Yes. Then, please run another full scan and post a log.

Hello,

Just an update:

I've quarantined and deleted the detected files/object
At the moment i'm in the proccess of running another scan - when complete i will post the log

Thanks
Thank you for your help so far its very appreciated

Malwarebytes' Anti-Malware 1.44
Database version: 3759
Windows 6.0.6002 Service Pack 2
Internet Explorer 8.0.6001.18882

19/02/2010 07:11:44
mbam-log-2010-02-19 (07-11-44).txt

Scan type: Full Scan (C:\|D:\|)
Objects scanned: 360135
Time elapsed: 3 hour(s), 16 minute(s), 37 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Please do a scan with Kaspersky Online Scanner

Click on the Accept button and install any components it needs.

• The program will install and then begin downloading the latest definition files.
  
• After the files have been downloaded on the left side of the page in the Scan section select My Computer.
  
• This will start the program and scan your system.
  
• The scan will take a while, so be patient and let it run.
  
• Once the scan is complete, click on View scan report
  
• Now, click on the Save Report as button.
  
• Save the file to your desktop.
  
• Copy and paste that information in your next post.
  

Here's what the Kaspersky scan produced



--------------------------------------------------------------------------------
KASPERSKY ONLINE SCANNER 7.0: scan report
Saturday, February 20, 2010
Operating system: Microsoft Windows Vista Home Premium Edition, 32-bit Service Pack 2 (build 6002)
Kaspersky Online Scanner version: 7.0.26.13
Last database update: Friday, February 19, 2010 17:35:22
Records in database: 3588395
--------------------------------------------------------------------------------

Scan settings:
scan using the following database: extended
Scan archives: yes
Scan e-mail databases: yes

Scan area - My Computer:
C:\
D:\
E:\
F:\
G:\
I:\
J:\
K:\

Scan statistics:
Objects scanned: 215349
Threats found: 4
Infected objects found: 12
Suspicious objects found: 0
Scan duration: 05:01:08


File name / Threat / Threats count
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\16\78fcee10-394b2cbb Infected: Trojan-Downloader.Java.OpenConnection.at 1
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\27\78b51b5b-44e744d1 Infected: Trojan-Downloader.Java.Agent.ab 1
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\38\67df4166-2ae82823 Infected: Trojan-Downloader.Java.OpenConnection.at 1
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\41\21fbc0a9-607c4419 Infected: Trojan-Downloader.Java.Agent.ap 3
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\53\6b1fa575-76e7557f Infected: Trojan-Downloader.Java.Agent.ap 3
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\1fa126b9-28b7c224 Infected: Trojan-Downloader.Java.Agent.ao 1
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\32952e79-2904d667 Infected: Trojan-Downloader.Java.Agent.ab 1
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\4839f1b9-231fdd5c Infected: Trojan-Downloader.Java.OpenConnection.at 1

Selected area has been scanned.

Let's try one more here...

Please run a free online scan with the ESET Online Scanner

• Tick the box next to YES, I accept the Terms of Use
  
• Click Start
  
• When asked, allow the ActiveX control to install
  
• Click Start
  
• Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  
• Click Scan (This scan can take several hours, so please be patient)
  
• Once the scan is completed, you may close the window
  
• Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  
• Copy and paste that log as a reply to this topic
  

Hello.

ok the ESET scan has started.

I just wanted to ask you a question regarding my situation with my computer which is that I wanted to know how long do you think that it will take for my computer to be running virus-free; just out of curiousity


Thanks

Very soon, actually.

ok that sounds very good and nice.

also just wanted to ask you a question related to your job; i read on your profile that your based in america ohio i think and your aged 20; i just wanted to say your a very clever person to have these kind of skills at this age and what do you get out of helping poeple also just out of curiosity

you dont have to answer if you dont want to

cheers

Oh, thanks. All I have gotten was about $50 USD so far.

I also work at two other websites and am developing an antivirus company.

hopefully you will get more money

The antivirus company also sounds good and hopefully will be very successful for you.

Hello,

The ESET ONLINE scanner has finished running and it detected 2 infected files and cleaned them.
What should I do to the 2 files because the 2 provided options are;
-unistall the files
-delete quarantined files

I've just clicked the finish button as instructed by you as you and went to the ESET folder and it had a log file which contained the following:
ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK


Also how do I produce a log of the scan because i can produce a log of the 2 infected files which is pasted below; so could you please instruct me on what to do next.

C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\1fa126b9-28b7c224 probably a variant of Java/TrojanDownloader.Agent.AB trojan cleaned by deleting - quarantined
C:\Users\Hussains\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\57\32952e79-2904d667 probably a variant of Java/TrojanDownloader.Agent.AB trojan cleaned by deleting - quarantined


Thanks

No biggie.

To manually create a new Restore Point

• Go to Control Panel and select System and Maintenance
  
• Select System
  
• On the left select Advance System Settings and accept the warning if you get one
  
• Select System Protection Tab
  
• Select Create at the bottom
  
• Type in a name i.e. Clean
  
• Select Create

Now we can purge the infected ones

• Go back to the System and Maintenance page
  
• Select Performance Information and Tools
  
• On the left select Open Disk Cleanup
  
• Select Files from all users and accept the warning if you get one
  
• In the drop down box select your main drive i.e. C
  
• For a few moments the system will make some calculations
  
• Select the More Options tab
  
• In the System Restore and Shadow Backups select Clean up
  
• Select Delete on the pop up
  
• Select OK
  
• Select Delete

You are now done

To remove all of the tools we used and the files and folders they created, please do the following:
Please download OTC.exe by OldTimer:

• Save it to your Desktop.
  
• Double click OTC.exe.
  
• Click the CleanUp! button.
  
• If you are prompted to Reboot during the cleanup, select Yes.
  
• The tool will delete itself once it finishes.
  

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

==

Please download TFC by OldTimer to your desktop

• Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  
• It will close all programs when run, so make sure you have saved all your work before you begin.
  
• Click the Start
  button to begin the process. Depending on how often you clean temp
  files, execution time should be anywhere from a few seconds to a minute
  or two. Let it run uninterrupted to completion.
  
• Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.

==

Download Security Check by screen317 from SpywareInfoforum.org or Changelog.fr.

• Save it to your Desktop.
• Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
• A Notepad document should open automatically called checkup.txt; please post the contents of that document.

Hello,

I ran the TFC by OldTimer and it stopped responding so I ctrl+alt+delete and started task manager and logged off and restarted the computer and when it came to the desktop it had these ghost files such as pictures and others so I just ran teh TFC by OldTimer again and it worked this time and restarted the computer itself but after the restart the ghost type files were still there;so i deleted them by placing them in the recycle bin and emptied the recycle bin. Also should I delete the TFC software or keep it and also the Security Check software ?

Thanks

Results of screen317's Security Check version 0.99.1
Windows Vista Service Pack 2 (UAC is enabled)
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Disabled!
AVG 9.0
ESET Online Scanner v3
McAfee SecurityCenter
WMIC entry does not exist for antivirus; attempting automatic update.
``````````````````````````````
Anti-malware/Other Utilities Check:
Spybot - Search & Destroy
SUPERAntiSpyware Professional
CCleaner
Java(TM) 6 Update 18
Java Auto Updater
Out of date Java installed!
Adobe Flash Player 10
Adobe Reader 9.3
``````````````````````````````
Process Check:
objlist.exe by Laurent
AVG avgwdsvc.exe
AVG avgrsx.exe
AVG avgnsx.exe
AVG avgemc.exe
``````````````````````````````
DNS Vulnerability Check:
GREAT! (Not vulnerable to DNS cache poisoning)

`````````End of Log```````````

There are also some new files and folders created for some reason in my (C:) drive; I think from that TFC software and they are like those files on my desktop like ghost type; WHAT SHOULD I DO; delete them ?

Thanks