hi guys, i am having some madddddddddddd problems... again!!!
last time i had problems you guys helped me out alot, so i decided to head back here, anyways, i got mad spyware on my laptop. i duno how it happened but all of a sudden all this funky stuff started hapening to my pc.

here is how it goes.
right when i start my pc up and when windows loads i get a sign saying;
" update.exe - unable to locate component"

"this application has failed to start because MSVCR71.dll was not found. re-installing the application may fix this problem"

and this sign pops up a few time, like 7-10 times, and i hae to click ok.

then my anti spyware system starts to warn me of incoming effective programs that are trying to install, i am using windows defender, and these are all the names of the softwares that try to get inside my system, (they change around when i reboot, i get new ones and some of the same one, but i noted these ones down during this start up)

these are the names;

target saver
downloader.AI
AvenueMedia.DyFuCA
Deskwizz
Adware.cmdService
Surfsidekick

then a sign come up sayin;

windows Script Host
Script: C:/Program Files/wallpap.js
Line: 72
Char: 1
Error: Unable to wait for process
Code: 80020009
Source: WshShell.Run

----------------------------------
so these are all my problems, one more thing is that when i open up IE, it goes to some next page and does not let me load any other poage up, then i have to run Ad-aware, spybot and defender to get rid of the propgrams and then i can start using IE, and also some weird files keep appearing in C:/program files

these files r usually no there, and i think they are causing the problems, these same problems just happened to me recently and i had to reformat my pc, but i dont want to do that agian, so plzzzz help me out guys , highly appreciated, thx alot 4 your time guys, hope ot hear from u soon, pcc!!!

Hay Naqeeb23, welcome back.

If you follow the instructions in the 'Prework' link below in my sig and post those logs, then I'm sure we can help you.

hi guys, i am having some madddddddddddd problems... again!!!
last time i had problems you guys helped me out alot, so i decided to head back here, anyways, i got mad spyware on my laptop. i duno how it happened but all of a sudden all this funky stuff started hapening to my pc.

here is how it goes.
right when i start my pc up and when windows loads i get a sign saying;
" update.exe - unable to locate component"

"this application has failed to start because MSVCR71.dll was not found. re-installing the application may fix this problem"

and this sign pops up a few time, like 7-10 times, and i hae to click ok.

then my anti spyware system starts to warn me of incoming effective programs that are trying to install, i am using windows defender, and these are all the names of the softwares that try to get inside my system, (they change around when i reboot, i get new ones and some of the same one, but i noted these ones down during this start up)

these are the names;

target saver
downloader.AI
AvenueMedia.DyFuCA
Deskwizz
Adware.cmdService
Surfsidekick

then a sign come up sayin;

windows Script Host
Script: C:/Program Files/wallpap.js
Line: 72
Char: 1
Error: Unable to wait for process
Code: 80020009
Source: WshShell.Run

----------------------------------
so these are all my problems, one more thing is that when i open up IE, it goes to some next page and does not let me load any other poage up, then i have to run Ad-aware, spybot and defender to get rid of the propgrams and then i can start using IE, and also some weird files keep appearing in C:/program files

these files r usually no there, and i think they are causing the problems, these same problems just happened to me recently and i had to reformat my pc, but i dont want to do that agian, so plzzzz help me out guys , highly appreciated, thx alot 4 your time guys, hope ot hear from u soon, pcc!!!

----------------

well here are my log files, hope i did it right, hope 2 hear from u guys soon, thx agian 4 the time, pc!!

Report-Scan-20060808-214615.txt

hijackthis.log

Hya Naqeeb23.


Download Brute Force Uninstaller http://www.merijn.org/files/bfu.zip and unzip it to it’s own folder (c:\BFU).

Run the program and click the Web button located on the top right corner.
Copy and paste the below web address into the address bar of the Download script window:

http://metallica.geekstogo.com/alcanshorty.bfu

Checkmark the following boxes:

Use settings specified in script for the above option.
Show log after script ends.

Execute the script by clicking the Execute button.
When it finishes running, click the Save button for a copy of the log. Post the log created by the script when you have completed the fix.


1. Download this file - combofix.exe
2. Double click combofix.exe & follow the prompts.
3. When finished, it shall produce a log for you. Post that log in your next reply

When done, post the logs from those, plus a new hjt log please.

ite here are the requested logs;

ComboFix.txt

hijackthis-2.txt


i couldnt upload that 1 log for some reason, so i have pasted it in here,

BFU v1.00.9
Windows XP SP2 (WinNT 5.01.2600 SP2)
Script started at 11:27:38 PM, on 8/8/2006
Failed: DllUnregister C:\WINDOWS\DH.dll|1 (file not found)
Failed: ServiceStop Network Monitor (service not found)
Failed: ServiceStop cmdService (service not found)
Failed: ServiceDisable Network Monitor (service not found)
Failed: ServiceDisable cmdService (service not found)
Failed: ServiceDelete Network Monitor (service not found)
Failed: ServiceDelete cmdService (service not found)
Failed: RegDelValue HKCU\System\CurrentControlSet\Control\Lsa|p2pnetwo rk (key not found)
Failed: RegDelValue HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Associations|LowRiskFileTypes (key not found)
Failed: RegDelValue HKCU\Microsoft\Windows\CurrentVersion\policies\Exp lorer\Run|WinUpdate.exe (key not found)
Option pause between commands: 300 ms
Option pause between commands: 50 ms
Failed: FolderDelete C:\Program Files\MsConfigs (folder not found)
Failed: FolderDelete C:\Program Files\winupdates (folder not found)
Failed: FolderDelete C:\Program Files\winupdate (folder not found)
Failed: FolderDelete C:\Program Files\winsupdater (folder not found)
Failed: FolderDelete C:\Program Files\MsUpdate (folder not found)
Failed: FolderDelete C:\Program Files\MsMovies (folder not found)
Failed: FolderDelete C:\Program Files\wmplayer (folder not found)
Failed: FileDelete C:\Program Files\Common Files\Windows\mc-*-*.exe (operation failed)
Failed: FileDelete C:\Program Files\Common Files\Download\mc-*-*.exe (operation failed)
Failed: FileDelete C:\DOCUME~1\NAQEEB~1\LOCALS~1\Temp\Perflib_Perfdat a_7ac.dat (operation failed)
Failed: FileDelete C:\DOCUME~1\NAQEEB~1\LOCALS~1\Temp\~DF1F4F.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\NAQEEB~1\LOCALS~1\Temp\~DFB655.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\NAQEEB~1\LOCALS~1\Temp\~DFB65A.tmp (operation failed)
Failed: FileDelete C:\DOCUME~1\NAQEEB~1\LOCALS~1\Temp\~DFE424.tmp (operation failed)
Failed: FolderDelete C:\Documents and Settings\Naqeeb Mubashir\Local Settings\Temporary Internet Files\Content.IE5\B8SSZ83M (operation failed)
Failed: FolderDelete C:\Documents and Settings\Naqeeb Mubashir\Local Settings\Temporary Internet Files\Content.IE5\H5TRRQ0U (operation failed)
Failed: FolderDelete C:\Documents and Settings\Naqeeb Mubashir\Local Settings\Temporary Internet Files\Content.IE5\S08M9P54 (operation failed)
Failed: FolderDelete C:\Documents and Settings\Naqeeb Mubashir\Local Settings\Temporary Internet Files\Content.IE5\Y85PRUF0 (operation failed)
Failed: FolderDelete C:\Program Files\Maxifiles (folder not found)
Failed: FolderDelete C:\Program Files\DNS (folder not found)
Failed: FolderDelete C:\Program Files\EQAdvice (folder not found)
Failed: FolderDelete C:\Program Files\FCAdvice (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\FreeProd1 (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\FreeProd2 (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\InetGet (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\InetGet2 (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\svchostsys (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\simtest (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\misc001 (folder not found)
Failed: FolderDelete C:\Program Files\InetGet2 (folder not found)
Failed: FolderDelete C:\Program Files\Common Files\VCClient (folder not found)
Failed: FolderDelete C:\Program Files\Network Monitor (folder not found)
Failed: FolderDelete C:\WINDOWS\inet20001 (folder not found)
Failed: FolderDelete C:\Program Files\Update06 (folder not found)
Failed: FolderDelete C:\Program Files\Update03 (folder not found)
Failed: FolderDelete C:\Program Files\Update04 (folder not found)
Failed: FolderDelete C:\Program Files\Update08 (folder not found)
Failed: FolderDelete C:\Program Files\W-Update (folder not found)
Failed: FolderDelete C:\Program Files\Yazzle Sudoku (folder not found)
Failed: FolderDelete C:\Program Files\Cas (folder not found)
Failed: FolderDelete C:\Program Files\CasStub (folder not found)
Failed: FolderDelete C:\Program Files\Cas2Stub (folder not found)
Failed: FolderDelete C:\Program Files\ipwins (folder not found)
Failed: FolderDelete C:\temp (folder not found)
Failed: FolderDelete C:\WINDOWS\mdrive (folder not found)
Failed: FolderDelete C:\Program Files\PECarlin (folder not found)
Failed: FolderDelete C:\Program Files\AXVenore (folder not found)
Failed: FolderDelete C:\Program Files\SDVita (folder not found)
Failed: FolderDelete C:\Program Files\EQBranch (folder not found)
Failed: FolderDelete C:\Program Files\EQArticle (folder not found)
Failed: FileMove C:\WINDOWS\win*-*.exe|C:\bintheredunthat (source file not found)
Script completed.

Boot your pc in safemode (hit f8 when booting up) and then run HijackThis , select to do a "system scan only" and then place a check beside each of the following:

Now first close all windows and browsers other then HiJackThis , then click fix checked and close HijackThis.

Then do a search for and delete these files:

C:\\Program Files\\Common Files\\{2E9BCED5-063C-1033-0826-050507110001}\\Update.exe
C:\WINDOWS\ifiacnnA.exe
w001bfc1.dll

Reboot your pc when done.


And then please upload these files:

C:\WINDOWS\system32\ibic03e4.sys
C:\WINDOWS\system32\ibic03e4.dll
C:\\WINDOWS\\ifiacnnA.exe

one by one to this site:

http://www.virustotal.com/en/indexf.html

Post back with the results from that, and a new hjt log please.