BleepingComputer.com: BSOD - Corrupt files from infection (clean now)

Strange, when i inserted the link it showed up in the code but didnt on the page once posted as a clickable link so i had to go back and just add the url to the zip.

Also i updated flash yesterday and it shows the old version on that log, but accoring to adobe flash website.. "You have version 11,1,102,55 installed"?

Morning, has been few days.. any new ideas or suggestions?

You're quite right: It has been a few days! My sincere apology for the extended delay in responding. It has not been deliberate. Real life sometimes over-rules my best intentions. Having spent time away from the computer, it seems extra difficult getting back into and continuing pre-existing topics!

I will ask that you hold off on trying to solve the Windows Updates issue for the time being. There are a number (many) people with the same problem, and work is underway on many fronts to try and sort out what the malware is doing to create the problem, and how it may be fixed. I will let you know of any progress that in that endeavour.

What is the situation with Avast!/installing an antivirus on the system? I noticed in the Event logs that Avast! was present on the system, and since you hadn't reported having installed it yet, I was wondering if it was left-over from a previous installation of Avast!. Perhaps you did already install it?

Would you please bring me up-to-date with what has happened with the system since we last communicated, and if you have been using it or testing it, let me know how it is running and what problems you have come across ... and refresh my memory!

I know there is one startup entry still there for some malware ... which we will have to remove sometime:
In the msinfo32 report under Startup Programs

Quote

This post has been edited by AustrAlien: 08 February 2012 - 06:57 AM

Good Morning

No problem, is compeletely understood.. real life always takes priority, and is always good to take a breather and clear your head from the computer from time to time

Avast was uninstalled so maybe it was a ghost image? i did d/l the install exectutable but didnt install it to make sure it wasnt/wouldnt interfere with any of the programs/fixes that we was trying at the time.

I havent really used that computere since our last attempts to fix the windows update, I powered it down and havent used it til yesterday when i installed Avast Antivirus and Canon Printer software then deleted a couple large game files (flight sim 4, entropia universe, & star wars galaxies) since i havent used them in few years and dont play games on that computer anymore.

As far as i can tell the computer is running everything fine with the exception of windows update and the flash player update on that last security check log(updated to 11.1.102.55 but log still shows prev version 10.0.45.2), the few things ive tried on it all seem to be running normal.. email, general web surfing, printing, etc. (i may even try reinstalling the sound card unless you think i should hold off on that for a bit?)

Go ahead and install the sound card and use the computer as normal. Let us know if you find any new issues.

Give it a couple of days .... or however long you need ... and then post back. I will then ask if gringo_pr will check over the system again now that you are able to load Windows normally, instead of being confined to Safe Mode .... and he can then fix up the ttool startup entry along with anything else he may find.

I actually did install it this morning already and it was running fine, I will try it out for a few days as you suggested now that its pretty much back to normal and can be used in day to day activities again.

Will keep you posted.

Hello, so far so good.. havent had any issues with the computer other than not being able to update windows, have even been able to log into my wife and daughters partitions and everything seems smooth there also.

only thing ive held off on was any kind of banking on it til its fixed and malware free.. if you think were ready to check back with gringo let me know.. thanks

Morning, its been a while and havent heard anything back yet.. have you had a chance to get with gringo by chance?

Thanks for the gentle nudge. I have no excuse for neglecting you: My apologies ... once again!

Re: Vista update issue
Gringo has recently stated to me that "the only thing I have found to work is an in place upgrade"
In order for you to be able to perform an "installation repair" or "in place upgrade", I think you will likely need a genuine retail Microsoft Vista installation disk ... but I am not sure about that.

In any case, I think Gringo would like to have a final check on your system now that you can run Windows normally and are not confined to Safe Mode any longer, as well as remove the malware-related registry entry that remains, namely:

Quote

I will now (immediately) send a PM to Gringo and ask him to respond to your previous topic with him:
http://www.bleepingcomputer.com/forums/topic432236.html/page__view__findpost__p__2573976
Edit to add: DONE!

This post has been edited by AustrAlien: 07 March 2012 - 03:02 PM

Is no prob, life has a way of complicating things when we least expect or want it to, lol

If that upgrade is the same one im thinking of it wont work because like you said, it requires a retail disc and i only have my oem disk from the mfg, but i may be thinking of another procedure all together.. will check with gringo once he responds and make sure.

Thank You for all your help and patients.. if nothing else can be done, atleast its stable and usable again