Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

when i turn computer on nothing but black screen


  • This topic is locked This topic is locked
10 replies to this topic

#1 rockmilk

rockmilk

  • Banned
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:58 PM

Posted 09 September 2010 - 10:05 AM

i have a inspirion 530 running vista when i turn computer on nothing but black screen any ideas

BC AdBot (Login to Remove)

 


m

#2 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,212 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:02:58 AM

Posted 12 September 2010 - 05:58 AM

Hi, could you please give some more details?

Exactly when is your computer stopping? Do you still see the windows splash screen? Did you try safe mode?

Do you have your vista DVD?

Can you tell me what happened prior to this problem?

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#3 rockmilk

rockmilk
  • Topic Starter

  • Banned
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:58 PM

Posted 12 September 2010 - 08:38 PM

Hi, could you please give some more details?

Exactly when is your computer stopping? The computer has a black screen and says boot from cd, but when I tried to boot from cd it did nothing.

Do you have your vista DVD? yes

Can you tell me what happened prior to this problem? the computer froze

Did you try safe mode?no

Do you still see the windows splash screen? not sure what this is

#4 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,212 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:02:58 AM

Posted 13 September 2010 - 02:22 AM

Please try to follow the steps here to do a startup repair.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#5 rockmilk

rockmilk
  • Topic Starter

  • Banned
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:58 PM

Posted 13 September 2010 - 03:57 AM

i already knew how to do this it didnt work tried already but i fixed the problem my self i had an old copy of xp it was able to run although the vista cd wasnt
i reformatted with it then re reformatted with the vista cd weird that it wouldnt reformatt with the vista cd first........i am enclosing an otl scan cause im worried about an infected mbr i know a bit about computers but this one had me stumped logs below let me know if you also need the dds report


OTL Extras logfile created on: 9/13/2010 1:53:00 AM - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\hamster\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455.71 Gb Total Space | 440.40 Gb Free Space | 96.64% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HAMSTER-PC
Current User Name: hamster
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

========== Firewall Settings ==========
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{8CBDD204-BF4E-4284-B117-465A02883B81}" = Linksys WMP110 RangePlus Wireless PCI Adapter Driver - WMP110
"{F99520C7-7EE6-472E-8DD8-E60003A9292F}" = WOT for Internet Explorer
"avast5" = avast! Free Antivirus
"CCleaner" = CCleaner

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 9/13/2010 4:31:29 AM | Computer Name = hamster-PC | Source = EventSystem | ID = 4609
Description =

[ System Events ]
Error - 9/13/2010 4:31:22 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =

Error - 9/13/2010 4:31:29 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =

Error - 9/13/2010 4:31:29 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =

Error - 9/13/2010 4:31:29 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =

Error - 9/13/2010 4:31:29 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =

Error - 9/13/2010 4:31:35 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =

Error - 9/13/2010 4:31:45 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =

Error - 9/13/2010 4:32:02 AM | Computer Name = hamster-PC | Source = DCOM | ID = 10005
Description =


< End of report >


OTL logfile created on: 9/13/2010 1:53:00 AM - Run 1
OTL by OldTimer - Version 3.2.12.0 Folder = C:\Users\hamster\Desktop
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.16386)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 63.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 84.00% Paging File free
Paging file location(s): c:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 455.71 Gb Total Space | 440.40 Gb Free Space | 96.64% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: HAMSTER-PC
Current User Name: hamster
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 90 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2010/09/13 01:51:40 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\hamster\Desktop\OTL.exe
PRC - [2010/09/07 08:12:02 | 002,838,912 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastUI.exe
PRC - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
PRC - [2006/11/02 05:34:32 | 001,004,136 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe
PRC - [2006/11/02 02:45:13 | 000,288,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Internet Explorer\ieuser.exe
PRC - [2006/11/02 02:45:07 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe


========== Modules (SafeList) ==========

MOD - [2010/09/13 01:51:40 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\hamster\Desktop\OTL.exe
MOD - [2006/11/02 02:44:49 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx
MOD - [2006/11/02 02:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Web Scanner)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [On_Demand | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Mail Scanner)
SRV - [2010/09/07 08:11:59 | 000,040,384 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe -- (avast! Antivirus)
SRV - [2006/11/02 05:34:32 | 000,263,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\usbstor.sys -- (USBSTOR)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2010/09/07 07:52:25 | 000,046,672 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)
DRV - [2010/09/07 07:52:03 | 000,165,584 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)
DRV - [2010/09/07 07:47:46 | 000,023,376 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (aswRdr)
DRV - [2010/09/07 07:47:30 | 000,050,768 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)
DRV - [2010/09/07 07:47:07 | 000,017,744 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)
DRV - [2008/06/05 11:13:24 | 000,338,432 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WMP110v2.sys -- (WMP110v2)
DRV - [2007/02/21 12:49:47 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2007/02/21 12:49:47 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2007/02/21 12:49:47 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2007/01/05 22:59:42 | 000,035,920 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2007/01/05 22:59:34 | 000,086,096 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid) NVIDIA nForce™
DRV - [2006/11/02 02:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 02:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 02:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 02:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 02:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 02:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 02:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 02:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 02:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 02:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 02:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 02:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 02:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 02:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 02:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 02:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 02:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 02:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 02:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 02:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 02:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 02:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 02:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 02:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 02:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 02:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 02:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 02:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 02:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 02:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 01:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 01:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 01:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 01:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 01:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 01:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 00:41:53 | 000,251,904 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTBS23.SYS -- (VSTHWBS2)
DRV - [2006/11/02 00:41:50 | 000,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (VST_DPV)
DRV - [2006/11/02 00:41:48 | 000,654,336 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (winachsf)
DRV - [2006/11/02 00:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 00:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel®


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



O1 HOSTS File: ([2006/09/18 14:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (WOT Helper) - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll ()
O3 - HKLM\..\Toolbar: (WOT) - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (WOT) - {71576546-354D-41C9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll ()
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKCU..\Run: [ccleaner] C:\Program Files\CCleaner\ccleaner.exe (Piriform Ltd)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 66.211.16.21 66.211.16.22
O18 - Protocol\Handler\wot {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll ()
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img22.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img22.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 14:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O33 - MountPoints2\{afe059c7-bf1d-11df-b0d0-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{afe059c7-bf1d-11df-b0d0-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - File not found
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: Wmi - C:\Windows\System32\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

Drivers32: msacm.l3acm - C:\Windows\System32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: vidc.cvid - C:\Windows\System32\iccvid.dll (Radius Inc.)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 90 Days ==========

[2010/09/13 03:59:26 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010/09/13 03:59:11 | 000,000,000 | ---D | C] -- C:\Boot
[2010/09/13 03:58:56 | 000,000,000 | ---D | C] -- C:\Windows\System32\OEM
[2010/09/13 03:53:50 | 000,000,000 | ---D | C] -- C:\Windows.old
[2010/09/13 03:08:55 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010/09/13 03:08:54 | 000,338,432 | ---- | C] (Ralink Technology, Corp.) -- C:\Windows\System32\drivers\WMP110v2.sys
[2010/09/13 03:08:51 | 000,000,000 | ---D | C] -- C:\Users\hamster\AppData\Roaming\InstallShield
[2010/09/13 03:07:41 | 000,000,000 | R--D | C] -- C:\Users\hamster\Searches
[2010/09/13 03:07:33 | 000,000,000 | ---D | C] -- C:\Users\hamster\AppData\Roaming\Identities
[2010/09/13 03:07:32 | 000,000,000 | R--D | C] -- C:\Users\hamster\Contacts
[2010/09/13 03:07:31 | 000,000,000 | ---D | C] -- C:\Users\hamster\AppData\Local\VirtualStore
[2010/09/13 03:07:28 | 000,000,000 | --SD | C] -- C:\Users\hamster\AppData\Roaming\Microsoft
[2010/09/13 03:07:28 | 000,000,000 | R--D | C] -- C:\Users\hamster\Favorites
[2010/09/13 03:07:28 | 000,000,000 | R--D | C] -- C:\Users\hamster\Downloads
[2010/09/13 03:07:28 | 000,000,000 | R--D | C] -- C:\Users\hamster\Documents
[2010/09/13 03:07:28 | 000,000,000 | R--D | C] -- C:\Users\hamster\Desktop
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\AppData\Local\Temporary Internet Files
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Templates
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Start Menu
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\SendTo
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Recent
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\PrintHood
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\NetHood
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Documents\My Videos
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Documents\My Pictures
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Documents\My Music
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\My Documents
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Local Settings
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\AppData\Local\History
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Cookies
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\Application Data
[2010/09/13 03:07:28 | 000,000,000 | -HSD | C] -- C:\Users\hamster\AppData\Local\Application Data
[2010/09/13 03:07:28 | 000,000,000 | -H-D | C] -- C:\Users\hamster\AppData
[2010/09/13 03:07:28 | 000,000,000 | ---D | C] -- C:\Users\hamster\AppData\Local\Temp
[2010/09/13 03:07:28 | 000,000,000 | ---D | C] -- C:\Users\hamster\AppData\Local\Microsoft
[2010/09/13 03:07:28 | 000,000,000 | ---D | C] -- C:\Users\hamster\AppData\Roaming\Media Center Programs
[2010/09/13 03:07:27 | 000,000,000 | R--D | C] -- C:\Users\hamster\Videos
[2010/09/13 03:07:27 | 000,000,000 | R--D | C] -- C:\Users\hamster\Saved Games
[2010/09/13 03:07:27 | 000,000,000 | R--D | C] -- C:\Users\hamster\Pictures
[2010/09/13 03:07:27 | 000,000,000 | R--D | C] -- C:\Users\hamster\Music
[2010/09/13 03:07:27 | 000,000,000 | R--D | C] -- C:\Users\hamster\Links
[2010/09/13 03:02:22 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010/09/13 03:01:37 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2010/09/13 03:00:18 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010/09/13 02:28:05 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/09/13 01:51:38 | 000,576,000 | ---- | C] (OldTimer Tools) -- C:\Users\hamster\Desktop\OTL.exe
[2010/09/13 01:45:17 | 000,000,000 | ---D | C] -- C:\Program Files\WOT
[2010/09/13 01:41:46 | 000,165,584 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2010/09/13 01:41:46 | 000,017,744 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys
[2010/09/13 01:41:45 | 000,023,376 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2010/09/13 01:41:44 | 000,046,672 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2010/09/13 01:41:42 | 000,050,768 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2010/09/13 01:41:19 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010/09/13 01:41:15 | 000,167,592 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2010/09/13 01:41:15 | 000,038,848 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/13 01:36:02 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010/09/13 01:25:49 | 000,000,000 | ---D | C] -- C:\Users\hamster\AppData\Local\Temp(3)
[2010/09/13 01:25:49 | 000,000,000 | ---D | C] -- C:\Windows\temp
[2010/09/13 01:21:06 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/09/13 01:19:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Alwil Software
[2010/09/13 01:19:07 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/09/12 19:15:41 | 000,000,000 | -HSD | C] -- C:\System Volume Information

========== Files - Modified Within 90 Days ==========

[2010/09/13 03:59:12 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2010/09/13 03:59:12 | 000,000,355 | RHS- | M] () -- C:\Boot.ini.saved
[2010/09/13 03:10:27 | 000,524,288 | -HS- | M] () -- C:\Users\hamster\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms
[2010/09/13 03:10:27 | 000,524,288 | -HS- | M] () -- C:\Users\hamster\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010/09/13 03:10:27 | 000,065,536 | -HS- | M] () -- C:\Users\hamster\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010/09/13 03:07:48 | 000,048,600 | ---- | M] () -- C:\Users\hamster\AppData\Local\GDIPFONTCACHEV1.DAT
[2010/09/13 03:07:28 | 000,000,020 | -HS- | M] () -- C:\Users\hamster\ntuser.ini
[2010/09/13 03:04:57 | 000,228,720 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010/09/13 03:03:06 | 000,041,176 | ---- | M] () -- C:\Windows\System32\license.rtf
[2010/09/13 02:24:12 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010/09/13 02:24:12 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/09/13 02:20:15 | 000,000,211 | -H-- | M] () -- C:\Boot.BAK
[2010/09/13 01:53:21 | 000,786,432 | -HS- | M] () -- C:\Users\hamster\ntuser.dat
[2010/09/13 01:51:40 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\hamster\Desktop\OTL.exe
[2010/09/13 01:42:50 | 000,000,680 | ---- | M] () -- C:\Users\hamster\AppData\Local\d3d9caps.dat
[2010/09/13 01:41:46 | 000,001,840 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2010/09/13 01:41:42 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt
[2010/09/13 01:40:53 | 000,716,948 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010/09/13 01:40:53 | 000,617,662 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010/09/13 01:40:53 | 000,103,440 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010/09/13 01:36:03 | 000,000,804 | ---- | M] () -- C:\Users\hamster\Desktop\CCleaner.lnk
[2010/09/13 01:33:31 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010/09/13 01:33:30 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010/09/13 01:33:30 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010/09/13 01:33:23 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010/09/13 01:33:18 | 2136,133,632 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/13 01:16:00 | 000,000,943 | ---- | M] () -- C:\Users\hamster\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2010/09/07 08:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr
[2010/09/07 08:11:54 | 000,167,592 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe
[2010/09/07 07:52:25 | 000,046,672 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys
[2010/09/07 07:52:03 | 000,165,584 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys
[2010/09/07 07:47:46 | 000,023,376 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys
[2010/09/07 07:47:30 | 000,050,768 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys
[2010/09/07 07:47:07 | 000,017,744 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys

========== Files Created - No Company Name ==========

[2010/09/13 03:59:12 | 000,008,192 | R-S- | C] () -- C:\BOOTSECT.BAK
[2010/09/13 03:59:12 | 000,000,211 | -H-- | C] () -- C:\Boot.BAK
[2010/09/13 03:59:11 | 000,438,840 | RHS- | C] () -- C:\bootmgr
[2010/09/13 03:58:56 | 000,000,036 | RH-- | C] () -- C:\Windows\DELL_VERSION
[2010/09/13 03:10:20 | 000,052,864 | R--- | C] () -- C:\Windows\System32\SetupWizard.exe
[2010/09/13 03:07:29 | 000,000,680 | ---- | C] () -- C:\Users\hamster\AppData\Local\d3d9caps.dat
[2010/09/13 03:07:28 | 000,524,288 | -HS- | C] () -- C:\Users\hamster\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms
[2010/09/13 03:07:28 | 000,524,288 | -HS- | C] () -- C:\Users\hamster\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010/09/13 03:07:28 | 000,262,144 | -H-- | C] () -- C:\Users\hamster\ntuser.dat.LOG1
[2010/09/13 03:07:28 | 000,065,536 | -HS- | C] () -- C:\Users\hamster\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010/09/13 03:07:28 | 000,000,258 | ---- | C] () -- C:\Users\hamster\Application Data\Microsoft\Internet Explorer\Quick Launch\Shows Desktop.lnk
[2010/09/13 03:07:28 | 000,000,240 | ---- | C] () -- C:\Users\hamster\Application Data\Microsoft\Internet Explorer\Quick Launch\Window Switcher.lnk
[2010/09/13 03:07:28 | 000,000,020 | -HS- | C] () -- C:\Users\hamster\ntuser.ini
[2010/09/13 03:07:28 | 000,000,000 | -H-- | C] () -- C:\Users\hamster\ntuser.dat.LOG2
[2010/09/13 03:07:27 | 000,786,432 | -HS- | C] () -- C:\Users\hamster\ntuser.dat
[2010/09/13 03:03:06 | 000,000,355 | RHS- | C] () -- C:\Boot.ini.saved
[2010/09/13 02:24:12 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010/09/13 02:24:12 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010/09/13 01:41:46 | 000,001,840 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk
[2010/09/13 01:36:03 | 000,000,804 | ---- | C] () -- C:\Users\hamster\Desktop\CCleaner.lnk
[2010/09/13 01:33:18 | 2136,133,632 | -HS- | C] () -- C:\hiberfil.sys
[2010/09/13 01:16:00 | 000,000,943 | ---- | C] () -- C:\Users\hamster\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2006/11/02 05:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006/11/02 00:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini

========== LOP Check ==========

[2010/09/13 03:10:28 | 000,001,728 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.* >
[2006/09/18 14:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat
[2010/09/13 02:20:15 | 000,000,211 | -H-- | M] () -- C:\Boot.BAK
[2010/09/13 03:59:12 | 000,000,355 | RHS- | M] () -- C:\Boot.ini.saved
[2006/11/02 02:53:57 | 000,438,840 | RHS- | M] () -- C:\bootmgr
[2010/09/13 03:59:12 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2010/09/13 01:25:48 | 000,005,383 | ---- | M] () -- C:\ComboFix.txt
[2006/09/18 14:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys
[2010/09/13 01:33:18 | 2136,133,632 | -HS- | M] () -- C:\hiberfil.sys
[2010/09/13 02:24:12 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010/09/13 02:24:12 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2008/04/13 15:13:04 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2008/04/13 17:01:44 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010/09/13 01:33:17 | 2450,063,360 | -HS- | M] () -- C:\pagefile.sys

< %systemroot%\Fonts\*.com >
[2006/11/02 05:37:12 | 000,026,040 | ---- | M] () -- C:\Windows\Fonts\GlobalMonospace.CompositeFont
[2006/11/02 05:37:12 | 000,026,489 | ---- | M] () -- C:\Windows\Fonts\GlobalSansSerif.CompositeFont
[2006/11/02 05:37:12 | 000,029,779 | ---- | M] () -- C:\Windows\Fonts\GlobalSerif.CompositeFont
[2006/11/02 05:37:12 | 000,030,808 | ---- | M] () -- C:\Windows\Fonts\GlobalUserInterface.CompositeFont

< %systemroot%\Fonts\*.dll >

< %systemroot%\Fonts\*.ini >
[2006/09/18 14:37:34 | 000,000,065 | ---- | M] () -- C:\Windows\Fonts\desktop.ini

< %systemroot%\Fonts\*.ini2 >

< %systemroot%\Fonts\*.exe >

< %systemroot%\system32\spool\prtprocs\w32x86\*.* >
[2006/11/02 05:35:48 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\prtprocs\w32x86\jnwppr.dll

< %systemroot%\REPAIR\*.bak1 >

< %systemroot%\REPAIR\*.ini >

< %systemroot%\system32\*.jpg >

< %systemroot%\*.jpg >

< %systemroot%\*.png >

< %systemroot%\*.scr >
[2010/09/07 08:12:17 | 000,038,848 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr

< %systemroot%\*._sy >

< %APPDATA%\Adobe\Update\*.* >

< %ALLUSERSPROFILE%\Favorites\*.* >

< %APPDATA%\Microsoft\*.* >

< %PROGRAMFILES%\*.* >
[2006/11/02 05:50:50 | 000,000,174 | -HS- | M] () -- C:\Program Files\desktop.ini

< %APPDATA%\Update\*.* >

< %systemroot%\*. /mp /s >

< %systemroot%\System32\config\*.sav >
[2006/11/02 03:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\COMPONENTS.SAV
[2006/11/02 03:34:05 | 000,020,480 | ---- | M] () -- C:\Windows\System32\config\DEFAULT.SAV
[2006/11/02 03:34:05 | 000,008,192 | ---- | M] () -- C:\Windows\System32\config\SECURITY.SAV
[2006/11/02 03:34:08 | 010,133,504 | ---- | M] () -- C:\Windows\System32\config\SOFTWARE.SAV
[2006/11/02 03:34:08 | 001,826,816 | ---- | M] () -- C:\Windows\System32\config\SYSTEM.SAV

< %PROGRAMFILES%\bak. /s >

< %systemroot%\system32\bak. /s >

< %ALLUSERSPROFILE%\Start Menu\*.lnk /x >

< %systemroot%\system32\config\systemprofile\*.dat /x >

< %systemroot%\*.config >

< %systemroot%\system32\*.db >

< %APPDATA%\Microsoft\Internet Explorer\Quick Launch\*.lnk /x >
[2010/09/13 01:16:00 | 000,000,221 | -HS- | M] () -- C:\Users\hamster\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini

< %USERPROFILE%\Desktop\*.exe >
[2010/09/13 01:51:40 | 000,576,000 | ---- | M] (OldTimer Tools) -- C:\Users\hamster\Desktop\OTL.exe

< %PROGRAMFILES%\Common Files\*.* >

< %systemroot%\*.src >

< %systemroot%\install\*.* >

< %systemroot%\system32\DLL\*.* >

< %systemroot%\system32\HelpFiles\*.* >

< %systemroot%\system32\rundll\*.* >

< %systemroot%\winn32\*.* >

< %systemroot%\Java\*.* >

< %systemroot%\system32\test\*.* >

< %systemroot%\system32\Rundll32\*.* >

< %systemroot%\AppPatch\Custom\*.* >

< %APPDATA%\Roaming\Microsoft\Windows\Recent\*.lnk /x >

< %PROGRAMFILES%\PC-Doctor\Downloads\*.* >

< %PROGRAMFILES%\Internet Explorer\*.tmp >

< %PROGRAMFILES%\Internet Explorer\*.dat >

< %USERPROFILE%\My Documents\*.exe >

< %USERPROFILE%\*.exe >

< %systemroot%\ADDINS\*.* >

< %systemroot%\assembly\*.bak2 >

< %systemroot%\Config\*.* >

< %systemroot%\REPAIR\*.bak2 >

< %systemroot%\SECURITY\Database\*.sdb /x >

< %systemroot%\SYSTEM\*.bak2 >

< %systemroot%\Web\*.bak2 >

< %systemroot%\Driver Cache\*.* >

< %PROGRAMFILES%\Mozilla Firefox\0*.exe >

< %ProgramFiles%\Microsoft Common\*.* >

< %ProgramFiles%\TinyProxy. >

< %USERPROFILE%\Favorites\*.url /x >
[2010/09/13 03:07:41 | 000,000,402 | -HS- | M] () -- C:\Users\hamster\Favorites\desktop.ini

< %systemroot%\System32\Wbem\*.exe >
[2006/11/02 02:45:25 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\mofcomp.exe
[2006/11/02 02:45:39 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\scrcons.exe
[2006/11/02 02:45:50 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\unsecapp.exe
[2006/11/02 02:45:52 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemtest.exe
[2006/11/02 02:45:57 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WinMgmt.exe
[2006/11/02 02:45:59 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIADAP.exe
[2006/11/02 02:45:59 | 000,137,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiApSrv.exe
[2006/11/02 02:45:59 | 000,624,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WMIC.exe
[2006/11/02 02:46:00 | 000,245,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe

< HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate\AU >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >
< End of report >

hope this helps

O33 - MountPoints2\{afe059c7-bf1d-11df-b0d0-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{afe059c7-bf1d-11df-b0d0-806e6f6e6963}\Shell\AutoRun\command - "" = D:\Setup.exe -- File not found these dont seem friendly!!

#6 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,212 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:02:58 AM

Posted 13 September 2010 - 04:19 AM

Hi, an OTL log shows nothing MBR related.

Please download MBRCheck.exe by a_d_13 from one of the links provided below and save it to your desktop.
  • Double-click on MBRCheck.exe to run it. Vista/Windows 7 users right-click and select Run As Administrator.
  • It will open a black screen with some data on it...please do not fix anything (if it gives you an option).
  • When complete, you should see Done! Press ENTER to exit.... Press Enter on the keyboard.
  • A log named MBRCheck_date_time.txt (i.e. MBRCheck_07.21.10_10.22.51.txt) will be created on the desktop.
  • Copy and paste the contents of that log in your next reply.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#7 rockmilk

rockmilk
  • Topic Starter

  • Banned
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:58 PM

Posted 13 September 2010 - 05:00 PM

MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: (build 6000), 32-bit
Base Board Manufacturer: Dell Inc.
BIOS Manufacturer: Dell Inc.
System Manufacturer: Dell Inc.
System Product Name: Inspiron 530
Logical Drives Mask: 0x0000000c

Kernel Drivers (total 136):
0x81800000 \SystemRoot\system32\ntkrnlpa.exe
0x81BA1000 \SystemRoot\system32\hal.dll
0x802C6000 \SystemRoot\system32\kdcom.dll
0x80277000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x8026E000 \SystemRoot\system32\PSHED.dll
0x80266000 \SystemRoot\system32\BOOTVID.dll
0x8022B000 \SystemRoot\system32\CLFS.SYS
0x8051F000 \SystemRoot\system32\CI.dll
0x804A4000 \SystemRoot\system32\drivers\Wdf01000.sys
0x8021E000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80461000 \SystemRoot\system32\drivers\acpi.sys
0x80215000 \SystemRoot\system32\drivers\WMILIB.SYS
0x8020D000 \SystemRoot\system32\drivers\msisadrv.sys
0x8043C000 \SystemRoot\system32\drivers\pci.sys
0x8042D000 \SystemRoot\system32\drivers\volmgr.sys
0x8041D000 \SystemRoot\System32\drivers\mountmgr.sys
0x80206000 \SystemRoot\system32\drivers\pciide.sys
0x8040F000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x807B6000 \SystemRoot\System32\drivers\volmgrx.sys
0x80407000 \SystemRoot\system32\drivers\atapi.sys
0x80798000 \SystemRoot\system32\drivers\ataport.SYS
0x80767000 \SystemRoot\system32\drivers\fltmgr.sys
0x80757000 \SystemRoot\system32\drivers\fileinfo.sys
0x80653000 \SystemRoot\system32\drivers\ndis.sys
0x80628000 \SystemRoot\system32\drivers\msrpc.sys
0x873C7000 \SystemRoot\system32\drivers\NETIO.SYS
0x872BF000 \SystemRoot\System32\Drivers\Ntfs.sys
0x87255000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8721F000 \SystemRoot\system32\drivers\volsnap.sys
0x80620000 \SystemRoot\System32\Drivers\spldr.sys
0x80611000 \SystemRoot\System32\drivers\partmgr.sys
0x80602000 \SystemRoot\System32\Drivers\mup.sys
0x875DB000 \SystemRoot\System32\drivers\ecache.sys
0x8720E000 \SystemRoot\system32\drivers\disk.sys
0x875BA000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x87205000 \SystemRoot\system32\drivers\crcdisk.sys
0x87425000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x89CD7000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x89CCB000 \SystemRoot\system32\DRIVERS\vgapnp.sys
0x89CAA000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0x8820F000 \SystemRoot\system32\DRIVERS\watchdog.sys
0x89C9F000 \SystemRoot\system32\DRIVERS\usbuhci.sys
0x89C62000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x89C54000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x89C42000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8A748000 \SystemRoot\system32\DRIVERS\VSTBS23.SYS
0x89C18000 \SystemRoot\system32\DRIVERS\ks.sys
0x8A644000 \SystemRoot\system32\DRIVERS\VSTDPV3.SYS
0x8A8ED000 \SystemRoot\system32\DRIVERS\VSTCNXT3.SYS
0x8821C000 \SystemRoot\system32\drivers\modem.sys
0x89C0D000 \SystemRoot\system32\DRIVERS\fdc.sys
0x8A62C000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8A601000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8A853000 \SystemRoot\system32\DRIVERS\storport.sys
0x89C02000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x8A83C000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8A831000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8A80E000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x87416000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8A7FB000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8ABF1000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8A7E4000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8ABE6000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x882E7000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8ABDC000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x88236000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8AB88000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x87EF0000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8AB39000 \SystemRoot\system32\drivers\HdAudio.sys
0x8AB0C000 \SystemRoot\system32\drivers\portcls.sys
0x8AAE7000 \SystemRoot\system32\drivers\drmk.sys
0x89CEE000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8A7BA000 \SystemRoot\System32\Drivers\Null.SYS
0x8A7C1000 \SystemRoot\System32\Drivers\Beep.SYS
0x8A7C8000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x8A7EF000 \SystemRoot\System32\drivers\vga.sys
0x883A4000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x883AC000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8AABC000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8AAAE000 \SystemRoot\System32\Drivers\Npfs.SYS
0x89D00000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8AF2F000 \SystemRoot\System32\drivers\tcpip.sys
0x8AA95000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8AA80000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8AA6A000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x8AA56000 \SystemRoot\system32\DRIVERS\smb.sys
0x8AA0F000 \SystemRoot\system32\drivers\afd.sys
0x89DE2000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x8AEFD000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8AEE7000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8AA01000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8AED4000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8AE99000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8AE8F000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8AE78000 \SystemRoot\System32\Drivers\dfsc.sys
0x8AE51000 \SystemRoot\System32\Drivers\aswSP.SYS
0x88243000 \SystemRoot\System32\Drivers\crashdmp.sys
0x88349000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x88374000 \SystemRoot\System32\Drivers\dump_atapi.sys
0x89CE5000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x87F80000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x882F7000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x88364000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x8EC00000 \SystemRoot\System32\win32k.sys
0x8B0F6000 \SystemRoot\System32\drivers\Dxapi.sys
0x8EFE0000 \SystemRoot\System32\drivers\dxg.sys
0x8B0DF000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x89D48000 \SystemRoot\system32\DRIVERS\kbdhid.sys
0x8B0D0000 \SystemRoot\system32\DRIVERS\monitor.sys
0x8EE00000 \SystemRoot\System32\TSDDD.dll
0x8EE10000 \SystemRoot\System32\framebuf.dll
0x8F085000 \SystemRoot\system32\drivers\luafv.sys
0x8F04E000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x89D93000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x87F20000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x90D37000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x8F019000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x90CA9000 \SystemRoot\system32\drivers\spsys.sys
0x90C96000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x9299A000 \SystemRoot\system32\drivers\HTTP.sys
0x9289F000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x92846000 \SystemRoot\system32\DRIVERS\bowser.sys
0x92832000 \SystemRoot\System32\drivers\mpsdrv.sys
0x92813000 \SystemRoot\system32\drivers\mrxdav.sys
0x92DE2000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x92DA9000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x92801000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x92D85000 \SystemRoot\System32\DRIVERS\srv2.sys
0x92CF9000 \SystemRoot\System32\DRIVERS\srv.sys
0x952C3000 \SystemRoot\system32\drivers\peauth.sys
0x92928000 \SystemRoot\System32\Drivers\secdrv.SYS
0x8B166000 \SystemRoot\System32\drivers\tcpipreg.sys
0x92CA3000 \SystemRoot\system32\DRIVERS\cdfs.sys
0xA5666000 \SystemRoot\system32\DRIVERS\WMP110v2.sys
0x8B1BE000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x77900000 \Windows\System32\ntdll.dll

Processes (total 38):
0 System Idle Process
4 System
344 C:\Windows\System32\smss.exe
460 csrss.exe
512 C:\Windows\System32\wininit.exe
524 csrss.exe
556 C:\Windows\System32\services.exe
580 C:\Windows\System32\winlogon.exe
604 C:\Windows\System32\lsass.exe
612 C:\Windows\System32\lsm.exe
776 C:\Windows\System32\svchost.exe
844 C:\Windows\System32\svchost.exe
972 C:\Windows\System32\svchost.exe
1004 C:\Windows\System32\svchost.exe
1016 C:\Windows\System32\svchost.exe
1120 C:\Windows\System32\audiodg.exe
1164 C:\Windows\System32\SLsvc.exe
1204 C:\Windows\System32\svchost.exe
1312 C:\Windows\System32\svchost.exe
1448 C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
1800 C:\Windows\System32\dwm.exe
1860 C:\Windows\System32\spoolsv.exe
1868 C:\Windows\System32\taskeng.exe
1900 C:\Windows\System32\svchost.exe
1932 C:\Windows\explorer.exe
784 C:\Program Files\Alwil Software\Avast5\AvastUI.exe
1140 C:\Windows\System32\svchost.exe
1352 C:\Windows\System32\svchost.exe
2024 C:\Windows\System32\SearchIndexer.exe
2400 C:\Windows\System32\taskeng.exe
2336 WmiPrvSE.exe
4036 taskeng.exe
4064 C:\Windows\System32\taskeng.exe
3500 C:\Windows\System32\svchost.exe
2928 C:\Program Files\Mozilla Firefox\firefox.exe
3488 C:\Windows\System32\SearchProtocolHost.exe
2576 C:\Windows\System32\SearchFilterHost.exe
3968 C:\Users\hamster\Desktop\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000002`83000000 (NTFS)

PhysicalDrive0 Model Number: SAMSUNGHD501LJ, Rev: CR100-12

Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 Windows Vista MBR code detected
SHA1: 8DF43F2BDE2D9451948FA14B5279969C777A7979


Done!


when i got up today a program called relevant knowledge had installed itself on this vista machine do you know why it wouldnt let me format with the vista cd first off it would just sit there for two days i let it sit there without any thing happening then i use the the xp cd it ran like normal weird..

#8 rockmilk

rockmilk
  • Topic Starter

  • Banned
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:58 PM

Posted 13 September 2010 - 05:04 PM

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 4610

Windows 6.0.6000
Internet Explorer 7.0.6000.16386

9/13/2010 3:03:32 PM
mbam-log-2010-09-13 (15-03-32).txt

Scan type: Quick scan
Objects scanned: 127746
Time elapsed: 3 minute(s), 48 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 3
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 2
Files Infected: 13

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
C:\Program Files\RelevantKnowledge\components\rlxg.dll (Adware.RelevantKnowledge) -> Delete on reboot.
C:\Program Files\RelevantKnowledge\MSVCP71.DLL (Spyware.MarketScore) -> Delete on reboot.
C:\Program Files\RelevantKnowledge\MSVCR71.DLL (Spyware.MarketScore) -> Delete on reboot.

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Program Files\RelevantKnowledge (Spyware.MarketScore) -> Delete on reboot.
C:\Program Files\RelevantKnowledge\components (Spyware.MarketScore) -> Delete on reboot.

Files Infected:
C:\Program Files\RelevantKnowledge\components\rlxg.dll (Adware.RelevantKnowledge) -> Delete on reboot.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlph.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Users\hamster\AppData\Local\Temp\~os9A2D.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully.
C:\Program Files\RelevantKnowledge\MSVCP71.DLL (Spyware.MarketScore) -> Delete on reboot.
C:\Program Files\RelevantKnowledge\MSVCR71.DLL (Spyware.MarketScore) -> Delete on reboot.
C:\Program Files\RelevantKnowledge\rloci.bin (Spyware.MarketScore) -> Quarantined and deleted successfully.
C:\Program Files\RelevantKnowledge\rlvknlg.exe (Spyware.MarketScore) -> Quarantined and deleted successfully.


#9 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,212 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:02:58 AM

Posted 14 September 2010 - 05:05 AM

MBR is clean and Relevant Knowledge is gone. smile.gif

Please visit Microsoft Update and install all latest updates including Service pack 2 for vista. Then let me know what problems you still are having.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#10 rockmilk

rockmilk
  • Topic Starter

  • Banned
  • 202 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:58 PM

Posted 14 September 2010 - 05:58 PM

you may close this topic as i dont think updates are good at all ive had an xp machine for a while every time i install updates on it before problems arise on that machine ive not installed updates fora year and no problems
thanks for your help though andyour time ill letyou know if ive got any moreproblems any ideas on why the vista install wouldnt work first??? seems odd to me thanks again

#11 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,212 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:02:58 AM

Posted 15 September 2010 - 02:44 AM

I have no idea why it wouldn't work.

I really recommend you install those updates! Not doing so will leave your computer wide open for all kind of exploits. However, this is up to you.

I am closing this topic as requested.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users