comp infected please help

melmar_2

am i all clear now please,
May i ask one last favour (well 2 actually) when i turn my computer on Delivery Manager always pops up and Windows Installer and comp seems to be slow starting up is their anyway i can get rid of these,please
Plus what security is the best kapersky which as run out or a free one like Avira etc
and a big thank you to you all.

aliEnRIK

Please run a FULL scan with malwarebytes

melmar_2

results of full Mawarebytes scan;
Malwarebytes' Anti-Malware 1.44
Database version: 3751
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

17/02/2010 18:50:35
mbam-log-2010-02-17 (18-50-35).txt

Scan type: Full Scan (C:\|D:\|E:\|F:\|)
Objects scanned: 234624
Time elapsed: 1 hour(s), 3 minute(s), 43 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

aliEnRIK

TICK and FIX these in hijack this ~
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = http=127.0.0.1:5555
O3 - Toolbar: (no name) - {8B68564D-53FD-4293-B80C-993A9F3988EE} - (no file)
O4 - HKCU\..\Run: [Livestation] C:\Program Files\Livestation\AppStart.exe -nosplash -systemstartup
O4 - Global Startup: VAIO Action Setup (Server).lnk = ?
O8 - Extra context menu item: &Search - http://bar.mywebsearch.com/menusearc...p=ZBzeb032YYGB
O8 - Extra context menu item: Search with Freeserve - res://C:\PROGRA~1\FREESE~1\FSBar\FSBar.dll/VSearch.htm
O8 - Extra context menu item: Search with Wanadoo - res://C:\PROGRA~1\Wanadoo\WSBar\WSBar.dll/VSearch.htm
O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
O16 - DPF: {4D561B31-49A0-4E2C-8AFF-353468EC669B} (GreasyPalmInstallHelper Class) - http://www.greasypalm.co.uk/bho/update/GreasyPalm.cab
O16 - DPF: {B020B534-4AA2-4B99-BD6D-5F6EE286DF5C} - https://a248.e.akamai.net/f/248/5462...l/SymDlBrg.cab

melmar_2

hi rik done that but couldnt find O4 - HKCU\..\Run: [Livestation] C:\Program Files\Livestation\AppStart.exe -nosplash -systemstartup
at all, have been looking at microsoft security essentials while i was waiting,
please tell me i havent done anything wrong i uninstalled it before removing the items you posted.
i am really sorry if i have caused another problem

aliEnRIK

No no

Id say your good to go

(Though you could do with a bit of a clean out, theres loads of things running that dont really need to be)

melmar_2

Thanks Rik,would you mind telling me what sort of things that are running that dont need to be

aliEnRIK

Download CCLEANER
http://www.ccleaner.com/download/builds/downloading-slim
Run the CLEANER scan (UNTICK 'cookies')
Then run the REGISTRY scan (Backup the registry when it asks)

Then goto TOOLS and STARTUP

If any of these appear then you can DISABLE them from starting up ~

mDNSResponder.exe (itunes connection)
giga pocket\shwserv.exe (Some sony connection?)
Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Probably have to be disabled in 'services')
Logitech\Video\LogiTray.exe
BTHelpNotifier.exe
Yahoo!\Search Protection\SearchProtection.exe (Id uninstall this)
Windows Live\Messenger\MsnMsgr.Exe (Go into the programs options to stop it starting with windows)
[QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
[btbb_wcm_McciTrayApp] C:\Program Files\btbb_wcm\McciTrayApp.exe
[YSearchProtection] "C:\Program Files\Yahoo!\Search Protection\SearchProtection.exe"
[kdx] C:\WINDOWS\kdx\KHost.exe -all
[Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - Global Startup: BT Broadband Desktop Help.lnk = C:\Program Files\BT Broadband Desktop Help\bin\matcli.exe


Uninstall ~
YAhoo toolbar
MSN toolbar
Live toolbar

All these can be FIXED if you dont really bother with them ~
O16 - DPF: Yahoo! http://download.games.yahoo.com/game...ts/y/ct2_x.cab

These ive missed and should be fixed ~
O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} - http://us.dl1.yimg.com/download.yaho...tocomplete.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp3_mp3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab

melmar_2

Thanks Rik will do cant tell you how much i appreciate all your help and that includes Reluctant_spender, fiddiwebb, andy- thank you all.
melmar

Reluctant_spender

I would suggest that you visit Secunia Inspector - it is free and will scan you computer for the main out of date programmes - Adobe reader, Quicktime, Java etc.... http://secunia.com/vulnerability_scanning/online/

Also visit Microsoft Update and download all critical updates.