Fel

never mind the help then. I was able to fix it by creating another user account on the computer, transfer all the data to the new account, and scanned the computer for any possible viruses.

My malwarebyte log: Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Database version: 7045 Windows 6.1.7600 Internet Explorer 9.0.8112.16421 7/7/2011 5:48:18 PM mbam-log-2011-07-07 (17-48-18).txt Scan type: Full scan (C:\|D:\|) Objects scanned: 342770 Time elapsed: 23 minute(s), 44 second(s) Memory Processes Infected: 6 Memory Modules Infected: 2 Registry Keys Infected: 6 Registry Values Infected: 5 Registry Data Items Infected: 2 Folders Infected: 0 Files Infected: 38 Memory Processes Infected: c:\Users\dave\AppData\Roaming\dwm.exe (Backdoor.Bot) -> 1376 -> Unloaded process successfully. c:\Users\dave\AppData\Roaming\microsoft\conhost.exe (Backdoor.Bot) -> 1608 -> Unloaded process successfully. c:\Windows\SysWOW64\icardres32.exe (Trojan.Agent) -> 1088 -> Unloaded process successfully. c:\programdata\ipbusenumproxy32.exe (Trojan.Agent) -> 1628 -> Unloaded process successfully. c:\Users\dave\AppData\Local\Temp\csrss.exe (Backdoor.Bot) -> 2052 -> Unloaded process successfully. c:\Users\dave\AppData\Local\Temp\0.8870676135880543.exe (Trojan.Tracur.Wow) -> 2764 -> Unloaded process successfully. Memory Modules Infected: c:\programdata\api-ms-win-core-misc-l1-1-032.dll (Trojan.Tracur.Gen) -> Delete on reboot. c:\Users\dave\AppData\Local\ehicakenak.dll (Trojan.Agent.U) -> Delete on reboot. Registry Keys Infected: HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\VaultSvc32 (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{12337B4D-B862-4730-B328-5E73D29ED901} (Trojan.Tracur.PGen) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{12337B4D-B862-4730-B328-5E73D29ED901} (Trojan.Tracur.PGen) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{12337B4D-B862-4730-B328-5E73D29ED901} (Trojan.Tracur.PGen) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{12337B4D-B862-4730-B328-5E73D29ED901} (Trojan.Tracur.PGen) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\.fsharproj (Trojan.BHO) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\conhost (Backdoor.Bot) -> Value: conhost -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\213341266 (Trojan.Tracur.Wow) -> Value: 213341266 -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Load (Trojan.Agent) -> Value: Load -> Delete on reboot. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Shell (Hijack.Shell.Gen) -> Value: Shell -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Fgesicekiqa (Trojan.Agent.U) -> Value: Fgesicekiqa -> Delete on reboot. Registry Data Items Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\Load (Backdoor.Bot) -> Bad: (C:\Users\dave\AppData\Local\Temp\csrss.exe) Good: () -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows\AppInit_DLLs (Trojan.Tracur.Gen) -> Bad: (C:\ProgramData\api-ms-win-core-misc-l1-1-032.dll) Good: () -> Quarantined and deleted successfully. Folders Infected: (No malicious items detected) Files Infected: c:\Users\dave\AppData\Roaming\dwm.exe (Backdoor.Bot) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Roaming\microsoft\conhost.exe (Backdoor.Bot) -> Quarantined and deleted successfully. c:\Windows\SysWOW64\icardres32.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\programdata\ipbusenumproxy32.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\csrss.exe (Backdoor.Bot) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.8870676135880543.exe (Trojan.Tracur.Wow) -> Quarantined and deleted successfully. c:\Windows\System32\icardres32.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Windows\SysWOW64\api-ms-win-core-misc-l1-1-032.dll (Trojan.Tracur.PGen) -> Quarantined and deleted successfully. c:\Users\dave\0.08080001545043047.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\dave\0.5200914196824772.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\dave\0.542104507014499.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\dave\0.7292485189650365.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\dave\0.7672125919459986.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\dave\msiexec.exe (Trojan.Agent) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.06187991300240292.exe (Spyware.Passwords.XGen) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.8388904349698281.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\C340.tmp (Malware.Gen) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\omenwaxscr.exe (Trojan.Hiloti) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\raemsncxow.exe (Trojan.FakeAlert.Gen) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\setup1877484032.exe (Malware.Gen) -> Quarantined and deleted successfully. c:\Users\dave\AppData\LocalLow\Sun\Java\deployment\cache\6.0\4\3e548944-581a6392 (Trojan.FakeAlert) -> Quarantined and deleted successfully. c:\Users\dave\downloads\vlcsetup (1).exe (Adware.Hotbar) -> Quarantined and deleted successfully. c:\Users\dave\downloads\vlcsetup (2).exe (Adware.Hotbar) -> Quarantined and deleted successfully. c:\Users\dave\downloads\VLCSetup.exe (Adware.Hotbar) -> Quarantined and deleted successfully. c:\Users\dave\downloads\xvidsetup (1).exe (Adware.Hotbar) -> Quarantined and deleted successfully. c:\Users\dave\downloads\xvidsetup (2).exe (Adware.Hotbar) -> Quarantined and deleted successfully. c:\Users\dave\downloads\xvidsetup (3).exe (Adware.Hotbar) -> Quarantined and deleted successfully. c:\Users\dave\downloads\xvidsetup.exe (Adware.Hotbar) -> Quarantined and deleted successfully. c:\Windows\System32\api-ms-win-core-misc-l1-1-032.dll (Trojan.Tracur.PGen) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.5960264679585302.exe (Exploit.Drop.2) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.7870957774173447.exe (Exploit.Drop.2) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.8790432106743351.exe (Exploit.Drop.2) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.585779502629153.exe (Exploit.Drop.2) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.647851519960118.exe (Exploit.Drop.2) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\0.680317597215627.exe (Exploit.Drop.2) -> Quarantined and deleted successfully. c:\programdata\api-ms-win-core-misc-l1-1-032.dll (Trojan.Tracur.Gen) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\ehicakenak.dll (Trojan.Agent.U) -> Quarantined and deleted successfully. c:\Users\dave\AppData\Local\Temp\msiexec.exe (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.

-I updated malwarebytes since at least 6 months ago. Then I ran malwarebytes and quarantined 51 out of 56 items. -After I restarted to get rid of some items to be put into quarantined, I attempted to use the web browser and received message: unable to connect to the proxy server...right now, your system is configured to use a proxy, but Google Chrome can't connect to it. -I read a few posts and unchecked the box for the proxy server "use a proxy server for your LAN". Still no luck in using the web browser. -Thanks for any assistance.