idk what my uncle did to get this thing. but it seems like its relentless. i recently found a file in the computers recovery drive called info.exe (original file name starturl.exe, creator xss, made in germany) and in the windows folder a zip folder called ubd.txt containing various malicious infected ips. theres about 20-40 sites in it. and before the ips are listed it shows 20-40 legitimate sites with a weird code at the end ex. wxww.youtube.xom^^10365^^^^1^0^0^0^0^0^0^0^0^0^0^0^none^-1^0^^. each ending is different. my main concern is if the two are related. also i found d:\autorun.inf with this code [AUTORUN]
SHELLEXECUTE=Info.exe folder.htt 480 480

are these malicious? and does it have to do with the url:mal warning popup avast shows?

???

If you are running a 32-bit OS, run a boot scan with Avast.

Tell us if anything is found.

it does not allow windows update shortcut to be used. or manually going to the windows update site.

Please stick to one topic where essexboy is helping you out of the mess.

Thanks, nmb. I did not realize help was being offered in another post.

Hey charleyO, no worries against you. It was for the OP. cheers