Help request, please

Yes that is what the READ ME indicates you should do.

Run AVG Antispyware first and fix all that it finds. Save a log.

Then get new logs from the below if you had already run them:

• GetRunKey - make sure you have the current version from the READ ME
• ShowNew - make sure you have the current version from the READ ME
• HJT

Attach all 6 logs requested:

• AVG Antispyware log - ONLY IF NEEDED you were not able to run CounterSpy. - only for Windows XP, 2K, & NT users
• Bitdefender - from step 6
• Panda Scan - from step 6
• runkeys.txt
• newfiles.txt
• HijackThis

 

Not right now. When I see your logs I will know better what to run next.

 

Please complete the instruction in steps 2 & 3 of the READ ME and then attach new logs from ShowNew, GetRunKey and HJT.

 

Also uninstall Viewpoint Media Player as requested in step 0 of the READ ME.


Also uninstall the below old versions of Sun Java as requested in step 6 of the READ ME
J2SE Runtime Environment 5.0 Update 10
J2SE Runtime Environment 5.0 Update 5

Make sure you reboot after uninstalling the above!

After reboot, now install the current version of Sun Java from: Sun Java Runtime Environment

 

You HJT log was from safe boot mode and we they must be from normal boot mode. However before attaching a new one. Let's fix a few things which include so left overs from McAfee that did not get removed.

• Click on Start, then Run ... type services.msc into the box that opens up, and press 'OK'.
• On the page that opens, scroll down to McAfee Application Installer Cleanup (0159931185765296)
• then right click the entry, select Properties and press Stop Service.
• When it shows that it is stopped, next please set the Start-up Type to 'Disabled'.
• Now repeat the above to Stop and Disable the below two Services (if you do not find them or get any errors, just continue):
  • McAfee Real-time Scanner
  • McAfee SystemGuards
• Click OK until you get back to Windows.

• Next, run HJT, but instead of scanning, click on the None of the above, just start the program button at the bottom of the choices.
• At the lower right, click on the Config button
• Then click the Misc tools button
• Select Delete an NT Service
• Copy/paste 0159931185765296mcinstcleanup into the box that opens, and press OK
• If you receive any error messages just ignore them and continue.
• Now repeat the above to delete the below two Services (if you do not find them or get any errors, just continue):
  • McShield
  • McSysmon
• Now exit HJT but do not reboot when it tells you it needs to. We will do that further down after running HJT again to fix some other items.

Run HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - Global Startup: $McRebootA5E6DEAA56$.lnk = C:\WINDOWS\system32\cmd.exe
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) -

After clicking Fix, exit HJT.

Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it
double click it and allow it to merge with the registry.

Now reboot your PC.

And delete the below folder if found:
C:\Program Files\McAfee

Now attach the below new logs and tell me how the above steps went.

1. GetRunKey
2. ShowNew
3. HJT

Make sure you tell me how things are working now!

 

Do this one again and as I said before, Ignore error messages and continue. Even though it is stopped, try disabling it again and then move on to the next part with HJT to Delete the Service. If it still fails to rmove the below O23 line from your HJT log:

O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing)


Then try running this: McAfee Consumer Product Removal Tool


Attach a new HJT log afterwards.


What do you mean Windows Explorer does not work? Explain exactly what happens. Your remaining problems (actually even your starting problems too) may not be due to malware.

Can you uninstall the old Java versions now?

 

Not really and your problem with uninstalling may be a Windows OS issue. You could try the below but it may not work:

Your Uninstaller! 2006

This also indicates possible problems in the Windows OS.

I recommend that you uninstall all Symantec/Norton software right now while we are working on this PC. It could even be part of your problems. MAKE SURE it all uninstalls by looking at your HJT log and a new ShowNew log afterwards. Verify that all signs of Symantec/Norton and Live Update are gone. Removing Norton can be as difficult as removing malware. You may need to run the below tool.

Norton Removal Tool (SymNRT)

Do not try to install any other antivirus application until you get all of Norton removed. You saw how bad things were with both McAfee and Norton installed to begin with.

 

Use Your Uninstaller to uninstall Viewpoint Media Player

A recovery disk may not be very useful other than to put you back into the same state the PC was delivered in. You need a real Windows XP CD. That way you could run sfc /scannow from a command prompt and have it replace any missing or corrupted system files. You could try running that anyway, but if it asks for the Windows XP CD, it means it found problems and needs the CD to fix them.

 

You could also try the below to see if it helps with Windows Update but beyond this you will have to work this problem in the Software Forum.

Copy the contents of the below Quote Box into Notepad. Then click File and then Save As. Change the Save as Type to All Files. In the File Name field enter C:\WinUpFix.cmd and then click save. This will create the WinUpFix.cmd file in the root folder of drive C.

Now while you can directly run the WinUpFix.cmd file by double clicking on it, that will not allow you to see any errors if any do occur. So a better method is to run it from a command prompt window. Click Start, Run, and enter cmd and click OK. This opens the command prompt window. In the command prompt window type the following lines each followed by the enter key:
cd c:\
WinUpFix.cmd

Write down any error messages if you get any, and post them back in your next message in your original thread. Post the exact word for word message. You do not need to write down the success messages which will be output as the script runs. Only note any failures.

If you do not get any error messages, check to see if Windows Update works now.

 

You did not have any malware since your first message. Nothing we were doing was related to malware removal. So yes you should now get your PC properly protected by following the steps in the below link:

How to Protect yourself from malware!

One other thing I have seen people say resolved the same problem is installing the below. I don't know if it will fix your issue or not.

http://www.microsoft.com/downloads/details...&DisplayLang=en

If that does not help, you could also check the below out:

http://wiki.castlecops.com/Windows_Update_Fix

They include an WUFix.zipfile which attempts to fix it automatically.

 

Yes and that is very bad thing to do. It causes immediately problems with inability to properly provide system security and in the long run, it can cause many other issues. More than likely it even caused your problem with getting connected since they were fighting against each other. Step 3 in the READ ME exists because having multiple AV's installed does the opposite of providing more security.

WildTangent is not a major issue but you really don't want it. Some people refuse to remove it because they play all of those games from WT. That is a bad idea but some people just don't want to listen. Like all the poker addicts who allow all those online poker sites to put all kinds of garbage (including malware) on their PCs, and this really goes contrary to keep you financial info secure.