HT log help

I think I've finally done everything in your recommended actions (not very good at this stuff). I'm attaching a HT log (following all recommended fixes that I am fairly sure needed to be done). There are a couple of items I'm not sure about, so I need help. Especially 017 entries, but I'll take suggestions on any. I'm also attaching a startup log. Both are Word.docs

Help.

 

Well, I'm looking but can't find them (ran those Saturday, ran HT again today but not them). Should I run them again and post it?

 

OK. Here goes, again. Dialup modem, and had trouble loading both programs. When I ran BitDefender, it only left a brief log saying a couple of files were identified as infected. It was set to delete uncorrected files, so it did.

Panda identified six or seven: in the attached list, the ones with ** before them have been deleted.

I had trouble the other day attaching more than one file. I'll try to attach all files again: I'm re-sending the first ones, as text files. Let me know if they don't all show up.

Thanks for the help

 

OK. Willdo. new log to follow, prob tomorrow.
Thanx

 

When your system reboots, follow the prompts. Afterwards, HijackThis will launch. Please click Scan, and check the following items if they still exist:

Quote:
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = about:blank


I have "About: Blank" as my default homepage. Should I still delete (fix) this entry?

 

Too late: the program deleted it. But I have reset it, so no prob.

Here are the last logs/reports. Let me know what next.

thanx again

 

I'll delete the file now. Thanks for the help. It seems to be running pretty well right now, though I've not had it up much. But you won't believe it: after I finished, I went to a site I've been waiting to get to, to download a free copy of an old game I wanted to put on the computer (Jezzball). Would you believe it came with "Newdotcom" spyware included, and I had to go through the whole mess again. But I just compared the new HJlog to the one I sent you and deleted the new stuff (NOT counting the things added by the Wareout fix). Back to normal I think.

So now I can reset Restore Points and save a new one?

 

Ok, one little bug I have a question about, and I'm attaching this AMs HTlog. My Spybot keeps giving me this warning, two times in a row, each time I boot up:
1/12/2006 8:06:50 AM Denied value "{EFA24E64-B078-11D0-89E4-00C04FC9E26E}" (new data: "") added in User-specific browser toolbar!
1/12/2006 8:07:29 AM Denied value "{EFA24E64-B078-11D0-89E4-00C04FC9E26E}" (new data: "") added in User-specific browser toolbar!

Can't figure out or find what to fix. Any idea what needs to be fixed/turned on/ turned off/ whatever?

 

I just disabled Teatimer: we'll see. did the htlog look ok?

 

Ok, great. One last question...actually, two. I have winxp and it is set up with the user logon screen. Bootup is quick. When I logon, it takes forever, and if I accidentally try to run anything before the 'processes' finish, it stalls, often requiring reboot to run properly. Obviously got a lot of something running at logon: any way to reduce or eliminate this (sometimes several minute) delay?

Other question. Now that I've got this fixed, I've gotta do the same on two laptops. One is mine, running the process just to be sure (no problems). The other belongs to someone else and has virtually crashed. First indication was signs of a BHOhijacker (he didn't recognize what was happening). Now, when he boots up the first thing that happens is a series of several loud beeps before Winxp opens up, then the malware issues begin especially if he goes to the net.
Aside from the process described here for the malware issue, any idea why the beeps? Any suggestions for dealing with the laptop that might differ from what we did here?

 

Great, on both issues. Man, you've been a lifesaver. I'll be working on both things this weekend and I'll let you know how it went: will eventually post HJLogs for each, once I get there.

Thanx again