i need help with my log!

[Louiex]

ok, i put that script over combofix and it did a scan, here's the log

[PhilliePhan]

ok, i put that script over combofix and it did a scan, here's the log

Sorry I didn't get back to you sooner - was away from computer for much of the weekend.

Looks like you'll need to delete these manually:
C:\WINDOWS\Tasks\AA47513A9124C592.job
c:\docume~1\dimitri\applic~1\upload~1\One Shim Bike.exe
C:\WINDOWS\Tasks\At1.job
C:\WINDOWS\system32\sF3U8v70.exe
C:\WINDOWS\Tasks\At10.job
C:\WINDOWS\Tasks\At11.job
C:\WINDOWS\Tasks\At12.job
C:\WINDOWS\Tasks\At13.job
C:\WINDOWS\Tasks\At14.job
C:\WINDOWS\Tasks\At15.job
C:\WINDOWS\Tasks\At16.job
C:\WINDOWS\Tasks\At17.job
C:\WINDOWS\Tasks\At18.job
C:\WINDOWS\Tasks\At19.job
C:\WINDOWS\Tasks\At2.job
C:\WINDOWS\Tasks\At20.job
C:\WINDOWS\Tasks\At21.job
C:\WINDOWS\Tasks\At22.job
C:\WINDOWS\Tasks\At23.job
C:\WINDOWS\Tasks\At24.job
C:\WINDOWS\Tasks\At3.job
C:\WINDOWS\Tasks\At4.job
C:\WINDOWS\Tasks\At5.job
C:\WINDOWS\Tasks\At6.job
C:\WINDOWS\Tasks\At7.job
C:\WINDOWS\Tasks\At8.job
C:\WINDOWS\Tasks\At9.job

C:\Documents and Settings\All Users\Application Data\Jump Poll Poke Mp3


Let us know if you have any trouble with those. Also, please run a fresh ComboFix for us.

Cheers
PP

[Louiex]

PP, i deleted everything expect for "C:\WINDOWS\system32\sF3U8v70.exe"
i couldnt find it in the system32 folder, maybe it was already deleted?? i checked off show hidden files so im 100% it wasnt there. could you help me find it please.
By the way, i have a question to ask you, my automatic update button is "off"" ive tried everything to turn it back on but there's no use, i even went on my dad's account but it still wont let me touch it, maybe thats the reason why my sound doesnt work anymore? im not a computer expert so i wouldnt know.
here's the log, thanks for all your help pp!

[PhilliePhan]

PP, i deleted everything expect for "C:\WINDOWS\system32\sF3U8v70.exe"
i couldnt find it in the system32 folder, maybe it was already deleted?? i checked off show hidden files so im 100% it wasnt there...

It is very likely gone. Looks like you had some smitfraud on the machine at one time and somebody probably cleaned it. Your logs were pretty clean to begin with. You may want to try a set of logs from the other accounts?

By the way, i have a question to ask you, my automatic update button is "off"" ive tried everything to turn it back on but there's no use, i even went on my dad's account but it still wont let me touch it, maybe thats the reason why my sound doesnt work anymore?

I do not know why the sound doesn't work - could be any number of things. When did you first notice the problem?


-- As for the autoupdate, that has been altered in the registry. Let's do this:
Please download the attached file Fixit.reg to your desktop.
DoubleClick on it and Allow it to merge into the registry. Let me know if that does the trick!


-- Also, please go here ---> http://virusscan.jotti.org/ and use the Browse Button at the top of the page to navigate to C:\WINDOWS\system32\XDva031.sys and Upload it for analysis. Please Copy&Paste the results for me.


-- Also, please uninstall the following via Add/Remove Programs:
J2SE Runtime Environment 5.0 Update 10
LimeWire PRO 4.9.28 --P2P is a good way to get infected....

Then, update your Java here ---> http://www.java.com/en


I will check back as time permits.

Cheers
PP

[Louiex]

"-- As for the autoupdate, that has been altered in the registry. Let's do this:
Please download the attached file Fixit.reg to your desktop.
DoubleClick on it and Allow it to merge into the registry. Let me know if that does the trick!"

--PP, i downloaded the file to my desktop, but when i doubleclick it, an error pops up " fitit.reg is not a valid win32 application "
how can i fix that??

"-- Also, please go here ---> http://virusscan.jotti.org/ and use the Browse Button at the top of the page to navigate to C:\WINDOWS\system32\XDva031.sys and Upload it for analysis. Please Copy&Paste the results for me."

-- it wasnt able to find that file, i checked in the system32 manually, is it supose to be missing or is that a bad thing?

the only thing i got done was uninstalling java and limewire, and i installed the new java.

hope to hear from you soon PP, see yea.

[Louiex]

oo i forgot the logs from my dad's account, here you go.

[PhilliePhan]

PP, i downloaded the file to my desktop, but when i doubleclick it, an error pops up " fitit.reg is not a valid win32 application "
how can i fix that??

People seem to be getting a lot of those errors when I try these registry merges lately.
Are you able to click Start > Run > type regedit and click OK. Are you able access the registry?
* If you ARE able to access the registry, don't do anything yet!
-- Have you navigated the registry before?

it wasnt able to find that file, i checked in the system32 manually, is it supose to be missing or is that a bad thing?

Probably not a bad thing unless that it is gone - if indeed it is gone and not stealthed in some way. . . I may well have been removed at an earlier time.

-- Your Uninstall list is awfully abbreviated - I expect to see a whole lot more there. Does it match when you open Administrator account and look in Add/Remove Programs?


PP

[Louiex]

People seem to be getting a lot of those errors when I try these registry merges lately.
Are you able to click Start > Run > type regedit and click OK. Are you able access the registry?"

yes i was able to access the registry, i see 4 folders.

Your Uninstall list is awfully abbreviated - I expect to see a whole lot more there. Does it match when you open Administrator account and look in Add/Remove Programs?

what do you mean a whole lot more? like what? am i missing anything important?? well i think my dad has a few more stuff on his account, why tho?

by the way, do you have any good anti virus programs?? or should i stick with avast??

thank you for your time,
Louie.