Sorry for late reply, I’m a little busy today but will check here when I can- You see I’m desperate…
I’m running Win Vista 64 bit
When I try to uninstall avast they say it’s already uninstalled- but, when I download anything it’s still there and check the prog for virus. I’ll send you those screenshots I have to try to explain this better.

Thank you

OK do you have a USB drive ? If so we will have a quick look outside of windows

Download the following three programmes to your desktop :

1. WiNTBootIc
2. Windows Vista RC
3. Farbar Recovery Scan Tool

Extract wintoboot to your desktop
Insert a USB drive of at least 1GB
Run Wintoboot

http://dl.dropbox.com/u/73555776/wintoboot.JPG

Drag and drop the Windows Vista ISO to the programme in the space indicated
Tick the Format box and accept the warnings
Press Do It

You will see it progressing

http://dl.dropbox.com/u/73555776/usb%20progress.JPG

It will let you know when it is done
Then copy FRST64 to the same USB

http://dl.dropbox.com/u/73555776/frstwintoboot.JPG

Insert the USB into the sick computer and start the computer. First ensuring that the system is set to boot from USB
Note: If you are not sure how to do that follow the instructions Here

When you reboot you will see this.
Click repair my computer

http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7275.jpg

Select your operating system

http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277202.jpg

Select Command prompt

http://i1224.photobucket.com/albums/ee362/Essexboy3/RepairVista_7277.jpg

At the command prompt type the following :

notepad and press Enter.
The notepad opens. Under File menu select Open.
Select “Computer” and find your flash drive letter and close the notepad.
In the command window type e:\FRST64.exe and press Enter
Note: Replace letter e with the drive letter of your flash drive.
The tool will start to run.

https://dl.dropbox.com/u/73555776/FRST%20Start%20scan.gif

Press Scan button.
It will make a log (results.txt) on the flash drive. Please copy and paste it to your reply.

Ok I’ll do this now, but I have a silly question I have used my usb stick on this pc- Is it possible that it’s infected if my pc is? I guess I need a unused one?

I think I have to read it 5 times to understand what to do So I send the screenshots before I start. I don’t know if I need to send the 2 attachments I posted earlier in the thread- They come when I installed java. I admit that I don’t read readme files all the time but this time I did, and I think it sounds really weird. If you have time to take a look at them (it’s a lot to read)I would like to know if it’s normal.

Thank’s again

Screenshots

2 more

Flash failed- do you want me to continue?
Btw I have no access to bios, but I think it will work going to f12 it does when I boot from cd

Are you trying to create the flash drive on a different computer ? As it may not work from the infected system

Thank you essexboy
I tried to do it on my pc - I’ll ask my sister if I can come over and do it on one of their computeres today. I should have thought longer than doing it on my own pc. I’ll be back when I have fixed the flash drive

Here is the log
Idk if it’s correct cause it change letter from e to f and the report has another name then you said.

Thank you

Have you tried a system restore ? As it appears that it is still running

HKLM\...\RunOnce: [*Restore] C:\Windows\System32\rstrui.exe /runonce [339968 2009-04-10] (Microsoft Corporation)

In this case it would be better to boot from the USB
Select Repair my Computer
Select System Restore
Then restore back to at least two days prior to this error

Could you let me know how that goes

I have tried that but nothing change. (edit- I’ll try again from usb)

I forgot to tell you that there is a partition named x om my pc, it don’t show up under my computer but it was there after I finished the scan.

Also, I bought licence for about three or four weeks ago now it say that it have expired. The link I got was valid only until 17.sept so I don’t have it. I have 2 pdf files but I can’t open them because I can’t download a pdf reader. The win.firewall don’t work and of course the avast wan’t either since they say my licence has expired. So I’m really unsecured out here

X will be the recovery console, as windows is not running the system restore from the recovery console should work

ok x showed up as boot so I guess thats correct.

I restored from usb nothing changes.
Any idea?

Rename Combofix.exe to combofix.com please

Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

• IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

[*]Double click on ComboFix.exe & follow the prompts.
[*]Accept the disclaimer and allow to update if it asks

http://img.photobucket.com/albums/v706/ried7/NSIS_disclaimer_ENG.png

http://img.photobucket.com/albums/v706/ried7/NSIS_extraction.png

[*]When finished, it shall produce a log for you.
[*]Please include the C:\ComboFix.txt in your next reply.

Notes:

1. Do not mouse-click Combofix’s window while it is running. That may cause it to stall.
2. Do not “re-run” Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

To do this correct, I have to go to a ok pc? If so I have to use a usb stick- and put combofix on it and then copy it over to my desktop?
Or do I have to do something else?

Yes do it that way please, copy combofix to the sick computer

Thank you. I have to wait until tomorrow then- It’s almost midnight here

Ok I can’t install it from my desktop.
I renamed it but it called .com.exe as last name.
Now I was thinking What if I boot from usb is there a way to install from there? Or do you have any Ideas? I go to my father to download he is home today so i have the possibility to use his pc as much as I need the whole day so if there are other programs I can download it is no problem.

Thank You

OK I have the odd programme that will work outside windows… This programme will need to be on a CD

Please print these instruction out so that you know what you are doing

[*]Download OTLPENet.exe to your desktop
[*]Ensure that you have a blank CD in the drive
[*]Double click OTLPENet.exe and this will then open imgburn to burn the file to CD
[*]Reboot your system using the boot CD you just created.
Note : If you do not know how to set your computer to boot from CD follow the steps here
[*]As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads
[*]Your system should now display a Reatogo desktop.
Note : as you are running from CD it is not exactly speedy
[*]Double-click on the OTLPE icon.
[*]Select the Windows folder of the infected drive if it asks for a location
[*]When asked “Do you wish to load the remote registry”, select Yes
[*]When asked “Do you wish to load remote user profile(s) for scanning”, select Yes
[*]Ensure the box “Automatically Load All Remaining Users” is checked and press OK
[*]OTL should now start.
[*]Press Run Scan to start the scan.
[*]When finished, the file will be saved in drive C:\OTL.txt
[*]Copy this file to your USB drive if you do not have internet connection on this system.
[*]Right click the file and select send to : select the USB drive.
[*]Confirm that it has copied to the USB drive by selecting it
[*]You can backup any files that you wish from this OS
[*]Please post the contents of the C:\OTL.txt file in your reply.