About:Blank

Did you empty quarantine folders in step 0 of the READ ME? This is typically the cause of large log files like you have with Bitdefender. Just compress the Bitdefender log into a ZIP file and upload the ZIP file.

You skipped step 3 of the READ ME and this is definitely causing you problems. Either uninstall AVG of BitDefender Antivirus. Do this now!

Also you did not follow the directions in step 7 of the READ ME. You are running MSconfig to control startups and you must not do this:

O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto

Follow the directions in step 7. Do this before continuing and then attach a new HJT log.

What is the below for?
O4 - HKLM\..\Run: [LaunchPDeviceConn] "C:\Program Files\Philips\Philips Device Transfer Pop-up\PDeviceConn.exe"

 

You forgot to answer my question:

Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://mysearch.myway.com/jsp/dellsidebar.jsp?p=DE
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/mywaybiz
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dell4me.com/mywaybiz
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - (no file)

After clicking Fix, exit HJT.:

Now we need to Reset Web Settings:

1. If you have an Internet Explorer icon on your Desktop, goto step 2. If not, skip to step 3.
2. Now right click on your desktop Internet Explorer icon and select Properties. Then click the Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK. Then skip step 3.
3. If you do not have an Internet Explorer icon on your Desktop, click Start, Control Panel (for some systems it may be Start, Settings, Control Panel), Internet Options, Programs tab and then click "Reset Web Settings". Now go back to the General tab and set your home page address to something useful like www.majorgeeks.com. Click Apply. Click Delete Cookies, Click Delete Files and select Delete all Offline content too, Click OK. When it finishes Click OK.

Now reboot in normal mode and post a new HJT log.

Make sure you tell me how things are working now.

 

You forgot the last part of my previous message now (did you complete those instructions yet).

 

If you did the Reset of Web Settings while logged in as user Brian Craver , then it should be gone from that account. Do the same for the user account named test

Otherwise delete them yourself manually (but make sure browers are closed first).


What version of the below are you running?
C:\Program Files\LimeWire\LimeWire.exe

Older versions contained bundled malware.

Your log is clean. If you are not having any other malware problems, you should work thru the below link:


How to Protect yourself from malware!

 

To properly clean ALL user accounts the READ ME must be run on each user account. However, step 6 (online scanner) does not need to be run on each account. Also you will not be able to log into user accounts that are not administrator type accounts in safe mode. Thus you would have to do the steps in normal boot mode. If you then ran into a problem cleaning those accounts in normal boot mode, you would have to temporarily change the account into an administrator account so you could run any necessary steps in safe mode. The same applies to running AVG. Running on each user account is more thorough.

 

According to the below link, it may not be clean. Only LimeWire 4.9.28 was supposedly clean according to this link which is very reliable. However the link does not specifically state that it is infected. Just reading the info though should convey similar feelings to what I stated in step 10 of How to Protect yourself from malware!

Spyware Info's Clean and Infected File Sharing Programs