Pesky Malware

You did not attach the other logs in your last reply ....which we need to help you.

 

You ran AVGAntispyware and neglected to have it fix what it found.
Please run it again!

Please use add/remove programs to uninstall:
Viewpoint Media Player
J2SE Runtime Environment 5.0 Update
Re-boot and install:
Java Runtime 6

Do you know what these are:
C:\stdtsa ----->?
C:\14290921.exe ---->?
C:\399x.exe---->?
If not, delete then along with:
C:\Program Files\Ofb11

Please copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Run HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

After clicking fix, exit HJT

Now download The Avenger by Swandog469, and save it to your Desktop.

* Extract avenger.exe from the Zip file and save it to your desktop
* Run avenger.exe by double-clicking on it.
* Check the 'Input script manually' box.
* Click on the magnifying glass icon.
* Copy everything in the Quote box below, and paste it in the box that opens:

* Now click the 'Done' button.
* Click on the traffic light icon and OK the prompt.
* You will be prompted to restart, OK the prompt and your PC should reboot, if not, reboot it yourself.
* A log file from Avenger will be produced at C:\avenger.txt


Now attach new logs for:

* GetRunKey
* ShowNew
* HJT
* Avenger

Be sure to tell us how things are running.

 

IEFix:
http://www.majorgeeks.com/download4467.html

If that doesn't help try the Mcrepair Tool below.

http://download.microsoft.com/download/msninvestor/patch/1.0/win98/en-us/mcrepair.exe

Just download and run it. Be sure to answer "yes" to everything, that's important. When it's done restart your computer.


Now ...do you use the Vradio toolbar?
If not use add/remove to uninstall:
Virgin Radio Toolbar 4.0.0.20

Then run HJT and have it fix:
O2 - BHO: VRadioBar BHO - {5A074B21-F830-49de-A31B-610C4B5FACA7} - C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll
O3 - Toolbar: Virgin Radio - {5A074B29-F830-49de-A31B-610C4B5FACA7} - C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll
O8 - Extra context menu item: &Save Image to Folder - res://C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll/saveimagestofolder.html G
O8 - Extra context menu item: &Save Image to MyStuff - res://C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll/saveimages.html G
O8 - Extra context menu item: &Save Link to Folder - res://C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll/saveltof.html G
O8 - Extra context menu item: &Save Link to MyStuff - res://C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll/savelink.html G
O8 - Extra context menu item: &Save Page to Folder... - res://C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll/savepagetofolder.html G
O8 - Extra context menu item: &Save this Page to MyStuff - res://C:\Program Files\VRadioBar\bar\bin\askBar_VirginRadio.dll/savewebpage.html


Do you know what these are?
O23 - Service: WPEServ - Unknown owner - C:\Program Files\Common Files\WPE\wpeserv.exe?
C:\Documents and Settings\Keith\Application Data\.rdr.ini?


You will need to do a reg edit to remove the rest of the VRadio --->
Please copy the bold text below to notepad. Save it as fixME.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Otherwise you look good.
Tell me what is happening after the above is answered.