am i infected with virus or spyware?

[ladygaga345]

still the same  i really dont know whats happening

[DavidR]

I'm not sure what else to suggest as anything else is still related to browsing and the web shield and having tried stopping the web shield for a while made no difference.

Try using this link http://98.139.200.98 that is the IP address for Yahoo Messenger and see if you can use the sign in link ?

If that doesn't work, you could try Stopping the Script Shield for 10 minutes and then try to connect to messenger ?

[ladygaga345]

still doesnt work 

[DavidR]

My suggestion to use the link should have gotten around any hosts file blocking of the messenger.yahoo.com sub-domain. This is a common malware trick (though not great) to block sites, but that is normally to stop you accessing security sites. So I think it unlikely that it would be malware as I wouldn't have thought it would target messenger.yahoo.com, but be more widespread.

Sorry I'm at a loss as to what else to suggest as all of this appears to be outside of avast.

I couldn't even find any support links in Yahoo.com, so all I can suggest is try some google searches and see if this is a problem others are having.

[ladygaga345]

My suggestion to use the link should have gotten around any hosts file blocking of the messenger.yahoo.com sub-domain. This is a common malware trick (though not great) to block sites, but that is normally to stop you accessing security sites. So I think it unlikely that it would be malware as I wouldn't have thought it would target messenger.yahoo.com, but be more widespread.

Sorry I'm at a loss as to what else to suggest as all of this appears to be outside of avast.

I couldn't even find any support links in Yahoo.com, so all I can suggest is try some google searches and see if this is a problem others are having.

i have googled and i think this link has the same problem with mine take a look

http://answers.yahoo.com/question/index;_ylt=AjUBajuXEiWqDsf9z3wCfyTxDn1G;_ylv=3?qid=20110910020331AA4EzOm

thats exactly what will happen when i try to log in with ym. unfortunately i just uninstalled ym so that i can reinstall it but i cant connect to yahoo messenger site, i think there blocking users from philippines or something

[DavidR]

The region blocking is always a possibility. I don't use any IM so I don't know how much s.p.a.m. is an issue and if it is more prevalent in the Philippines, but I wouldn't have thought they would block a region rather than crack down on spammers.

I don't know if you tried using a different browser to connect to messenger ?

[ladygaga345]

yeah ive tried with internet explorer but still cant connect  it says

 Internet Explorer cannot display the webpage
   
   What you can try:
    Diagnose Connection Problems 
 
     
 

[DavidR]

I hate mysteries, but I'm out of ideas.

[essexboy]

Is it just Yahoo and nowhere else that you experience this problem ?

Lets have a look at the internet settings

Download OTL  to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Select All Users
  
• Under the Custom Scan box paste this in

netsvcs
%SYSTEMDRIVE%\*.exe
/md5start
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
/md5stop
C:\Windows\assembly\tmp\U /s
CREATERESTOREPOINT

• Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    
  • Post both logs

[ladygaga345]

here they are

[essexboy]

On completion of this run could you retry and let me know what error you get

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following
  

  :OTL
  FF - prefs.js..browser.search.selectedEngine: "Search the web (Babylon)"
  FF - prefs.js..keyword.URL: "http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=04720ed3000000000000bcaec5b94a37&tlver=1.4.35.10&affID=100489"
  [2011/09/11 13:00:27 | 000,002,288 | ---- | M] () -- D:\Program Files\mozilla firefox\searchplugins\babylon.xml
  O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - No CLSID value found.
  [2011/09/11 16:40:36 | 000,000,000 | ---D | C] -- D:\Documents and Settings\nicole\Application Data\BabylonToolbar
  [2011/09/11 13:00:24 | 000,000,000 | ---D | C] -- D:\Documents and Settings\nicole\Local Settings\Application Data\Babylon
  [2011/09/11 13:00:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\nicole\Application Data\Babylon
  [2011/09/11 13:00:23 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Application Data\Babylon
  [2011/08/28 16:18:27 | 000,000,000 | RHS- | C] () -- D:\Documents and Settings\All Users\Documents\xerfoj4
  [2011/08/20 16:58:09 | 000,000,000 | RHS- | C] () -- D:\Documents and Settings\All Users\Documents\khx
  [2011/08/19 18:29:09 | 000,000,000 | RHS- | C] () -- D:\Documents and Settings\All Users\Documents\khw
  [2011/08/18 21:55:36 | 000,000,000 | RHS- | C] () -- D:\Documents and Settings\All Users\Documents\rfbu
  [2011/08/18 20:04:55 | 000,000,000 | RHS- | C] () -- D:\Documents and Settings\All Users\Documents\edcf4
  [2011/09/11 13:00:23 | 000,000,000 | ---D | M] -- D:\Documents and Settings\All Users\Application Data\Babylon
  [2011/09/11 13:00:23 | 000,000,000 | ---D | M] -- D:\Documents and Settings\nicole\Application Data\Babylon
  [2011/09/11 16:40:36 | 000,000,000 | ---D | M] -- D:\Documents and Settings\nicole\Application Data\BabylonToolbar
  
  :Files
  ipconfig /flushdns /c
  
  :Commands
  [purity]
  [resethosts]
  [emptytemp]
  [EMPTYFLASH]
  [CREATERESTOREPOINT]
  [Reboot]
• Then click the Run Fix button at the top
  
• Let the program run unhindered, reboot the PC when it is done
• Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

[ladygaga345]

All processes killed
========== OTL ==========
Prefs.js: "Search the web (Babylon)" removed from browser.search.selectedEngine
Prefs.js: "http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=04720ed3000000000000bcaec5b94a37&tlver=1.4.35.10&affID=100489" removed from keyword.URL
D:\Program Files\Mozilla Firefox\searchplugins\babylon.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
D:\Documents and Settings\nicole\Application Data\BabylonToolbar\BabylonToolbar folder moved successfully.
D:\Documents and Settings\nicole\Local Settings\Application Data\Babylon\Setup\HtmlScreens folder moved successfully.
D:\Documents and Settings\nicole\Local Settings\Application Data\Babylon\Setup folder moved successfully.
D:\Documents and Settings\nicole\Local Settings\Application Data\Babylon folder moved successfully.
D:\Documents and Settings\nicole\Application Data\Babylon folder moved successfully.
D:\Documents and Settings\All Users\Application Data\Babylon folder moved successfully.
D:\Documents and Settings\All Users\Documents\xerfoj4 moved successfully.
D:\Documents and Settings\All Users\Documents\khx moved successfully.
D:\Documents and Settings\All Users\Documents\khw moved successfully.
D:\Documents and Settings\All Users\Documents\rfbu moved successfully.
D:\Documents and Settings\All Users\Documents\edcf4 moved successfully.
Folder D:\Documents and Settings\All Users\Application Data\Babylon\ not found.
Folder D:\Documents and Settings\nicole\Application Data\Babylon\ not found.
D:\Documents and Settings\nicole\Application Data\BabylonToolbar folder moved successfully.
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
D:\Documents and Settings\nicole\My Documents\Downloads\cmd.bat deleted successfully.
D:\Documents and Settings\nicole\My Documents\Downloads\cmd.txt deleted successfully.
========== COMMANDS ==========
D:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully
 
[EMPTYTEMP]
 
User: All Users
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: nicole
->Temp folder emptied: 76169630 bytes
->Temporary Internet Files folder emptied: 7902563 bytes
->Java cache emptied: 735487 bytes
->FireFox cache emptied: 48132992 bytes
->Flash cache emptied: 1170 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2402044 bytes
%systemroot%\System32 .tmp files removed: 3385297 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 49635 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 64046146 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 33170 bytes
RecycleBin emptied: 0 bytes
 
Total Files Cleaned = 194.00 mb
 
 
[EMPTYFLASH]
 
User: All Users
 
User: Default User
 
User: LocalService
 
User: NetworkService
 
User: nicole
->Flash cache emptied: 0 bytes
 
Total Flash Files Cleaned = 0.00 mb
 
Restore point Set: OTL Restore Point (0)
 
OTL by OldTimer - Version 3.2.27.0 log created on 09112011_233142

Files\Folders moved on Reboot...
File\Folder D:\Documents and Settings\nicole\Local Settings\Temp\Temporary Internet Files\Content.IE5\E61JBMKA\OCYwjcOyoa4xG397dIZNTE09PVdTaWj7lnMXPoj7PvgOwB9B2Z4Ng0yJW6yn1zg9cK3snwTioP3DLdwauRL3zDhiWq7HJflZU62yvItvrXm75hZ1z8H5_8Ua1b3jXyGznVll80iVf1VtpW8uegrYTBpf8lKiVAyliWmSmUV65Ct[2].png not found!
File move failed. D:\WINDOWS\temp\_avast_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

[essexboy]

Could you now retry yahoo

[ladygaga345]

still cant connect.. and in addtion last day i also cant connect to skype until now/

[essexboy]

Is it the same for both IE and Firefox ?