black screen yellow lines around background :(

[w00t]

i was on my mom's laptop and when i booted it on the background it was black and it said that i had spyware with yellow lines around it so i go to right click and go to properties

what comes up when i right click is
select all
view source
encoding
print
refresh
and properties
when i go to properties it doesnt go to display propteries
a window comes up saying properties
with a genral tab only at the top of genral is shows a piece of paper with blue lines and a eartg pic to the right of that it says not available
than
File Protocol
HTML Document
Not Encrypted
file://C:\WINDOWS\Web\desktop.html
size: not available
created: Not Available
modified: Not Available
and a button that says certificates i click it and it says this type of document does not have a security cerfificate.

my mom says it has been acting werd booting slow i for AVG ad-ware SE and spybot scanned it picks up stuff and 13 virus's i was like dam mom... i think i have fixed the virus problem the only thing now is this and i can still since that it is booting slow, but i thinks its this.

Thanks for ur time

 

[montag451]

Update your antivirus software, and your anti-spyware software.
Add to your arsenal TROJAN HUNTER and SPY SWEEPER
Get a friend to download it all and put it on cd.

Install all including updates

Boot into safe mode.

@~~@@ Turn off SYSTEM RESTORE
Scan with all the suckers.
Reboot
Scan again with all suckers.
If you don't find anything, then well done.
If you do, then you will need more weapons.....
come back and we will supply you with the information you need, maybe

 

[w00t]

Originally posted by: montag451
Update your antivirus software, and your anti-spyware software.
Add to your arsenal TROJAN HUNTER and SPY SWEEPER
Get a friend to download it all and put it on cd.

Install all including updates

Boot into safe mode.

@~~@@ Turn off SYSTEM RESTORE
Scan with all the suckers.
Reboot
Scan again with all suckers.
If you don't find anything, then well done.
If you do, then you will need more weapons.....
come back and we will supply you with the information you need, maybe

i already did somthing like this
downloaded ad-aware spybot and avg rebooted in safe mod scanned 3 times after the 2nd found nothing more. system restore is off already and recently did hijack this i found this

Logfile of HijackThis v1.99.1
Scan saved at 3:42:22 PM, on 3/29/2005
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Microsoft AntiSpyware\gcasDtServ.exe
C:\Program Files\Microsoft AntiSpyware\gcasServ.exe
C:\WINDOWS\System32\msiexec.exe
C:\Documents and Settings\costco\Local Settings\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.com
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://install.charter.net/
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx
O2 - BHO: (no name) - {243B17DE-77C7-46BF-B94B-0B5F309A0E64} - c:\Program Files\Microsoft Money\System\mnyside.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpdtlk02.dll
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: MoneySide - {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - c:\Program Files\Microsoft Money\System\mnyside.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE
O9 - Extra button: Microsoft AntiSpyware helper - {679840C5-1DBD-48E3-91C0-C5E6B5ABDC5B} - (no file) (HKCU)
O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {679840C5-1DBD-48E3-91C0-C5E6B5ABDC5B} - (no file) (HKCU)
O9 - Extra button: Microsoft AntiSpyware helper - {BA5572C9-73A4-4BCE-8F49-11475F94F2EA} - (no file) (HKCU)
O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {BA5572C9-73A4-4BCE-8F49-11475F94F2EA} - (no file) (HKCU)
O14 - IERESET.INF: START_PAGE_URL=http://us8l.hpwis.com
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=36467&clcid=0x409
O16 - DPF: {2542F2EB-980A-0FFD-B3C3-2BA6181985E1} - http://69.50.182.94/1/rdgUS1882.exe
O16 - DPF: {426A0CC8-EEAE-3C0D-BAE4-2B9A10C36EED} - http://69.50.182.94/1/rdgUS1882.exe
O16 - DPF: {5E8FD788-C323-4357-AB76-7CBCEFBA573C} (SpyBouncer.SBDownloader) - http://www.spybouncer.com/downloader.ocx
O17 - HKLM\System\CCS\Services\Tcpip\..\{AAD54DA9-1B6C-4D24-97B8-5230416B7AAF}: NameServer = 207.69.188.185
O21 - SSODL: NTDBGTOOL - {CBB698E7-8449-47FF-B826-1F90344FFF4F} - C:\WINDOWS\System32\ipxscsnp.dll
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe

tell me if any problems

 

[montag451]

Try an online scan=
Can't see anything at a quick glance.

Also - download Kaspersky - give that a go - prob the best scanner - but damned slow, and on some systems swallows memory up.
Good just for a full on scan though.

The reason that i gave you a few different progs, is that NO prog seems to catch everything.
You will find, most likely, that there are a few elusive mofo's if you manage to scan with some other yoots.

Also - did you empty your internet cache folder and your temps folder -
Try - download CCLEANER - seems to help out sometimes.

 

[w00t]

Originally posted by: montag451
Try an online scan=
Can't see anything at a quick glance.

Also - download Kaspersky - give that a go - prob the best scanner - but damned slow, and on some systems swallows memory up.
Good just for a full on scan though.

The reason that i gave you a few different progs, is that NO prog seems to catch everything.
You will find, most likely, that there are a few elusive mofo's if you manage to scan with some other yoots.

Also - did you empty your internet cache folder and your temps folder -
Try - download CCLEANER - seems to help out sometimes.

ya i deleted all cache files cookies and such but i just want to know what is causing this i want to fix it.

 

[mechBgon]

/me thinks it is this: http://securityresponse.symantec.com/av...r/venc/data/adware.topantispyware.html


Talk about obnoxious!

 

[w00t]

Originally posted by: mechBgon
/me thinks it is this: http://securityresponse.symantec.com/av...r/venc/data/adware.topantispyware.html


Talk about obnoxious!

ya that is it checked it out did everything it said still didnt work than i tried to reboot the laptop in safemod and it wont it opens cmd and than sits there, anyways i got my comp running now thank god that laptop isnt mine since there is tons of virus's on it i found 20 of em on one scan than is when i was like dang what am i getting myself into.