So my boyfriends computer was having problems and I downloaded this program onto it to help. It located several viruses or malware, or something... I saved the report, I will post it once I can get to it.

--------

Edit:I have now attached the report.

....Why isn't the attachment showing? I made it a txt file

AntiVir.txt
Description:	AntiVir Report	Download
Filename:	AntiVir.txt
Filesize:	16.24 KB
Downloaded:	18 Time(s)

Hi DemonSummonerZ,

Your attachment has loaded just fine.

I'll get back to you as soon as I've had a chance to read it!

Wow - that's quite a collection of nasties you've picked up there!

I suggest you do the following:-

1) To start with you should disable system restore, as per here:- http://www.bleepingcomputer.com/forums/tutorial56.html

2) Then clear out all your temp files, and the easy way to do that is by downloading CCleaner from here:- http://www.ccleaner.com/
Before running CCleaner you should configure it by clicking 'Options'/'Advanced' and unticking the box 'Only delete files in Windows Temp folders older than 48 hours'.

3) Finally you should go into Safe Mode; see here:- http://www.bleepingcomputer.com/forums/tutorial61.html

and do a full system scan with your AV (which you should update beforehand to ensure you are using the latest definitions).

For this scan it would be better to configure AntiVir to search 'All files' (rather than just 'Program and macro files'). You do this by clicking 'Scan Settings'/'Search' and selecting 'All files'. Also ensure that it is set to search 'Archives'.

Allow AntiVir to delete what it finds.

Since you've got a lot of spyware related malware, I also suggest you D/L a trial version of Ewido from here:- http://www.ewido.net/en/download/
You should confgure it by clicking 'Scanner'/'Settings' and tick all the boxes, then go into 'safe mode' to do a complete system scan. After the scan a button will appear for you to save a scan report - you should click that, so you can post the results.

You should also D/L AdAware SE Personal Edition from here:- /downloads-cat-14.html
Again do a full system scan in 'safe mode'.

You should make sure you update the definition file of both Ewido and AdAware before scanning with them.

After you've done all that, I would advise doing an online scan at one of the following sites:-

http://www.kaspersky.com/service?chapter=161739400

http://www.bitdefender.com/scan8/ie.html

http://housecall.trendmicro.com/

If you still find you have things you cannot shift, please post the full and exact filepath together with the precise name of the malware given by the scanner that finds it.

Hi bpm3k,

Are your browser settings on medium?

Allowing Java?

Where do I find this "disable system restore" thing......

Hmm... I also don't see the attachment. I'm browsing with Opera and MSIE + java and don't see the attachment. Silly.

That bleeping computer site won't keep me logged in, why?

I'm sorry you can't get to the link I gave - for me it works O.K.; try this link instead:- http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001111912274039?OpenDocument&src=sec_doc_nam

If you can't get to that site either, will you please check the contents of your Hosts file by navigating to c:\windows\system32\drivers\etc\hosts
(that is for XP Home). You would have to open this in Notepad to read it. If you have never altered it before, it should just comprise of a preamble (with # signs in front of each line) followed by:-

127.0.01 Localhost

If you have a list of items following this entry please let me know.

Can you get to the Bleeping Computer tutorial on booting into 'safe mode'? If not try this:- http://service1.symantec.com/SUPPORT/tsgeninfo.nsf/docid/2001052409420406?OpenDocument&src=sec_doc_nam

It is essential you do your cleaning in safe mode, or else the procedure will not work.

okay so i scanned antivir in safe mode and saved the report, i couldn't scan with edwido because it took forever to download and stopped, this computer is on a 56k sadly enough.

I went to bitdefender and saved that report, it said it couldn't disinfect but it deleted the file

Bitdefender.txt
Description:		Download
Filename:	Bitdefender.txt
Filesize:	441 Bytes
Downloaded:	14 Time(s)

antivir2.txt
Description:		Download
Filename:	antivir2.txt
Filesize:	5.47 KB
Downloaded:	15 Time(s)

You only disinfect important files that have some 'bad' code inserted into them; that means cleaning out the bad bits while leaving the rest. But you never disinfect pure malware files, they should be deleted - so what BitDefender did is the right thing to do.

Unfortunately you have not included the relevant portion of the BitDefender report, so it is not apparent whether it deleted the 5 bugs it found - so I will take your word for it that they are now all gone!

Nor have you included the correct AntiVir log - what I need to see is the log with all the details of the files scanned together with the statistics at the end; exactly the same as the fisrt log you posted. So, please will you check through the AVWIN#.logs in the location C:\Program Files\AVPersonal\Logfiles to find the correct one. I'd better warn you that these logs quickly become overwritten, so if it is lost you would have to scan again to produce another one.

At the moment I simply do not know exactly how well the cleaning process has gone; though judging from the BitDefender report things are much better than they were!

okay I think I found it, at the end of the scan it said there were a certain amount of warning messages and /1/ detection, so this report looks correct.

AVWIN01.txt
Description:		Download
Filename:	AVWIN01.txt
Filesize:	12.24 KB
Downloaded:	15 Time(s)