Jamesrulez1

You should close it for now. I'll reply if i can ever get a hold of who's got the problem. There are more than 1 person connected to the wireless router so I have to go through them 1 by 1

I can't find the folder. Is it because i said uninstall everything when I quit? It found 11 threats so I hope it's fixed it. I haven't gotten another email yet and am waiting to see if I will.

I got a email : We have received reports from the ACMA's Australian Internet Security Initiative (AISI) that a machine accessing the Internet using your TPG Service is causing unwanted traffic to be transmitted, such as spam and viruses. A summary of the last few complaints have been provided below: [2011-11-10 14:22:52] [115.64.40.205] Trojan: DNSChanger [2011-11-10 12:21:27] [115.64.40.205] Trojan: Generic [2011-11-09 11:58:52] [115.64.40.205] Trojan: Generic

Combofix log : ComboFix 11-11-03.01 - User 03/11/2011 20:48:27.4.4 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.61.1033.18.3575.2561 [GMT 11:00] Running from: c:\users\User\Desktop\ComboFix.exe AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\User\AppData\Local\Temp\lol_patch_0

Here is the log and i have attached the attach file : . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29 Run by User at 19:06:35 on 2011-11-03 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.61.1033.18.3575.1328 [GMT 11:00] . AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Win

218.9.200.134 is another one from Garena Messenger

220.70.239.49 is getting blocked from Garena Messinger?

What if i don't use firefox? I haven't touched it and only have been using chrome

Oh wait no. I just started up skype again and got a skype block for the IP : 193.68.68.78

I think it's fixed now so thanks

Here is the security scan log : Results of screen317's Security Check version 0.99.24 Windows 7 Service Pack 1 x86 (UAC is enabled) Internet Explorer 9 `````````````````````````````` Antivirus/Firewall Check: Windows Firewall Enabled! avast! Free Antivirus WMI entry may not exist for antivirus; attempting automatic update. ``````````````````````````````` Anti-malware/Other Utilities Check: Malwarebytes' Anti-Malware CCleaner Java 6 Update 24 Out of date Java installed! Adobe Flash Player 11.0.1.152 Adobe Reader X (10.1.1) Mozilla Firefox (3.6.22) F

new combofix log : ComboFix 11-11-02.01 - User 02/11/2011 19:24:23.3.4 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.61.1033.18.3575.1953 [GMT 11:00] Running from: c:\users\User\Desktop\ComboFix.exe Command switches used :: c:\users\User\Desktop\CFscript.txt AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((( Files Created from 2011-10-02 to 2011-11-02 ))))))))))))))))))))))

Where would i find what kaspersky found? There where no threats detected.

Here is the new combofix log : ComboFix 11-11-02.01 - User 02/11/2011 17:33:22.2.4 - x86 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.61.1033.18.3575.2105 [GMT 11:00] Running from: c:\users\User\Desktop\ComboFix.exe AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C} SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . . Infected copy of c:\windows\s

0 threats I think it's fixed now? How can i tell?