rent PCs for internet, and games....BUT....at the clients PCs we use DEEP FREEZE, that discart every change made..you may know better than me....

So, in the Server, we can´t use this kind of software, and is in this computer that is the problem...

I´ll try take the server to my network in home, and see what happens!!


Well, are my logs clean??

Can i wait some tips of you?! Tell me Yes please!! Im getting crazy with it!!:banghead


Thanks for the Help!!! and excuseme my english!!!

 

Ohhh sorry!! i forgot!!

I did that!
I added those urls in the restricted zone, but without success...in a first moment I opened sites without any problem..but 3 minutes later it appears again!

Please explain me what is ISP???

 

well, let me start my rap! heheheeh

I am with the server in my network at home right now...and surprise!! i dont have pop ups of virus anymore...!!

however, it is the same ISP,(becouse the principal provider around here is VELOX) but another telephone line...

i didnt understand very well that blog you
show me...becouse have some terms that i dont know yet. So...

Could you explain me better, maybe with another words??

Could my moden be infected with any virus??Is it possible?

Anyway, tomorrow i will try my moden here at home to see what happens and let you know.

Thanks a lot!!:wave

 

I am using a broad band.(DSL)

Like i asked before....Could my modem be infected?? is it possible?!

If yes, Can I change the Firmware, reset, format or anything like it?!

 

i think that you cant help me anymore....am i right?

all that i can do is talk with my ISP, and do some mre tests here to have sure about the problem...

Thanks again for the help! I would never imagine that the problem could be in the "line"!!

Any news i will post here...

thanks a lot! :wave

 

But..all equipments that i have are a moden( that works like a router) and a switch...

Today, i noticed that there is another location that the virus is.
in c:\documents and settings\temp......\day[1].js

The antivirus clean it (at least is what it shows me) but after appears again...Is the PC being infected by the "source" where is the virus? like the moden?

i dont know what to think anymore! heheheheeh!!

 

sorry.. so many question...but, if its not in the line....do you have any idea where is it coming from??

 

ok.

today i will do another test here....i will turn all computer of my network off...so i will discover if are they...correct?

thanks..see u!