Did the Read-me...

Hello all,

last year around this time I thought i have removed some viruses/malware from my pc. Around November, I got the same problems back after searching for the best youtube videos on a search engine (not youtube.com...I was bored). I tried fixing the problems, which were [noticeably] frequent IE popups when running firefox and now a slow startup, for awhile, but I didn't and then stopped trying for awhile, which is bad since it's been around 10 months. I did the Read-me and this time I want to be sure I'm rid of all the malware and such, hence my post. When running the scans, the Super Antispyware resulted in a blue screen. Thanks for all the help.

 

Super Anitspyware log

 

Since scanning I've been to this site, gmail, google and that spike tv network website (which is the cause for most of my concern). I realized after that I probably shouldn't be using the internet except for this site. If I've compromised the scans, let me know and I'll do them again. Note: not trying to bump this, I would have just edited a post if I were within the half hour limit, however if this is seen as one then I'll just wait.

 

I don't know which lines to select in HijackThis because the quote box is empty...

So I deleted C:\WINDOWS\SmVhbm5lIFByb3Zvc3Q (it was empty), and that's as far as I got so far.

 

Here it is

 

I couldn't remove Windows Messenger, I chose 'Uninstall windows messenger' and I received an error-message: "Run-time Error '429': ActiveX component can't create object"

Also, I already created a fixME.reg file, so do you want me to replace the old one with this one or choose a different name?

In msconfig, there's a smax4pnp and a hkcmd...those ok? There's also Microsoft Office in the startup, which seems weird, with command C:\PROGRA~1\MICROS~4\Office\OSA9.EXE -b -l
I dunno, it just seems odd. Sorry for all the questions.

I don't know if it matters at this point, but previous scans had come up with Smitfraud-C.Coreservice (or something to that effect) and I think a virtumonde virus. I only bring this up because of how hard they seem to be to remove, and I want to make sure they're gone without having done extra scans at this point.

Startup may be a bit slow still, but other than that, things seem ok.

 

I appreciate all the help I've received...however now I ask you quickly look over the scan logs again...I was stupid and hadn't checked back here in awhile, I hadn't used the computer in awhile either, and since then the computer had been used and picked up some virtumonde thing (found it with superantispyware and did some of the other scans [don't think combofix displayed a disclaimer). Then after someone did some google searching, I ran all of the scans again, and they seem to be clean...but I want to make sure before continuing to the final steps (which I'll do in a timely fashion this time)...thanks for all the help, and sorry for the annoyance. After this I shouldn't be bothering you anymore.

 

here's the last one (saved it to the desktop)

 

Wow I've been gone awhile
Due to a winsoc error I got rid of the antivirus and firewall in trying to fixing it, and now only have online armor (which I disabled today to run combofix since that caused the error last time). Since then I've had possible issues, hence the combofix, mgtools, malwarebytes, and superantispyware scans (forgot to run spybot).

Anyways, I'm set to reactivate it and get something like comodo for antivirus as soon as I know I'm good in which case I'll really be out of your hair for I'll take extra-precaution and have all teh recommended security and whatnot.

I ran malwarebytes twice because the first it had five detections (registry things in the microsoft folder...probably not too good) and upon restart to finish removing them something came up saying I didn't have permission for something (sorry for the lack of specifics), so thats when I disabled my firewall and ran it again, but that time it didn't find anything (I'm attaching both logs in a post after I post this).

So without further delay, mind one more once over of the logs?

 

malwarebytes

 

Cool, thanks muchly