rmurphy

Can you report the Kaspersky log if you still have it? Something along the way corrupted it, and I can't really work with it the way it is. -Ryan

== Remove Programs == Please go to Add/Remove Programs in the Control Panel, and remove the following programs J2SE Runtime Environment 5.0 Update 7 J2SE Runtime Environment 5.0 Update 9 Java™ SE Runtime Environment 6 Update 1 LimeWire 4.16.7 Reboot your computer. == Install Latest Java == Please go to THIS page, and click on the Download link that is in the Java Runtime Environment (JRE) 6 section. Click the radio button next to Accept License Agreement after reviewing it. The page will refresh - this is normal. Download the Windows Offline Installation, Multi-language. You will want to save

A slow computer does not always mean malware. Since neither the HJT log nor the MBAM log are showing any traces, I believe that this is the case with your computer. For information on how to fix a slow computer, see http://users.telenet.be/bluepatchy/miekiem...owcomputer.html For information on how to stay uninfected in the future, read Infection Prevention Do you have any other questions or concerns? This thread will be left open for a few more days, so feel free to ask. -Ryan

Let's get an antivirus installed since I didn't see one, and see if a boot time scan reveals anything. == Install avast! 4 Home == Download Avast! 4 Home and get your free Registration Key. Install avast!, and restart your computer if needed. == Update avast! == Right click on the a in the taskbar and select Updating, then select Program. Avast! will tell you when it has completed the update. If core files were updated, you may get a message asking you to restart. Please allow the computer to restart if prompted. == Schedule a Boot-Time Scan == After you have updated avast! right click the

1. Please open Notepad Click Start , then Run Type notepad .exe in the Run Box. 2. Now copy/paste the entire content of the codebox below into the Notepad window: 3. Save the above as CFScript.txt 4. Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. This will start ComboFix again. 5. After reboot, (in case it asks to reboot), please post the latest ComboFix report. -Ryan

try wrapping your response in [quote][/quote] tags. -Ryan

If you have not yet run combofix, please download a new copy before proceding, and use the following as the script: The rest of the instructions regarding it remain the same. -Ryan

Please go to UploadMalware to upload a suspicious file for analysis. Enter your username from this forum Copy and paste the link to this thread In the first box for files to submit, copy and paste the following: C:\PROGRA~1\COMMON~1\ffki\ffkim.exe In the comments, please mention that I asked you to upload this file Click on Send File 1. Please open Notepad Click Start , then Run Type notepad .exe in the Run Box. 2. Now copy/paste the entire content of the codebox below into the Notepad window: 3. Save the above as CFScript.txt 4. Then drag the CFScript.txt into ComboFix.exe as depicted

Can you attach it to a post? -Ryan

Well, if you live in the Ukraine, go to http://whatmyip.com and PM me the number that it says is your IP address. If you don't live in the Ukraine, let me konw, since that is enough of an answer. -Ryan

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.

Please redo the instructions at http://www.besttechie.net/forums/index.php...st&p=113160 (including downloading Combofix and post the latest ComboFix report. -Ryan

Rereun the OTMI2 instructions, this time pasting in the following: C:\Documents and Settings\dcomito\My Documents\s?stem\ /u Once you've done that, please complete the following: == Clear Temporary Files == Please download ATF Cleaner by Atribune. This program is for XP and Windows 2000 only Close all Internet Explorer, Firefox, and Opera windows before continuing. Double-click ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. If you use Firefox browser Click Firefox at the top and choose: Select All Click the Empty Selected button. NOTE: If you

Since the MBAM log was clean, and nothing in the HJT log is malicious, I think its safe to say that your problem isn't malware related. I would make a thread in the Windows forum about this issue. Tell them that you've been through the malware forum, and that your copmuter is clean. -Ryan

Open HiJack This and run a scan. Place a check against each of the following, making sure you get them all and not any others by mistake: O2 - BHO: (no name) - {072D5F0C-CA1D-4B87-A4C2-348F0089458C} - (no file) O2 - BHO: (no name) - {10BFF6B2-7553-43BD-9C93-6DC96E4C1DE5} - C:\WINDOWS\system32\hgGxyVPG.dll (file missing) O2 - BHO: (no name) - {1B582B8C-433A-4420-ACA8-F768D313B0EB} - (no file) O2 - BHO: (no name) - {3D37CBC8-5D26-07D0-0214-5200CECCDBBB} - C:\WINDOWS\system32\rsmaeztl.dll (file missing) O2 - BHO: (no name) - {451CED79-11D8-4D6C-B3DA-96E43AF65533} - C:\WINDOWS\system32\opnmMecc.d

Hi there, and welcome to BestTechie! I'm Ryan, and I'll be helping you clean your computer. Please download Malwarebytes' Anti-Malware from Here or Here Double Click mbam-setup.exe to install the application. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version. Once the program has loaded, select "Perform Full Scan", then click Scan. The scan may take some time to finish,so please be patient. When the scan is complete, click OK, then Show Result

Hi there, and welcome to BestTechie! I'm Ryan, and I'll be helping you clean your computer. Please download Malwarebytes' Anti-Malware from Here or Here Double Click mbam-setup.exe to install the application. Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish. If an update is found, it will download and install the latest version. Once the program has loaded, select "Perform Full Scan", then click Scan. The scan may take some time to finish,so please be patient. When the scan is complete, click OK, then Show Result

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread. Everyone else please begin a New Topic.

Let's see if a boot time scan reveals anything. == Install avast! 4 Home == Download Avast! 4 Home and get your free Registration Key. Install avast!, and restart your computer if needed. == Update avast! == Right click on the a in the taskbar and select Updating, then select Program. Avast! will tell you when it has completed the update. If core files were updated, you may get a message asking you to restart. Please allow the computer to restart if prompted. == Schedule a Boot-Time Scan == After you have updated avast! right click the a icon in the taskbar and click Start Avast! AntiVirus.

Only thing I noticed was having a few old versions of Java installed. == Remove Programs == Please go to Add/Remove Programs in the Control Panel, and remove the following programs J2SE Runtime Environment 5.0 Update 6 J2SE Runtime Environment 5.0 Update 9 Java 2 Runtime Environment, SE v1.4.2_03 Java™ 6 Update 3 Reboot your computer. == Install Latest Java == Please go to THIS page, and click on the Download link that is in the Java Runtime Environment (JRE) 6 section. Click the radio button next to Accept License Agreement after reviewing it. The page will refresh - this is normal. Download

What browser are you using when you get that warning? Is it a toolbar that is giving the warning? If possible, can you post a screenshot of it? Let's take a look at an uninstall list and see if anything is there that wasn't showing in the other logs. To obtain an Uninstall list. Open HijackThis, click Config, click Misc Tools Click "Open Uninstall Manager" Click "Save List" (generates uninstall_list.txt) -Ryan

Those both look good. How's the computer running? -Ryan

There should be a save button, click that, and when it asks where to save it and as what name, there should be an option for save as filetype. CLick there, adn select as text. -Ryan

== Clear Temporary Files == Please download ATF Cleaner by Atribune. This program is for XP and Windows 2000 only Close all Internet Explorer, Firefox, and Opera windows before continuing. Double-click ATF-Cleaner.exe to run the program. Under Main choose: Select All Click the Empty Selected button. If you use Firefox browser Click Firefox at the top and choose: Select All Click the Empty Selected button. NOTE: If you would like to keep your saved passwords, please click No at the prompt. If you use Opera browser Click Opera at the top and choose: Select All Click the Empty Selected button. NO

1. Please open Notepad Click Start , then Run Type notepad .exe in the Run Box. 2. Now copy/paste the entire content of the codebox below into the Notepad window: 3. Save the above as CFScript.txt 4. Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. This will start ComboFix again. 5. After reboot, (in case it asks to reboot), please post the following reports/logs into your next reply: Combofix.txt A new HijackThis log. -Ryan