Another plea for help

Some nasty thing on my computer is preventing me from updating any virus or spyware definition files, accessing windows update, and is blocking my access to internet options. Online virus scans don't work either.

I have tried to follow the "READ ME FIRST" section, but can't even get through downloading and installing all the tools. I have Adaware installed, but it won't update. Any other tool I download and try to install gives an error that says the file is corrupted. I can't even install them in safe mode.

I currently have the Cox Communications free security suite installed.

I'm sure you folks can help me. I've attached the HJT logfile.

 

Then please move on to running ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal Make sure you check every version numbers and get all updates. This hopefully will clean out anything else you may have lurking based on the previous problems with your computer.

- Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.


After doing ALL of the above if you still have a problem:

- Download HijackThis 1.99.1

- Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

- Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file.

- Before running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

- Run HijackThis and save your log file.

- Post your log as an ATTACHMENT to your next message. (Do NOT copy/paste the log into your post).

-Icelander

 

I have completed all instructions in the "READ ME FIRST" except that I cannot execute the online scans from Trend Micro and Symantec. Neither scan will execute due to the infection on my computer. I've tried running both versions of the Trend Micro scan from IE and Firefox w/ no luck.

I am also unable to get network access in Safe Mode to run them. I continued on with the rest of the steps after failing to run the online scans, but did not find any malware/viruses.

Adaware did find that the malware I have keeps disabling my abiltity to access task manager, regedit, and internet options. I've tried fixing these entries in HJT, but they return even without a reboot or log off/on.

I have attached an HJT log and the results of the Adaware scan.

 

I am still just learning to read HJT logs but I would certainly fix the following:

O7 - HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1

Not sure about this:

O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
Do not fix this one unless told by someone else more experianced than me!

Try that and see what happens

Good luck

 

Yeah, wasnt sure about the 06.

Im getting better at reading HJT logs

 

I agree that I should fix those entries...however, whatever is on my computer is what is putting those entries in the registry to prevent me from changing settings...

Every time I try to fix them, they return. And that happens without me even logging off or rebooting. Additionally, I cannot download or run any installation programs (i.e. Ad-aware, spybot, etc.). I had to download them on a clean computer and burn them to disk in order to install them on the infected machine.