Hello ,im new here ,just wondering if any 1 Can Help me with this Logg please.
Thanks in Advance..
Simon..

FreeFixer v0.25 log
http://www.freefixer.com/
Operating system: Windows XP Service Pack 2
Log dated 2007-12-02 16:12


Winlogon Notify (8 whitelisted)
!SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
AutorunsDisabled - (file is missing)
WgaLogon - C:\WINDOWS\system32\WgaLogon.dll

Internet Explorer toolbars (2 whitelisted)
HKCU\..\Toolbar\WebBrowser\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - - No file specified

Basic Internet Explorer settings
HKCU\..\Main, Start Page = http://www.yahoo.com/

Registry Startups
HKLM\..\Run, NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
HKLM\..\Run, Broadbandadvisor.exe = "C:\Program Files\Virgin Broadband\advisor\Broadbandadvisor.exe" /AUTORUN
HKLM\..\Run, NvMediaCenter = RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
HKLM\..\Run, COMODO Firewall Pro = "C:\Program Files\Comodo\Firewall\CPF.exe" /background
HKLM\..\Run, AVG7_CC = C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
HKLM\..\Run, WinPatrol = C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe
HKCU\..\Run, msnmsgr = "C:\Program Files\MSN Messenger\msnmsgr.exe" /background (file is missing)
HKCU\..\Run, MSMSGS = "C:\Program Files\Messenger\msmsgs.exe"

Processes (15 whitelisted)
C:\Program Files\a-squared Anti-Malware\a2service.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Comodo\Firewall\cmdagent.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\Program Files\Comodo\Firewall\CPF.exe
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\FreeFixer\freefixer.exe

Services (33 whitelisted)
a2AntiMalware, a-squared Anti-Malware Service, c:\program files\a-squared anti-malware\a2service.exe
Avg7Alrt, AVG7 Alert Manager Server, c:\progra~1\grisoft\avg7\avgamsvr.exe
Avg7UpdSvc, AVG7 Update Service, c:\progra~1\grisoft\avg7\avgupsvc.exe
AVGEMS, AVG E-mail Scanner, c:\progra~1\grisoft\avg7\avgemc.exe
CmdAgent, Comodo Application Agent, c:\program files\comodo\firewall\cmdagent.exe
NVSvc, NVIDIA Display Driver Service, c:\windows\system32\nvsvc32.exe
STI Simulator, STI Simulator, c:\windows\system32\pastisvc.exe

Drivers (27 whitelisted)
Avg7Core, AVG7 Kernel, C:\WINDOWS\system32\drivers\avg7core.sys
Avg7RsW, AVG7 Wrap Driver, C:\WINDOWS\system32\drivers\avg7rsw.sys
Avg7RsXP, AVG7 Resident Driver XP, C:\WINDOWS\system32\drivers\avg7rsxp.sys
AvgClean, AVG7 Clean Driver, C:\WINDOWS\system32\drivers\avgclean.sys
AvgTdi, AVG Network Redirector, C:\WINDOWS\system32\drivers\avgtdi.sys
BANTExt, Belarc SMBios Access, C:\WINDOWS\system32\drivers\bantext.sys
CmdMon, Comodo Application Engine, C:\WINDOWS\system32\drivers\cmdmon.sys
Inspect, Comodo Network Engine, C:\WINDOWS\system32\drivers\inspect.sys
nvcap, nVidia WDM Video Capture (universal), C:\WINDOWS\system32\drivers\nvcap.sys (file is missing)
NVXBAR, nVidia WDM A/V Crossbar, C:\WINDOWS\system32\drivers\nvxbar.sys (file is missing)
SASDIFSV, SASDIFSV, c:\program files\superantispyware\sasdifsv.sys
SASKUTIL, SASKUTIL, c:\program files\superantispyware\saskutil.sys

Dear Simon

Go through the following instructions and do accordingly,

STEP 1:

you need to disable System Restore to make sure that the malicious files and registry entries that you will remove, donot get restored when you restart your computer back in Normal Mode.

For clear instructions,

a) Right Click "My Computer"Being a Windows XP user, at first,
b) Select "Properties" in the drop down menu
c) Select "System Restore" tab
d) Check "Turn Off System Restore on all drives".
e) Click "ok".


STEP 2:

Now Turn Off Your Computer and Start your computer up in safe mode (with networking option).

For clear instructions,

a) Print these instructions before you begin as you will not have access to them while your computer is off.
b) Click "Start", then click "Turn Off Computer" and then in the opened dialog box, Select "Restart" button" and click OK.
c) Allow your computer to power down completely. When it begins to reboot, press F8 repeatedly until a boot menu appears.
d) Use the arrow keys to select the "Safe Mode with Networking" option and press "Enter" key.
e) Select the operating system you would like to load (Windows XP) and press "Enter" key.



STEP 3:

a) Open FreeFixer
b) Please select the following entries and (after closing all other windows), just Click "FIX"

The following BHO (Browser Helper _object_) is an ADWARE (Crawler Toolbar)
HKCU..ToolbarWebBrowser{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - - No file specified

c) After fixing it, restart your computer and take a new FreeFixer log in the Normal Mode and post it here.

Hi there
Ive tryed pressing f8 when i start my Pc up,and the screen that comes up isnt safe mode?
It says Select 1st Boot Device.then below that .... is.
floppy
ide-0
cd rom
So im afraid ive no idea.thanks anyway ..


Simon..

Dear Simon

hope, your harddrive is connected in ide-0, you can select it, and then press f8 again,

you will find os level options,


safemode
safe mode with networking and some more,

select safemode with networking option,

post your log after you implement the said procedure,

all the best with your system

Thanks for the quick response..
Ibooted again pressing f8 and changed it too IDEE-0 then roobted and after it booted it was back too the same Bt from floppy,it had changedon its own..
Now i ooted again and press f5,this time i got the menu up Networking optionss,But the arrow Keys wouldnt let me move it upto ...(With networking option) even tho i could see all the option there. ..hmm.ive no idea sorry.
All it was stuck on was start in Nmal Mode.,i couldt even press Enter for it too start in normal mode,i had too press restart on my Pc tower.
sorry for the inconvience.
cheers.
Simon..

ok, then,

if starting in safe mode is not working, for now, you can try fixing the adware in NORMAL MODE using Freefixer,

and post results,