DRogers

OK, downloaded and ran Rkill, tried to install Combofix and the computer repeatedly crashes in the last second of the download.

unfortunately I dont seem to be able to download it, windows asks for my permission to run it which I give and it then gives me a screen asking me to try again, which I do and the screen appears again.

Thanks for your help starbuck, unfortunately the problem is still there. The computer crashes soon after I go online, Any further thoughts?

Thanks Completed scan attached KAVScan-070410.txt

Didnt upload so here it is: All processes killed ========== OTL ========== Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully. Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} C:\Windows\Downloaded Program Files\erma.inf moved successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found. Starting removal of ActiveX control {CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA} Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0000-ABCDEFFEDCBA}\ not found. C:\Users\Dave\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully. ADS C:\Users\Dave\Documents\LimeWire:Roxio EMC Stream deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Dave ->Temp folder emptied: 1769039 bytes ->Temporary Internet Files folder emptied: 14696728 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 3578201 bytes ->Apple Safari cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Flash cache emptied: 0 bytes User: Public %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 8384 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 19.00 mb [EMPTYFLASH] User: All Users User: Dave ->Flash cache emptied: 0 bytes User: Default ->Flash cache emptied: 0 bytes User: Default User ->Flash cache emptied: 0 bytes User: Public Total Flash Files Cleaned = 0.00 mb OTL by OldTimer - Version 3.2.1.0 log created on 04042010_211602 Files\Folders moved on Reboot... C:\Windows\temp\JET33FA.tmp moved successfully. File\Folder C:\Windows\temp\mcmsc_2IGcvzXCMsX5eeV not found! File\Folder C:\Windows\temp\mcmsc_hJWoqVOszfI7CR4 not found! File\Folder C:\Windows\temp\mcmsc_LsEqjY5fya0heVC not found! File\Folder C:\Windows\temp\sqlite_1B4QbkYqTVnWTvd not found! File\Folder C:\Windows\temp\sqlite_g3meNgMTvMiepip not found! File\Folder C:\Windows\temp\sqlite_P7ZZo6NNTGUJ65Z not found! File\Folder C:\Windows\temp\sqlite_ybYTFRy6KBiY1jR not found! Registry entries deleted on Reboot...

Staruck attached is the Otl fix report Unfortunately I cannot run the Eset scan as my computer crashes whenever I try. Dave

OK now attached as txt filesExtras.Txt OTL.Txt

OK logfiles now attachedOTL logfile.doc OTL Extras.doc

OTL reports are too large to send, how do I attach them? Dave

Hi, thanks for your help, MBAM rpt: Malwarebytes' Anti-Malware 1.45 www.malwarebytes.org Database version: 3948 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.18904 03/04/2010 13:22:53 mbam-log-2010-04-03 (13-22-53).txt Scan type: Full scan (C:\|D:\|E:\|) Objects scanned: 235313 Time elapsed: 2 hour(s), 29 minute(s), 10 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected)

OK please move the post to the computer security section.

Hi Last week my McAfee antivirus detected and removed 6 Trojans within the space of 2 minutes. Since then my computer crashes within a few minutes of connecting to the internet (IE and Firefox). Can anyone offer any help? thanks