Cant run or install programs.....

Attach the logs from SUPERAntiSpyware and MGtools.

Did you try renaming the MBAM and Spybot executable files as suggested?

 

The below is where you put combofix!
C:\Documents and Settings\All Users\Documents\Security (EXE)\ComboFix.exe

This is not where the READ & RUN ME instructions specified. It must be put on your Desktop. That is you should have

C:\Documents and Settings\andy ryle\Desktop\ComboFix.exe

Please put it where requested and try running it again later by just double clicking on. But do this after doing the below.

Now you must disable Spybot's Teatimer as we requested in the READ & RUN ME. See this: How to disable Spybot's TeaTimer

Now uninstall Viewpoint Media Player as requested in step 1 of the READ & RUN ME.

Run this Disable/Remove Windows Messenger to remove Windows Messenger. Do not confuse Windows Messenger with MSN Messenger because they are not the same. Windows Messenger is a frequent cause of popups.

Run C:\MGtools\analyse.exe by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator). This is really HijackThis (select Do a system scan only) and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:

O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKCU\..\Run: [88016554115418438706262628376319] C:\Program Files\Antivirus 2009\av2009.exe

After clicking Fix, exit HJT.


Now download The Avenger by Swandog46, and save it to your Desktop.

• Extract avenger.exe from the Zip file and save it to your desktop
• Run avenger.exe by double-clicking on it.
• Do not change any check box options!!
• Copy everything in the Quote box below, and paste it into the Input script here: part of the window:

• Now click the Execute button.
• Click Yes to the prompt to confirm you want to execute.
• Click Yes to the Reboot now? question that will appear when Avenger finishes running.
• Your PC should reboot, if not, reboot it yourself.
• A log file from Avenger will be produced at C:\avenger.txt and it will popup for you to view when you login after reboot.

After reboot look for all of the above files we had Avenger attempt to delete. If you still see them, delete them yourself.

Also delete all files in the below folders except ones from the current date (Windows will not let you delete the files from the current day).
C:\WINDOWS\temp\
C:\Documents and Settings\andy ryle\Local Settings\Temp\

Now run Ccleaner!

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).

Then attach the below logs:

• C:\avenger.txt
• C:\MGlogs.zip

Make sure you tell me how things are working now!

 

Then uninstall Spybot and leave it uninstall for now.

What happens? Any error messages? Have you tried running it in safe boot mode? Can you run it after logging into a different user account.

The logs.zip file you posted is not a new copy of MGlogs.zip. You did not run the GetLogs.bat file to create a new set of logs as requested. However, now I want you to download and run the new version of MGtools from MGtools.exe Then attach the new MGlogs.zip file. You should not need to ever rename the file when the logs are new. The file you attach should always be MGlogs.zip.

 

Download HostsXpert and then follow the below steps.

• Unzip HostsXpert.zip
• It will create a folder named HostsXpert in whatever folder you extract it to.
• Run HostsXpert.exe by double clicking on it.
• Click the Make Writeable? button. (if you only see a Make Read-Only selection, it is already writeable so skip this button).
• Click Restore Microsoft's Hosts File and then click OK.
• Click the X to exit the program

Now run this: Using SDFix I will ask for the log at the end of this message.

Copy the bold text below to notepad. Save it as fixme.reg to your desktop. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry.

Make sure that you tell me if you receive a success message about adding the above
to the registry. If you do not get a success message, it definitely did not work.

Now reboot!

Now run the C:\MGtools\GetLogs.bat file by double clicking on it (Note: if using Vista, don't double click, use right click and select Run As Administrator).



Then attach the below log

• the SDFix log
• C:\MGlogs.zip

Make sure you tell me how things are working now!

 

Please do the below.

Click Start > Control Panel > System > Hardware > Device Manager > View > Show Hidden Devices.

• Scroll down to “Non-plug and Play Drivers” and click the plus icon to open those drivers.
• Then search for TDSSserv.sys
• Let me know if you find this or not.
• If you do find it, right click on it, and select Disable. Do not try to uninstall it.
• Also if this is found and you disable it, then reboot and see if you can run the other scans that would not run.