Malware problems with my PC

Status
Not open for further replies.
Malware Problems with My PC

Hi Juliet,
Firstly there were some errors that Windows Repair reported,so I pasted the log:-

System Variables
--------------------------------------------------------------------------------
OS: Windows Vista (TM) Home Premium
OS Architecture: 32-bit
OS Version: 6.0.6002
OS Service Pack: Service Pack 2
Computer Name: RODLEY
Windows Drive: C:\
Windows Path: C:\Windows
Current Profile: C:\Users\Stephen
Current Profile SID: S-1-5-21-3375399300-159844686-3421529289-1000
Current Profile Classes: S-1-5-21-3375399300-159844686-3421529289-1000_Classes
Profiles Location: C:\Users
Profiles Location 2: C:\Windows\ServiceProfiles
Local Settings AppData: C:\Users\Stephen\AppData\Local
--------------------------------------------------------------------------------

System Information
--------------------------------------------------------------------------------
System Up Time: 0 Days 00:35:17

Process Count: 62
Commit Total: 1.01 GB
Commit Limit: 4.23 GB
Commit Peak: 1.26 GB
Handle Count: 16891
Kernel Total: 198.27 MB
Kernel Paged: 143.95 MB
Kernel Non Paged: 54.32 MB
System Cache: 1.37 GB
Thread Count: 740
--------------------------------------------------------------------------------

Memory Before Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 2.00 GB
Memory Used: 1.00 GB(50.3163%)
Memory Avail.: 1,016.14 MB
--------------------------------------------------------------------------------

Cleaning Memory Before Starting Repairs...

Memory After Cleaning with CleanMem
--------------------------------------------------------------------------------
Memory Total: 2.00 GB
Memory Used: 675.87 MB(33.0462%)
Memory Avail.: 1.34 GB
--------------------------------------------------------------------------------

Starting Repairs...
Start (23/03/2014 10:41:45)

01 - Reset Registry Permissions 01/03
HKEY_CURRENT_USER & Sub Keys
Start (23/03/2014 10:41:45)
Running Repair Under Current User Account
Done (23/03/2014 10:42:16)

01 - Reset Registry Permissions 02/03
HKEY_LOCAL_MACHINE & Sub Keys
Start (23/03/2014 10:42:16)
Running Repair Under System Account
Done (23/03/2014 10:46:19)

01 - Reset Registry Permissions 03/03
HKEY_CLASSES_ROOT & Sub Keys
Start (23/03/2014 10:46:19)
Running Repair Under System Account
Done (23/03/2014 10:46:44)

02 - Reset File Permissions: C:
C: & Sub Folders
Start (23/03/2014 10:46:44)
Running Repair Under System Account
Done (23/03/2014 10:55:09)

02 - Reset File Permissions: D:
D: & Sub Folders
Start (23/03/2014 10:55:09)
Running Repair Under System Account
Done (23/03/2014 10:55:20)

02 - Reset File Permissions: All Profiles
C:\Users & Sub Folders
Start (23/03/2014 10:55:20)
Running Repair Under System Account
Done (23/03/2014 11:00:50)

02 - Reset File Permissions: Current Profile
C:\Users\Stephen & Sub Folders
Start (23/03/2014 11:00:50)
Running Repair Under System Account
Done (23/03/2014 11:01:58)

02 - Reset File Permissions: Cleanup
Repairing Restricted Folders Permissions To Avoid Infinite Loops
Start (23/03/2014 11:01:58)
Running Repair Under System Account
Processing ACL of: <\\?\C:\Documents and Settings>
Reading the SD from <\\?\C:\Documents and Settings> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\ProgramData\Application Data>
Reading the SD from <\\?\C:\ProgramData\Application Data> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\ProgramData\Desktop>
Reading the SD from <\\?\C:\ProgramData\Desktop> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\ProgramData\Documents>
Reading the SD from <\\?\C:\ProgramData\Documents> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\ProgramData\Favorites>
Reading the SD from <\\?\C:\ProgramData\Favorites> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\ProgramData\Start Menu>
Reading the SD from <\\?\C:\ProgramData\Start Menu> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\ProgramData\Templates>
Reading the SD from <\\?\C:\ProgramData\Templates> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\All Users\Application Data>
Reading the SD from <\\?\C:\Users\All Users\Application Data> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\All Users\Desktop>
Reading the SD from <\\?\C:\Users\All Users\Desktop> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\All Users\Documents>
Reading the SD from <\\?\C:\Users\All Users\Documents> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\All Users\Favorites>
Reading the SD from <\\?\C:\Users\All Users\Favorites> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\All Users\Start Menu>
Reading the SD from <\\?\C:\Users\All Users\Start Menu> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\All Users\Templates>
Reading the SD from <\\?\C:\Users\All Users\Templates> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default User>
Reading the SD from <\\?\C:\Users\Default User> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\Application Data>
Reading the SD from <\\?\C:\Users\Default\Application Data> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\Cookies>
Reading the SD from <\\?\C:\Users\Default\Cookies> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\Local Settings>
Reading the SD from <\\?\C:\Users\Default\Local Settings> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\My Documents>
Reading the SD from <\\?\C:\Users\Default\My Documents> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\NetHood>
Reading the SD from <\\?\C:\Users\Default\NetHood> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\PrintHood>
Reading the SD from <\\?\C:\Users\Default\PrintHood> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\Recent>
Reading the SD from <\\?\C:\Users\Default\Recent> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\SendTo>
Reading the SD from <\\?\C:\Users\Default\SendTo> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\Start Menu>
Reading the SD from <\\?\C:\Users\Default\Start Menu> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\Templates>
Reading the SD from <\\?\C:\Users\Default\Templates> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\AppData\Local\Application Data>
Reading the SD from <\\?\C:\Users\Default\AppData\Local\Application Data> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\AppData\Local\History>
Reading the SD from <\\?\C:\Users\Default\AppData\Local\History> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\AppData\Local\Temporary Internet Files>
Reading the SD from <\\?\C:\Users\Default\AppData\Local\Temporary Internet Files> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Default\Documents\My Music>
Reading the SD from <\\?\C:\Users\Default\Documents\My Music> failed with: The system cannot find the path specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the path specified.

Processing ACL of: <\\?\C:\Users\Default\Documents\My Pictures>
Reading the SD from <\\?\C:\Users\Default\Documents\My Pictures> failed with: The system cannot find the path specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the path specified.

Processing ACL of: <\\?\C:\Users\Default\Documents\My Videos>
Reading the SD from <\\?\C:\Users\Default\Documents\My Videos> failed with: The system cannot find the path specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the path specified.

Processing ACL of: <\\?\C:\Users\Public\Documents\My Music>
Reading the SD from <\\?\C:\Users\Public\Documents\My Music> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Public\Documents\My Pictures>
Reading the SD from <\\?\C:\Users\Public\Documents\My Pictures> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Public\Documents\My Videos>
Reading the SD from <\\?\C:\Users\Public\Documents\My Videos> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Application Data>
Reading the SD from <\\?\C:\Users\Stephen\Application Data> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Cookies>
Reading the SD from <\\?\C:\Users\Stephen\Cookies> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Local Settings>
Reading the SD from <\\?\C:\Users\Stephen\Local Settings> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\My Documents>
Reading the SD from <\\?\C:\Users\Stephen\My Documents> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\NetHood>
Reading the SD from <\\?\C:\Users\Stephen\NetHood> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\PrintHood>
Reading the SD from <\\?\C:\Users\Stephen\PrintHood> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Recent>
Reading the SD from <\\?\C:\Users\Stephen\Recent> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\SendTo>
Reading the SD from <\\?\C:\Users\Stephen\SendTo> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Start Menu>
Reading the SD from <\\?\C:\Users\Stephen\Start Menu> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Templates>
Reading the SD from <\\?\C:\Users\Stephen\Templates> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\AppData\Local\Application Data>
Reading the SD from <\\?\C:\Users\Stephen\AppData\Local\Application Data> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\AppData\Local\History>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Stephen\AppData\Local\Temporary Internet Files>

SetACL finished successfully.
Processing ACL of: <\\?\C:\Users\Stephen\Documents\My Music>
Reading the SD from <\\?\C:\Users\Stephen\Documents\My Music> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Documents\My Pictures>
Reading the SD from <\\?\C:\Users\Stephen\Documents\My Pictures> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Processing ACL of: <\\?\C:\Users\Stephen\Documents\My Videos>
Reading the SD from <\\?\C:\Users\Stephen\Documents\My Videos> failed with: The system cannot find the file specified.


SetACL finished with error(s):
SetACL error message: The call to GetNamedSecurityInfo () failed
Operating system error message: The system cannot find the file specified.

Done (23/03/2014 11:02:09)

03 - Register System Files
Start (23/03/2014 11:02:09)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:02:55)

04 - Repair WMI
Start (23/03/2014 11:02:55)
Running Repair Under Current User Account
Done (23/03/2014 11:05:10)

05 - Repair Windows Firewall
Start (23/03/2014 11:05:10)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:05:45)

06 - Repair Internet Explorer
Start (23/03/2014 11:05:45)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:06:07)

08 - Repair Hosts File
Start (23/03/2014 11:06:07)
Running Repair Under System Account
Done (23/03/2014 11:06:10)

09 - Remove Policies Set By Infections
Start (23/03/2014 11:06:10)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:06:14)

11 - Repair Icons
Start (23/03/2014 11:06:14)
Running Repair Under Current User Account
Done (23/03/2014 11:06:17)

12 - Repair Winsock & DNS Cache
Start (23/03/2014 11:06:17)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:06:42)

13 - Remove Temp Files
Start (23/03/2014 11:06:42)
Running Repair Under System Account
Done (23/03/2014 11:06:44)

14 - Repair Proxy Settings
Start (23/03/2014 11:06:45)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:06:49)

15 - Unhide Non System Files
Start (23/03/2014 11:06:49)
C:\ - Total Files Unhidden: 107 - Check Unhidden_Files.txt for list of files unhidden
D:\ - Total Files Unhidden: 37 - Check Unhidden_Files.txt for list of files unhidden
Done (23/03/2014 11:08:17)

16 - Repair Windows Updates
Start (23/03/2014 11:08:17)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:08:37)

19 - Repair Windows Sidebar/Gadgets
Start (23/03/2014 11:08:37)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:08:41)

20 - Repair MSI (Windows Installer)
Start (23/03/2014 11:08:41)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:08:51)

22.01 - Repair bat Association
Start (23/03/2014 11:08:51)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:08:56)

22.02 - Repair cmd Association
Start (23/03/2014 11:08:56)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:01)

22.03 - Repair com Association
Start (23/03/2014 11:09:01)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:06)

22.04 - Repair Directory Association
Start (23/03/2014 11:09:06)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:10)

22.05 - Repair Drive Association
Start (23/03/2014 11:09:10)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:15)

22.06 - Repair exe Association
Start (23/03/2014 11:09:15)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:20)

22.07 - Repair Folder Association
Start (23/03/2014 11:09:20)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:24)

22.08 - Repair inf Association
Start (23/03/2014 11:09:25)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:29)

22.09 - Repair lnk (Shortcuts) Association
Start (23/03/2014 11:09:29)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:34)

22.10 - Repair msc Association
Start (23/03/2014 11:09:34)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:39)

22.11 - Repair reg Association
Start (23/03/2014 11:09:39)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:43)

22.12 - Repair scr Association
Start (23/03/2014 11:09:44)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:48)

23 - Repair Windows Safe Mode
Start (23/03/2014 11:09:48)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:09:53)

25 - Restore Important Windows Services
Start (23/03/2014 11:09:53)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:10:11)

26 - Set Windows Services To Default Startup
Start (23/03/2014 11:10:11)
Running Repair Under Current User Account
Running Repair Under System Account
Done (23/03/2014 11:10:15)

Cleaning up empty logs...

All Selected Repairs Done.
Done (23/03/2014 11:10:15)
Total Repair Time: 00:28:32


...YOU MUST RESTART YOUR SYSTEM...
Running Repair Under Current User Account

The AVG removal tool worked,The folders I mentioned are gone.
Security Check logs:-

Results of screen317's Security Check version 0.99.81
Windows Vista Service Pack 2 x86 (UAC is enabled)
Internet Explorer 9
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Disabled!
avast! Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
MVPS Hosts File
SpywareBlaster 5.0
Spybot - Search & Destroy
Malwarebytes Anti-Malware version 1.75.0.1300
Java(TM) 6 Update 22
Java(TM) 6 Update 37
Java 7 Update 51
Java(TM) SE Runtime Environment 6
Adobe Flash Player 12.0.0.77
Adobe Reader 8 Adobe Reader out of Date!
Adobe Reader 10.1.9 Adobe Reader out of Date!
Mozilla Firefox 27.0.1 Firefox out of Date!
Google Chrome 33.0.1750.146
Google Chrome 33.0.1750.154
````````Process Check: objlist.exe by Laurent````````
Spybot Teatimer.exe is disabled!
Privatefirewall 6.1 pfsvc.exe
Privacyware Privatefirewall 7.0 PFGUI.exe
system32 AvastSvc.exe -?-
AVAST Software Avast AvastUI.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C: %
````````````````````End of Log``````````````````````
Hope These Scans Help.
Regards,Laudorum
 
I see damage to Windows system files probably brought on from infections. Have also seen these types of errors made from some people using registry cleaning tools.

Let's try a couple of things.

uninstall some programs

NOTE** Because of the cleanup process some of the programs I have listed may not be in add/remove anymore this is fine just move to the next item on the list.

You can remove these programs using add/remove or you can use the free uninstaller from Revo (it does allot better of a job

Programs to remove
  • Malwarebytes Anti-Malware version 1.75.0.1300 <-- is out of date, below I'll supply new instructions
  • Java(TM) 6 Update 22
  • Java(TM) 6 Update 37
  • Java(TM) SE Runtime Environment 6
  • Adobe Flash Player 12.0.0.7
  • Adobe Reader 8 *Adobe Reader out of Date!
  • Adobe Reader 10.1.9 *Adobe Reader out of Date!

Please download and install Revo Uninstaller Free
  • Double click Revo Uninstaller to run it.
  • From the list of programs double click on The Program to remove
  • When prompted if you want to uninstall click Yes.
  • Be sure the Moderate option is selected then click Next.
  • The program will run, If prompted again click Yes
  • when the built-in uninstaller is finished click on Next.
  • Once the program has searched for leftovers click Next.
  • Check/tick the bolded items only on the list then click Delete
  • when prompted click on Yes and then on next.
  • put a check on any folders that are found and select delete
  • when prompted select yes then on next
  • Once done click Finish.

*******************

Update Adobe reader

Recently there have been vulnerabilities detected in older versions of Adobe Reader. It is strongly suggested that you update to the current version.

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

If you don't like Adobe Reader (53 MB), you can download Foxit PDF Reader(7 MB) from here. It's a much smaller file to download and uses a lot less resources than Adobe Reader.

Note: When installing FoxitReader, be careful not to install anything to do with AskBar.




************

Adobe Flash Player is out of date!

Please download and install the latest version from the links below:

Adobe Flash Player 12.0.0.77 Final for (Internet Explorer)
Adobe Flash Player 12.0.0.77 Final for (Firefox, Safari, Opera)
Note: Your browsers should be closed before proceeding with the installation process.

************************

Install Java:

Please go here to install Java
  • click on the Free Java Download Button
  • click on Agree and start Free download
  • click on Run
  • click on run again
  • click on install
  • when install is complete click on close

*********************************

  • Step #7 Run ESET Services repair tool
    • Please download ESET Services Repair Tool and save it to your Desktop;
    • Right click and choose Run as administrator;
    • If security notifications appear, click Continue or Run and then click Yes when asked if you want to proceed;
    • Once the tool has finished, you will be prompted to restart your computer. Click Yes to restart.



then run the system file checker again

Go to Start and type in cmd
Right-click on the cmd icon above, and click Run As Administrator
At the command prompt, type sfc /scannow, and then press ENTER.
Note This command may take several minutes to finish. You may be prompted to provide Windows installation source files when you run the sfc /scannow command.
At the command prompt, type exit, and then press ENTER to close the command prompt.



do you have your installation CD?

***************

new Updated Malwarebytes Anti-Malware tool.

Please download Malwarebytes Anti-Malware to your desktop
Install the progamme and select update
Once it has updated select Settings > Detection and Protection
Tick Scan for rootkits
MBAMsettings.JPG


Go back to the Dashboard and select Scan Now

MBAMScan.JPG


If threats are detected, click the Apply Actions button, MBAM will ask for a reboot.

MBAMReboot.JPG


MBAMLog.JPG


On completion of the scan (or after the reboot) select View Detailed Log
Select Export > Select text file and save to the desktop
Attach/Post that log
 
Last edited:
Malware Problems with My PC

Juliet, I do not have,and never have had a boot disc for Vista,It came pre-installed by Dell.
 
Malware Problems with My PC

Hi Again,I havn't got that far yet Juliet.I am having trouble deleting MBAM with Revo,I got the dreaded error 5-Access is denied.I have manually deleted almost everything apart from :-vojfezar.thm in the MBAM Prog file.I can't change the permissions or delete.have tried with spybot,but no luck.Do you know of anything else I could try,or shall I just leave it?
Regards
 
Malware Problems with My PC

Just to confirm I have deleted all items on list apart from MBAM.
I also have some other files I cannot open:-c\users\stephen\app data\local\temp internet files and c\users\rodley\app data\local\temp internet files.
This is the error 5 alert again.
Don't know if these are important,but ithought it best youknow.
Regards
 
Malware Problems with My PC

java and Adobe are now updated.

ESET Services Repair Tool log:-

Log Opened: 2014-03-28 @ 23:01:26
23:01:26 - -----------------
23:01:26 - | Begin Logging |
23:01:26 - -----------------
23:01:26 - Fix started on a WIN_VISTA X86 computer
23:01:26 - Prep in progress. Please Wait.
23:01:29 - Prep complete
23:01:29 - Repairing Services Now. Please wait...
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\BFE.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\SubLayer>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Provider>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent\Filter>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\Persistent>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime\Filter>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy\BootTime>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters\Policy>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE\Parameters>
ERROR: Writing SD to <machine\System\CurrentControlset\Services\BFE\Parameters> failed with: Access is denied.
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BFE>
ERROR: Writing SD to <machine\System\CurrentControlset\Services\BFE> failed with: Access is denied.

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\BITS.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Performance>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\BITS>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\iphlpsvc.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Teredo>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\Interfaces>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc\config>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\iphlpsvc>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\MpsSvc.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\Teredo>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords\RPC-EPMap>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters\PortKeywords>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\MpsSvc>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\SharedAccess.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static\System>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Static>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\GloballyOpenPorts>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters\FirewallPolicy>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Epoch>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\StandardProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\PublicProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\FirewallRules>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile\Logging>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy\DomainProfile>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults\FirewallPolicy>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess\Defaults>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\SharedAccess>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\WinDefend.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\WinDefend>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\wscsvc.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wscsvc>

SetACL finished successfully.
INFO: The restore action ignores the object name parameter (paths are read from the backup file). However, other actions that require the object name may be combined with -restore.
INFORMATION: Input file for restore operation opened: '.\Vista\wuauserv.sddl'
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Security>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv\Parameters>
INFORMATION: Restoring SD of: <machine\System\CurrentControlset\Services\wuauserv>

SetACL finished successfully.
23:01:57 - Services Repair Complete.
23:02:03 - Reboot Initiated

System File Check:-No Integrity Violations

MBAM log:-

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 29/03/2014
Scan Time: 00:21:21
Logfile: Mbam log 03 29 2014.txt
Administrator: Yes

Version: 2.00.0.1000
Malware Database: v2014.03.28.09
Rootkit Database: v2014.03.27.01
License: Free
Malware Protection: Disabled
Malicious Website Protection: Disabled
Chameleon: Disabled

OS: Windows Vista Service Pack 2
CPU: x86
File System: NTFS
User: Stephen

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 250031
Time Elapsed: 19 min, 1 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Enabled
Shuriken: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 0
(No malicious items detected)

Registry Values: 0
(No malicious items detected)

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 0
(No malicious items detected)

Physical Sectors: 0
(No malicious items detected)


(end)
I look forward to your reply.
Regards,Laudorum
 
Download

http://download.bleepingcomputer.com/win-services/vista/BFE.reg



right click or double click on the reg file, You should get a UAC prompt now

Click YES & Restart your PC

Now,Press Windows+ R key and type

regedit and click ok

go to

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\BFE

Right click on it-permissions

Click on ADD and type

Everyone and click ok

Now Click on Everyone

Below you have permission for users

Select full control and click ok


Now,open RUN and type

services.msc and click ok

If you receive the User Account Control prompt, click Yes or Continue.
In the Services window, under the Name column, locate and double-click Base Filtering Engine.
To the right of Startup type, verify that Automatic appears.

If Startup type is not Automatic, then in the drop-down list, click Automatic.
To the right of Service Status, verify that Started appears.

If the Service status is not Started, then click Start.
Click OK.
Exit the Services window.
Restart the computer.

How is the computer running today?
 
Malware Problems with My PC

Hi Juliet,I've done that BFEreg thing you asked in your last post,although I've no idea what the purpose was! generally I stay away from the registry,as it's so easy do something dumb and end up with a PC which refuses to work.
I'm pleased to say that the bootup time is a lot quicker,and the PC is much less sluggish and is approaching the kind of response I enjoyed previously,So much kudos to you, and many thanks for leading a paranoid senior threw the various stages of repair.
I assume i need to do some deleting of the many programs we've used.
Kindest Regards,Laudorum
 
Your infection had corrupted system files that we were lucky being able to repair a few. I don't like the registry either because 1 small mistake can render your machine into an expensive door stop.
If I have lessen your stress then I did my job, and I am happy I could help you.

**
If you would like to use the program I'm about to post to disable unneeded start up entries you may still be able to quicken even more at bootup time.

You can research each entry Here http://www.systemlookup.com/lists.php?list=2
Put the executable file into the open box and search, read against the code. The bit to put into the box is "file name.exe"

Or you can use Malwarebytes Startuplite available Here http://www.malwarebytes.org/startuplite.php
The instructions are in the link. Basically d/l and install the program then follow the prompts.

**

Open notepad. Please copy the contents of the quote box below. To do this highlight the contents of the box and right click on it and select copy.
Paste this into the open notepad. save it to the Desktop as fixlist.txt
NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

Run FRST/FRST64 and press the Fix button just once and wait.
no needed to post the log this time.


start
DeleteQuarantine:
end
Click to expand...

***

Don't miss or skip this next step, this will remove malicious files from quarantine and set a clean restore point.

Go to Start > Run > copy and paste the full text path in the run box

ComboFix /Uninstall

Note the space between the x and the /U, it needs to be there.

*****

  1. Download Delfix from here
  2. Ensure Remove disinfection tools is ticked
    Also tick:
    • Create registry backup
    • Purge system restore
    delfix.jpg

  3. Click Run



Any other tools and files found can simply be deleted or uninstall via Add/Remove Programs in the Control Panel etc.

*********

Your good to go, good job!

Please take the time to read over a few of my preventive tips.

Computer Security
http://malwareremoval.com/forum/viewtopic.php?p=557960#p557960
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Be prepared for CryptoLocker:

Cryptolocker Ransomware: What You Need To Know

CryptoLocker Ransomware Information Guide and FAQ

to help protect your computer in the future I recommend that you get the following free programmes:

CryptoPrevent install this programme to lock down and prevent crypto ransome ware

CryptoPrevent.JPG


~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Please navigate to Microsoft Windows Updates and download all the "Critical Updates" for Windows.


Firefox 3
The award-winning Web browser is now faster, more secure, and fully customizable to your online life. With Firefox 3, added powerful new features that make your online experience even better. It has more features and is a lot more secure than IE. It is a very easy and painless download and install, it will no way interfere with IE, you can use them both.
*NoScript - Addon for Firefox that stops all scripts from running on websites. Stops malicious software from invading via flash, java, javascript, and many other entry points.

AdblockPlus
  • AdblockPlus, Surf the web without annoying ads!
  • Blocks banners, pop-ups and video ads - even on Facebook and YouTube
  • Protects your online privacy
  • Two-click installation, It's free!
  • click the icon that corresponds to your browser and download.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

WOT Web of Trust, warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory. WOT's color-coded icons show you ratings for 21 million websites - green to go, yellow for caution and red to stop, helping you avoid the dangerous sites. WOT has an addon available for both Firefox and IE.
  • Green should be good to go
  • Yellow for caution
  • Red to stop



~~~~~~~~~~~~~~~~~~~~~~~~~~~~
How to prevent Malware: Created by Miekiemoes


WARNING: Java is the #1 exploited program at this time. The Department of Homeland Security recommends that computer users disable Java
See this article (http://www.forbes.com/sites/eliseackerman/2013/01/11/us-department-of-homeland-security-calls-on-computer-users-to-disable-java/
and this article (http://www.nbcnews.com/technology/technolog/us-warns-java-software-security-concerns-escalate-1B7938755

I would recommend that you completely uninstall Java unless you need it to run an important software.
In that instance I would recommend that you disable Java in your browsers until you need it for that software and then enable it. (See How to diasble Java in your web browser (http://www.geekstogo.com/2600/how-to-disable-java-in-your-web-browser/) and How to unplug Java from the browser ([url]http://krebsonsecurity.com/how-to-unplug-java-from-the-browser/)[/url]


Avoid P2P

P2P may be a great way to get lots of stuffs, but it is a great way to get infected as well. There's no way to tell if the file being shared is infected. Worse still, some worms spread via P2P networks, infecting you as well.

Please read these short reports on the dangers of peer-2-peer programs and file sharing.
*********************************************
Please read the following safe computing articles..

Secure My Computer: A Layered Approach


Free Antivirus-AntiSpyware-Firewall Software

Keep a backup of your important files - Now, more than ever, it's especially important to protect your digital files and memories. This article is full of good information on alternatives for home backup solutions.
 
Malware Problems with My PC

Hi Juliet,I'm Having trouble uninstalling ComboFix.I followed your instructions,but when I press OK,in the run box I get a dialog box open advising me that "Windows cannot find ComboFix".It is installed on my Desktop.
 
laudorum said:
Hi Juliet,I'm Having trouble uninstalling ComboFix.I followed your instructions,but when I press OK,in the run box I get a dialog box open advising me that "Windows cannot find ComboFix".It is installed on my Desktop.
Click to expand...

Not a problem.

Just manually look for and delete if found.

C:\Qoobox\<--folder
C:\Combofix\<--folder
 
Malware Problems with My PC

Hi Juliet,sorry to bother you again,But I thought I'd try Windows update in control panel,since I'v not seen any updates being installed when I turn my PC "OFF",The dialog box said" Windows can't check for updates"-error code 80070490.
I downloaded the KB947821 fix and,again.after running 45mins or so it told me that the installation had been completed,so I checked again in windows update,and got the same error code.
I then tried the MS FIXIT,which did run, but failed to rectify the problem.
Just as another aside I tried NoScript for Firefox,But it's making Firefox very Slow and if I have more than a couple of tabs open it stops responding,and the screen goes blank.Looks like I'm going to have to delete it.
Regards,Laudorum
 
Download Windows Repair (all in one) from this site

Install the programme then run
Go to Step 2 and allow it to run CheckDisk by clicking on Do It button:

Once that is done then go to Step 3 and allow it to run System File Check by clicking on Do It button:

Go to Step 4 and under "System Restore" click on Create button:

Go to Start Repairs tab and click Start button.
waio%20start.JPG


On the start repairs tab click start


Select the following items and tick restart system when finished

Reset Registry Permissions
Reset File Permissions
Register System Files
Repair WMI
Repair Windows Firewall
Repair Internet Explorer
Repair Hosts File
Remove Policies Set By Infections
Repair Missing Start menu Icons
Repair Icons
Repair Winsock & DNS Cache
Remove Temp Files
Repair Proxy Settings
Unhide Non System Files
Repair Windows Updates
Set windows Services To Default
Repair MSI (windows Installer)
Repair File Associations
Repair windows Safe mode

waio%20step3.JPG
 
Malware Problems with My PC

Hi Juliet,I've done the The Windows Repair,and attempted to update windows again,same error code dialog.
do you want me to post logs?,if so do you need full logs or just the repair windows update log.
Regards,Laudorum
 
repair windows update log <--
Let's see if we can get the info needed from this.

Also
Please download Farbar Service Scanner and run it on the computer.

Make sure the following options are checked:
  • Internet Services
    Windows Firewall
    System Restore
    Security Center
    Windows Update
Press "Scan".
It will create a log (FSS.txt) in the same directory the tool is run.
Please copy and paste the log to your reply.
 
Malware Problems with My PC

hi Juiet.As requested here is the Fss.txt log:-

arbar Service Scanner Version: 25-02-2014
Ran by Stephen (administrator) on 31-03-2014 at 13:53:09
Running from "C:\Users\Stephen\Downloads"
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============


Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Other Services:
==============


File Check:
========
C:\Windows\system32\nsisvc.dll => MD5 is legit
C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit
C:\Windows\system32\dhcpcsvc.dll => MD5 is legit
C:\Windows\system32\Drivers\afd.sys => MD5 is legit
C:\Windows\system32\Drivers\tdx.sys => MD5 is legit
C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\system32\dnsrslvr.dll => MD5 is legit
C:\Windows\system32\mpssvc.dll => MD5 is legit
C:\Windows\system32\bfe.dll => MD5 is legit
C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit
C:\Windows\system32\SDRSVC.dll => MD5 is legit
C:\Windows\system32\vssvc.exe => MD5 is legit
C:\Windows\system32\wscsvc.dll => MD5 is legit
C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\system32\wuaueng.dll => MD5 is legit
C:\Windows\system32\qmgr.dll => MD5 is legit
C:\Windows\system32\es.dll => MD5 is legit
C:\Windows\system32\cryptsvc.dll => MD5 is legit
C:\Windows\system32\svchost.exe => MD5 is legit
C:\Windows\system32\rpcss.dll => MD5 is legit


**** End of log ****

Hope this helps
 
Status
Not open for further replies.
Back
Top