could you also post a new sdfix report for them to look at?

thannks,

v

had one of the other experts (the guys who taught me) take a look, and here is his response below:

Please copy this page to *Notepad* and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.
It's IMPORTANT to carry out the instructions in the sequence listed below.
1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
Open *notepad* and copy/paste the text in the quotebox below into it:

Save this as CFScript.txt, in the same location as ComboFix.exe which is on the Desktop.


Refering to the picture above, drag CFScript.txt into ComboFix.exe

When finished, it shall produce a log for you at C:\ComboFix.txt
Please copy and paste the ComboFix.txt along with a fresh HijackThis log in your next reply please.

*Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall*

thanks to pancake for that.

v

Thanks, Valis and thanks to Pancake. Previous post executed and logs attached. No change to the symptoms. I look forward to any addional thoughts on the matter.

norm

Attached Files

	combofix.txt (15.0 KB, 1 views)
	hijackthis.log (9.3 KB, 2 views)
	SDFix report.txt (2.4 KB, 1 views)

Hello keller130,

There isn't much showing in those logs but you definitely have a problem. Let's try a couple other things.

You may want to print out these instructions for reference, since you will have to restart your computer during the fix.

Please download FixWareout from one of these sites:
http://downloads.subratam.org/Fixwareout.exe
http://swandog46.geekstogo.com/Fixwareout.exe

Save it to your desktop and run it.
Click Next, then Install, then make sure "Run fixit" is checked and click Finish.
The fix will begin; follow the prompts.
If your firewall gives an alert, (because this tool will download an additional file from the internet), please don't let your firewall block it, but allow it instead.

You will be asked to reboot your computer; please do so.
Your system may take longer than usual to load; this is normal.

When your system reboots, follow the prompts.

If your system does not reboot, then reboot it manually.

Please boot into Normal Mode and select the following with HijackThis.
With all windows (including this one!) closed (close browser/explorer windows), please select "fix.”

O4 - HKLM\..\Run: [TkBellExe] \"C:\Program Files\Common Files\Real\Update_OB\realsched.exe\" -osboot
O4 - HKLM\..\Run: [SunJavaUpdateSched] \"C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe\"
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

Close HijackThis, and click OK to proceed.


* Go to Control Panel. - If you are using Windows XP's Category View, select the Network and Internet Connections category. If you are in Classic View, go to the next step.

Double-click the Network Connections icon
Right-click the Local Area Connection icon and select Properties.
Higlight Internet Protocol (TCP/IP) and click the Properties button.
Be sure Obtain DNS server address automatically is selected.
OK your way out.

* Go to Start > Run and type in cmd
Click OK.
This will open a command prompt.
Type or copy and paste the following line in the command window:

ipconfig /flushdns

Hit Enter.
Exit the command window.


Reboot your computer again.

Please post the contents of the logfile C:\fixwareout\report.txt, along with a new HijackThis log.


Download SilentRunners.vbs
Unzip it to a permanent folder.
Read here how to unzip/extract properly:
Help removing and preventing spyware - Compressed folders XP
Start SilentRunners.vbs
When your antivirus is giving an alert, do not block this. Allow the script.
When the scan is done, notepad will open with a log in it. Please close this again.
I'll need that log later.
Normally that log is saved automatically in your silent runners-folder.
Post the log it created.

I have executed your commands as directed, please find the logs attached. FYI there has been no change to the symptoms at this point. Look forward to your continued support.

thanks
norm

Attached Files

	fixwareout report.txt (1.4 KB, 2 views)
	hijackthis.log (9.1 KB, 1 views)
	Startup Programs (NK_COMP) 2008-01-20 12.02.09.txt (15.4 KB, 1 views)

Sorry, I was just looking through this thread again. Are you still getting the same errors with SDFix?