Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

rootkit infection

Started by Musikman212 , Aug 11 2011 09:22 AM

  • This topic is locked This topic is locked

#16
Musikman212
Posted 13 August 2011 - 01:11 PM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Did it and MS Fix it still won't finish. It now gets as far as processing Microsoft fix it then a window pops up up saying "Windows installer service cannot be accessed. This can occur if Windows Installer is not correctly installed."
The boot scan problem hower4 seems so far to be corrected. so we're making progress here. As far as I can tell at this point the only problem I have left is the automatic update issue.
I must say you have the patience of Job for hanging in here with me. I really appreciate the help. I was almost ready to throw this thing in the trash and just go buy a new one.

I have to wonder what pleasure anybody can possibly get from creating a virus that causes someone they don't even know this kind of grief.
  • 0

Advertisements

#17
Musikman212
Posted 13 August 2011 - 01:24 PM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Ok I did that but still no luck with Automatic updates. MS Fix it Still won't finish. The popup when fixer stalls says that windows installer may be installed incorectly.
  • 0

#18
Musikman212
Posted 13 August 2011 - 01:27 PM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Sorry. Started a second reply then realized the first one had gone up.
  • 0

#19
Essexboy
Posted 13 August 2011 - 02:24 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets now reregister MSI and see if that cures it..

1. Click START, and then click RUN.
2. In the OPEN box, Type msiexec /unreg, and then click OK
3. When this process is complete, click START, and then click RUN.
4. In the OPEN box, type msiexec /regserver, and then click OK.

If that fails

Go to this page and follow the instructions for this section
Method 1: Use the Msconfig tool to confirm that the installer service is running

I have also attached the MSFixit for you to download and extract

  • 0

#20
Musikman212
Posted 14 August 2011 - 12:19 AM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
None of this has helped the automatic update issue. Everything else seems to be working perfectly. MS fixit ran and said it had completed processing.
  • 0

#21
Essexboy
Posted 14 August 2011 - 03:13 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
Did you run the aggressive mode ?

What error do you get when you try to run windows updates ?
  • 0

#22
Musikman212
Posted 14 August 2011 - 08:21 AM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
The error message says, "We're sorry. The security center could not change your automatic updates settings. To try changing these settings yourself go to system in control panel . . . "

When I do that automatic updates appears to turned on, but the security center still says "No."

I ran MS fix it in regular mode and it completed, so I tried again, to run it in aggressive mode, but it didn't give me the option for aggressive mode anymore.
  • 0

#23
Essexboy
Posted 14 August 2011 - 08:32 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK a few further routes to try

Click Start, select Run and type: Services.msc
Press Enter
Locate the - "Automatic Update" entry
Make sure the service is not disabled
If it is Right click and select properties
Set the start type to Automatic and start the service .

If that fails then download the attached zip file to your desktop
Extract the reg file and right clkick - select Merge
Reboot


  • 0

#24
Musikman212
Posted 14 August 2011 - 03:58 PM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Still no luck. Everything except automatic updates appears to be working.
  • 0

#25
Musikman212
Posted 15 August 2011 - 06:59 AM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
I guess I spoke too soon. I started the comp this morning to check here and it did the chkdsk again and it locked up at completion and had to be cold rebooted. Once I did that it booted up normally and as has been the ongoing problem updates are still down and won;t turn on.
  • 0

Advertisements

#26
Essexboy
Posted 15 August 2011 - 11:26 AM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK lets do something a bit left field here

I would like you to uninstalll all IObit programmes from your system
Reboot and let me know if the problems remain

Also could you run a fresh OTL quickscan
  • 0

#27
Musikman212
Posted 15 August 2011 - 12:40 PM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
Nothing seems to have changed. Here's the OTL log file:

OTL logfile created on: 15/08/2011 2:28:36 PM - Run 4
OTL by OldTimer - Version 3.2.26.1 Folder = C:\Documents and Settings\Bren\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.13)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

1014.36 Mb Total Physical Memory | 507.66 Mb Available Physical Memory | 50.05% Memory free
2.38 Gb Paging File | 1.94 Gb Available in Paging File | 81.43% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 149.01 Gb Total Space | 132.19 Gb Free Space | 88.71% Space Free | Partition Type: NTFS

Computer Name: D74KH5K1 | User Name: Bren | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011/08/11 16:53:34 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bren\Desktop\OTL.exe
PRC - [2011/07/06 19:52:38 | 000,449,584 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/07/04 07:43:54 | 003,493,720 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2011/07/04 07:43:51 | 000,042,184 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2011/05/28 14:46:56 | 000,803,728 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
PRC - [2011/05/28 14:46:56 | 000,412,560 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
PRC - [2011/05/28 14:46:56 | 000,353,168 | ---- | M] (IObit) -- C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
PRC - [2010/07/13 02:34:46 | 000,906,648 | ---- | M] (Sony Corporation) -- C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe
PRC - [2010/06/23 13:52:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) -- C:\WINDOWS\system32\ZoneLabs\vsmon.exe
PRC - [2010/06/23 13:51:30 | 001,043,968 | ---- | M] (Check Point Software Technologies LTD) -- C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
PRC - [2009/01/30 01:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe
PRC - [2008/04/14 08:00:00 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


========== Modules (SafeList) ==========

MOD - [2011/08/11 16:53:34 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bren\Desktop\OTL.exe
MOD - [2011/07/04 07:43:51 | 000,199,792 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\snxhk.dll
MOD - [2008/04/14 08:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (Norton Internet Security)
SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011/07/06 19:52:38 | 000,366,640 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/07/04 07:43:51 | 000,042,184 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2011/05/28 14:46:56 | 000,353,168 | ---- | M] (IObit) [Auto | Running] -- C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe -- (AdvancedSystemCareService)
SRV - [2010/06/23 13:52:56 | 002,435,592 | ---- | M] (Check Point Software Technologies LTD) [Auto | Running] -- C:\WINDOWS\System32\ZoneLabs\vsmon.exe -- (vsmon)
SRV - [2010/04/02 22:34:12 | 000,073,728 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\Fsk\SonySCSIHelperService.exe -- (Sony SCSI Helper Service)
SRV - [2009/01/30 01:50:06 | 000,201,968 | ---- | M] (SupportSoft, Inc.) [Auto | Running] -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe -- (sprtsvc_DellSupportCenter) SupportSoft Sprocket Service (DellSupportCenter)


========== Driver Services (SafeList) ==========

DRV - [2011/08/11 19:48:42 | 000,125,056 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\tsk7.tmp -- (Ftdisk)
DRV - [2011/07/22 12:27:02 | 000,012,880 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Documents and Settings\Bren\Local Settings\Temp\SAS_SelfExtract\sasdifsv.sys -- (SASDIFSV)
DRV - [2011/07/12 17:55:22 | 000,067,664 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com) [Kernel | System | Running] -- C:\Documents and Settings\Bren\Local Settings\Temp\SAS_SelfExtract\saskutil.sys -- (SASKUTIL)
DRV - [2011/07/06 19:52:42 | 000,022,712 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/07/04 07:36:43 | 000,441,176 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\WINDOWS\System32\drivers\aswSnx.sys -- (aswSnx)
DRV - [2011/07/04 07:36:32 | 000,309,848 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2011/07/04 07:35:23 | 000,043,608 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2011/07/04 07:35:12 | 000,102,616 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswmon2.sys -- (aswMon2)
DRV - [2011/07/04 07:32:32 | 000,025,432 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2011/07/04 07:32:13 | 000,030,808 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\WINDOWS\System32\drivers\aavmker4.sys -- (Aavmker4)
DRV - [2011/07/04 07:32:12 | 000,019,544 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2010/05/13 10:02:32 | 000,532,224 | ---- | M] (Check Point Software Technologies LTD) [Kernel | System | Running] -- C:\WINDOWS\system32\vsdatant.sys -- (vsdatant)
DRV - [2009/05/11 17:11:18 | 000,133,632 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\OA012Ufd.sys -- (OA012Ufd)
DRV - [2009/05/11 17:11:16 | 000,272,032 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\OA012Vid.sys -- (OA012Vid)
DRV - [2009/05/11 17:11:14 | 000,135,168 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\OA012Afx.sys -- (OA012Afx)
DRV - [2009/03/15 18:48:00 | 000,162,816 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtsUStor.sys -- (RSUSBSTOR)
DRV - [2009/03/15 18:44:18 | 000,120,064 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2009/03/15 17:32:18 | 005,032,448 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009/03/15 17:32:08 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009/03/15 17:31:54 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009/03/12 12:36:38 | 000,143,840 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\CtClsFlt.sys -- (CtClsFlt)
DRV - [2009/01/06 19:53:10 | 001,391,104 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2008/11/04 21:24:58 | 000,014,248 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\EMSC.SYS -- (EMSC)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = http://g.msn.com/USCON/23
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.msn.com/sphome.aspx
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = http://g.msn.com/USCON/23

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://g.msn.com/USCON/23
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://search.msn.com/sphome.aspx
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.live.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\URLSearchHook: {437c4386-9237-441f-a940-009430030ee0} - C:\Program Files\Messenger_Plus_Live_CA-EN\prxtbMes0.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.facebook.com/"

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@checkpoint.com/FFApi: C:\Program Files\CheckPoint\ZAForceField\TrustChecker\bin\npFFApi.dll File not found
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.50524.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8117.0416: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@sony.com/eBookLibrary: C:\Program Files\Sony\Reader\Data\bin\npebldetectmoz.dll (Sony Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/06/22 15:38:38 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 5.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/08/12 21:45:18 | 000,000,000 | ---D | M]

[2010/04/08 13:43:03 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bren\Application Data\Mozilla\Extensions
[2011/08/10 19:28:35 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Bren\Application Data\Mozilla\Firefox\Profiles\3g0ip71m.default\extensions
[2010/08/27 21:31:40 | 000,002,566 | ---- | M] () -- C:\Documents and Settings\Bren\Application Data\Mozilla\Firefox\Profiles\3g0ip71m.default\searchplugins\askcom.xml
[2011/07/31 16:00:52 | 000,000,953 | ---- | M] () -- C:\Documents and Settings\Bren\Application Data\Mozilla\Firefox\Profiles\3g0ip71m.default\searchplugins\conduit.xml
[2010/04/12 14:01:56 | 000,002,480 | ---- | M] () -- C:\Documents and Settings\Bren\Application Data\Mozilla\Firefox\Profiles\3g0ip71m.default\searchplugins\ShareazaWebSearch.xml
[2011/08/10 18:40:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
File not found (No name found) --
[2009/07/13 12:31:54 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2009/09/12 08:07:32 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2011/06/16 00:17:34 | 000,142,296 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2010/01/01 04:00:00 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2010/04/12 14:01:56 | 000,002,480 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\ShareazaWebSearch.xml

O1 HOSTS File: ([2011/08/11 19:23:08 | 000,000,098 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\Hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O2 - BHO: (Messenger Plus Live CA-EN Toolbar) - {437c4386-9237-441f-a940-009430030ee0} - C:\Program Files\Messenger_Plus_Live_CA-EN\prxtbMes0.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKLM\..\Toolbar: (Messenger Plus Live CA-EN Toolbar) - {437c4386-9237-441f-a940-009430030ee0} - C:\Program Files\Messenger_Plus_Live_CA-EN\prxtbMes0.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Conduit Engine ) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (Messenger Plus Live CA-EN Toolbar) - {437C4386-9237-441F-A940-009430030EE0} - C:\Program Files\Messenger_Plus_Live_CA-EN\prxtbMes0.dll (Conduit Ltd.)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\ALCMTR.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [dellsupportcenter] File not found
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [Reader Library Launcher] C:\Program Files\Sony\Reader\Data\bin\launcher\Reader Library Launcher.exe (Sony Corporation)
O4 - HKLM..\Run: [ZoneAlarm Client] C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe (Check Point Software Technologies LTD)
O4 - HKCU..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe (IObit)
O4 - HKLM..\RunOnce: [AvgUninstallURL] C:\WINDOWS\System32\cmd.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_15)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/04/25 21:45:49 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/08/14 10:44:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bren\Application Data\SUPERAntiSpyware.com
[2011/08/14 10:44:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
[2011/08/14 02:02:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2011/08/12 23:15:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bren\Local Settings\Application Data\Temp
[2011/08/12 21:50:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2011/08/12 21:43:43 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2011/08/12 15:34:42 | 009,466,208 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Bren\Desktop\mbam-setup.exe
[2011/08/11 19:48:42 | 000,094,512 | ---- | C] (Kaspersky Lab, GERT) -- C:\WINDOWS\System32\drivers\95655013.sys
[2011/08/11 18:28:18 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/08/11 17:13:30 | 001,915,904 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Bren\Desktop\aswMBR.exe
[2011/08/11 16:53:29 | 000,579,584 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bren\Desktop\OTL.exe
[2011/08/11 16:33:10 | 001,404,720 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Bren\Desktop\TDSSKiller.exe
[2011/08/10 20:54:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Advanced SystemCare 4
[2011/08/10 20:53:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\IObit
[2011/08/10 20:51:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bren\Application Data\IObit
[2011/08/10 20:51:05 | 000,000,000 | ---D | C] -- C:\Program Files\IObit
[2011/08/10 16:53:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bren\Application Data\Malwarebytes
[2011/08/10 16:52:32 | 000,041,272 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/08/10 16:52:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/08/10 16:52:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/08/10 16:52:26 | 000,022,712 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/08/10 16:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/08/10 09:53:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bren\Application Data\AVG
[2011/08/10 09:51:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2011/08/09 22:49:27 | 000,441,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSnx.sys
[2011/08/09 22:05:04 | 000,019,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2011/08/09 22:05:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\avast! Free Antivirus
[2011/08/09 22:05:03 | 000,309,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2011/08/09 22:05:02 | 000,025,432 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2011/08/09 22:05:00 | 000,043,608 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2011/08/09 22:04:58 | 000,102,616 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2011/08/09 22:04:58 | 000,096,344 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2011/08/09 22:04:58 | 000,030,808 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2011/08/09 22:04:40 | 000,199,304 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2011/08/09 22:04:40 | 000,040,112 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2011/08/09 22:04:33 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2011/08/09 22:04:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011/08/09 21:26:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG PC Tuneup 2011
[2011/08/09 20:34:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Bren\My Documents\My Chat Logs
[2011/08/09 10:19:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Identities
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011/08/15 14:25:35 | 000,000,268 | ---- | M] () -- C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job
[2011/08/15 14:25:18 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011/08/15 14:25:16 | 1063,702,528 | -HS- | M] () -- C:\hiberfil.sys
[2011/08/14 17:51:19 | 000,000,423 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\updaterestore.zip
[2011/08/14 10:43:02 | 016,927,136 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\SAS_70688928.COM
[2011/08/14 02:10:06 | 000,188,202 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\MicrosoftFixit50199.zip
[2011/08/14 02:04:30 | 000,000,211 | RHS- | M] () -- C:\boot.ini
[2011/08/12 21:45:18 | 000,001,736 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/08/12 20:23:38 | 003,327,000 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\WindowsXP-KB942288-v3-x86.exe
[2011/08/12 15:36:15 | 000,000,786 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/12 15:34:43 | 009,466,208 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Bren\Desktop\mbam-setup.exe
[2011/08/11 19:48:42 | 000,094,512 | ---- | M] (Kaspersky Lab, GERT) -- C:\WINDOWS\System32\drivers\95655013.sys
[2011/08/11 19:46:16 | 001,388,507 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\tdsskiller.zip
[2011/08/11 19:23:08 | 000,000,098 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\Hosts
[2011/08/11 17:13:38 | 001,915,904 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Bren\Desktop\aswMBR.exe
[2011/08/11 16:53:34 | 000,579,584 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bren\Desktop\OTL.exe
[2011/08/11 16:33:10 | 001,404,720 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Bren\Desktop\TDSSKiller.exe
[2011/08/10 20:54:15 | 000,000,898 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Quick Care.lnk
[2011/08/10 20:54:14 | 000,000,894 | ---- | M] () -- C:\Documents and Settings\Bren\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare 4.lnk
[2011/08/10 20:54:14 | 000,000,876 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare 4.lnk
[2011/08/09 22:49:27 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2011/08/09 22:05:04 | 000,001,702 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/08/09 21:26:09 | 000,000,850 | ---- | M] () -- C:\Documents and Settings\Bren\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG PC Tuneup 2011.lnk
[2011/08/09 21:26:09 | 000,000,832 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\AVG PC Tuneup 2011.lnk
[2011/08/09 20:09:03 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\Shortcut to msnmsgr.lnk
[2011/08/09 20:09:03 | 000,000,733 | ---- | M] () -- C:\Documents and Settings\Bren\Desktop\Copy of Shortcut to msnmsgr.lnk
[2011/08/09 12:39:40 | 000,464,078 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011/08/09 12:39:40 | 000,079,188 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011/08/09 10:06:17 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011/08/14 17:51:17 | 000,000,423 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\updaterestore.zip
[2011/08/14 10:42:46 | 016,927,136 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\SAS_70688928.COM
[2011/08/14 02:10:03 | 000,188,202 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\MicrosoftFixit50199.zip
[2011/08/12 21:45:18 | 000,002,315 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader X.lnk
[2011/08/12 21:45:18 | 000,001,736 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader X.lnk
[2011/08/12 20:23:37 | 003,327,000 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\WindowsXP-KB942288-v3-x86.exe
[2011/08/12 08:53:07 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\Copy of Shortcut to msnmsgr.lnk
[2011/08/11 19:46:15 | 001,388,507 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\tdsskiller.zip
[2011/08/11 10:10:07 | 1063,702,528 | -HS- | C] () -- C:\hiberfil.sys
[2011/08/10 20:55:43 | 000,000,268 | ---- | C] () -- C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job
[2011/08/10 20:54:15 | 000,000,898 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Quick Care.lnk
[2011/08/10 20:54:14 | 000,000,894 | ---- | C] () -- C:\Documents and Settings\Bren\Application Data\Microsoft\Internet Explorer\Quick Launch\Advanced SystemCare 4.lnk
[2011/08/10 20:54:14 | 000,000,876 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Advanced SystemCare 4.lnk
[2011/08/10 16:52:33 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/08/09 22:05:04 | 000,001,702 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk
[2011/08/09 21:26:09 | 000,000,850 | ---- | C] () -- C:\Documents and Settings\Bren\Application Data\Microsoft\Internet Explorer\Quick Launch\AVG PC Tuneup 2011.lnk
[2011/08/09 21:26:09 | 000,000,832 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\AVG PC Tuneup 2011.lnk
[2011/08/09 20:09:03 | 000,000,733 | ---- | C] () -- C:\Documents and Settings\Bren\Desktop\Shortcut to msnmsgr.lnk
[2011/02/05 16:52:07 | 000,061,678 | ---- | C] () -- C:\Documents and Settings\Bren\Application Data\PFP110JPR.{PB
[2011/02/05 16:52:07 | 000,012,358 | ---- | C] () -- C:\Documents and Settings\Bren\Application Data\PFP110JCM.{PB
[2011/02/05 16:46:42 | 000,000,258 | ---- | C] () -- C:\WINDOWS\System32\BDEMERGE.INI
[2010/11/24 12:58:10 | 000,000,112 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hxda5IG.dat
[2010/05/06 11:38:19 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Bren\Application Data\wklnhst.dat
[2009/09/06 10:52:42 | 000,007,168 | ---- | C] () -- C:\Documents and Settings\Bren\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/08/31 21:49:06 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2009/08/31 21:36:35 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/07/13 15:11:31 | 000,077,824 | ---- | C] () -- C:\WINDOWS\setpwr32.exe
[2009/07/13 15:11:20 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll
[2009/07/13 15:08:21 | 000,001,196 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2009/07/13 12:59:23 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2009/07/13 12:53:02 | 000,143,360 | ---- | C] () -- C:\WINDOWS\System32\preflib.dll
[2009/07/13 12:53:00 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE
[2009/07/13 12:52:59 | 000,753,664 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2009/07/13 12:44:08 | 000,000,075 | RHS- | C] () -- C:\WINDOWS\CT4CET.bin
[2009/07/13 12:32:41 | 000,577,536 | ---- | C] () -- C:\WINDOWS\System32\EMSC.DLL
[2008/05/26 22:59:42 | 000,018,904 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschematrivial.bin
[2008/05/26 22:59:40 | 000,106,605 | ---- | C] () -- C:\WINDOWS\System32\structuredqueryschema.bin
[2008/04/25 21:47:34 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2008/04/25 21:44:05 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2008/04/25 21:42:57 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2008/04/25 16:33:19 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008/04/25 16:33:18 | 000,464,078 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008/04/25 16:33:18 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008/04/25 16:33:18 | 000,079,188 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008/04/25 16:33:18 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008/04/25 16:33:17 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008/04/25 16:33:17 | 000,004,627 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008/04/25 16:33:16 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2008/04/25 16:33:14 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008/04/25 16:33:14 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008/04/25 16:33:10 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008/04/25 16:33:06 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008/04/25 09:39:19 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2008/04/25 09:38:33 | 000,239,144 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2007/09/27 11:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 11:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 11:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini

========== LOP Check ==========

[2011/08/09 22:04:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2011/08/09 21:55:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\avg9
[2011/05/17 16:48:53 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2011/08/12 16:14:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\IObit
[2010/04/09 22:29:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\iWin Games
[2011/02/05 18:11:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\kinoma
[2009/12/23 21:31:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Messenger Plus!
[2009/07/13 12:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PC-Doctor
[2009/07/13 12:39:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PCDr
[2009/07/13 12:39:37 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\SupportSoft
[2011/08/10 12:14:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\TEMP
[2009/07/13 12:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Vista32
[2009/07/13 12:32:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Vista64
[2009/07/13 12:33:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\XP32
[2010/04/27 12:52:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
[2011/08/10 11:11:48 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\AVG
[2010/09/19 00:02:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\calibre
[2010/09/19 11:21:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\CheckPoint
[2010/08/28 00:08:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\FrostWire
[2011/08/10 20:53:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\IObit
[2010/09/19 00:17:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\Mobipocket
[2011/08/09 15:38:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\Shareaza
[2010/05/06 11:38:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\Template
[2009/07/13 12:31:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\Windows Desktop Search
[2009/08/31 20:15:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Bren\Application Data\Windows Search
[2011/08/15 14:25:35 | 000,000,268 | ---- | M] () -- C:\WINDOWS\Tasks\ASC4_PerformanceMonitor.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 16 bytes -> C:\Documents and Settings\Bren\My Documents\Shareaza Downloads:Shareaza.GUID
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0B4227B4

< End of report >

Edited by Musikman212, 15 August 2011 - 12:40 PM.

  • 0

#28
Essexboy
Posted 15 August 2011 - 12:59 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
OK onward and upward as I find a few more ways of trying to fix this :)

First lets repair the BITS

Download the attached zip file and extract bitsadmin.exe to your desktop
Run the programmme and reboot on completion


Then dowload the dial-a-fix zip file and extract then run the programme

Select WU/WUAU fix windows update

  • 0

#29
Musikman212
Posted 15 August 2011 - 02:03 PM

Musikman212

    Member

  • Topic Starter
  • Member
  • PipPip
  • 63 posts
How long should Dial-a-fix take to run?
  • 0

#30
Essexboy
Posted 15 August 2011 - 02:18 PM

Essexboy

    GeekU Moderator

  • Retired Staff
  • 69,964 posts
no more than two or three minutes has it hung ?
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP