Need Exorcist

I am having probs with daughters XP pc. Machine was infested with virus etc prior to upgrade to sp2/IE 6. Installed McAfee Virus software and scanned several times, scanned with Adaware and Spybot, then Installed sp2 upgrade from cd. Now I cannot run IE from icon. machine is set up for dial up and connects manually to isp alright but only way to use browser is to select Windows Update from the XP control panel page (on left) then move to websites from there using web browser initiated by Update. Outlook Express works ok and can access McAfee, Norton, etc ok direct without first opening browser. I have installed Netscape with the same result - cant connect to net. It appears that something is capturing the browser as I still get pop up ads but cant go anywhere else. PC operates ok when off net. The machine is a Dell 2100 with Celeron processor, 256 m memory, XP Home os and has several games installed prior to upgrade. I have performed the steps in Getting Prepared but could not do Bitdefender and Ravantivires in safe mode because machine would not connect to net in Safe Mode, scans were done in normal mode. Bitdefender log shows two problems not corrected: Qoologic.ac and Reqlook.b.-- Ravantivirus shows no problems. Would sure appreciate any help given.

Thanks, Bob

 

Please run Panda Online Scan. After the scan attach the log to your next post. Also please follow the below:

1 - Please EXTRACT all files from Qoologic Tool to its own folder - C:\Program Files\QoologicFinder . Then, DoubleClick Find-Qoologic.bat to run the tool. It should produce a log - Please attach that with your next post!

2 - Please EXTRACT all the files form RKFiles Tool to its own folder named C:\Program Files\RKTOOL. Then, Please boot to SAFE MODE and DoubleClick rkfiles.bat to run the tool. Let it run and then, when it finishes, look for a log at C:\Log.txt and please attach that log.

Now come back here and post all three logs as attachments.

- Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post).

 

When I try to run links that you suggest I receive a message that Internet Explorer must close. I can navigate to other urls but not those.

 

Try a different browser like Mozilla Firefox

 

Thanks for assistance. I was able to recover by running ewido. Seems to be ok now but I am still cautious about a surprise.
Thanks,, Bob

 

Post a HijackThis log as an attachment. I'll take a look at it to see if there are any issues that need to be dealt with.

 

Here is log of pc. Also have a new problem --When I try to load some of daughters games back on I get the following message " C:\windows\system32\autoexec.nt. The system file is not suitable for running ms dos and microsoft windows applications. chose close to terminate or ignore to continue" . When a selection is made the installation terminates. Only happens on some games. Please let me know if attachment is received and problems with logged info.

Tnks
Bob

 

Please run the scans from Post #2 of this Thread, you have some lingering issues.

For the Autoexec.nt error follow the instructions in this POST