Major Problem

hey guys, i have had a problem for a while and have attempted numerous solutions but have not been successful. I have run through all the steps recommended before posting.

here is the history:
1- I have been unable to download windows service pack 1 or 2 (tried 20 or more times for a couple of months). When i try to download them i get this message "...system\ftp.exe is in use or running.." I have closed down everything and even attempted to download in safe mode.

2- apparently i am unable to run certain programs because the computer will not recognize me as the administrator (i have tried to reinsert myself as system adminstrator but i still can't get full access. (when i try to download some major programs (like a stock trade station) i was unable to because of this problem)

3- The program that appears to be the cause of the problem appears to have the ability to regenerate itself after numerous attempts to delete it through hijack this and through adaware. I downloaded "browser sentintel" and a few times a day i get this broswer alert:
Name: birdrule
Executable: C:\PROGRA~1\THEAXI~1\waveseek.exe
Location: HKLM Software\Microsoft\Windows\CurrentVersion\Run
Run Once: No

4- WHen i ran trend micros scan it came up with 8 viruses called troj.swizzor.r. I couldnt get the rest of the name, but they all had "\theaxis\" in the name so it is definitely related.

5- when i ran adaware it came up with 146 critical objects. I have had adaware for a while and this is not uncommon. I run adawre a couple of times a day and i usually get 8 or 146 critical objects each time (even if i am not using the computer). the objects are pretty much the same and one is listed as an LOP.

6- all the other virus and spyware scans came up clean.

7- Its been a few hours since i finished all the steps and i just got a new alert from "browser sentinel" that the waveseek program was trying to install itself again. and i just ran adaware and this spyware came up with this spyware: c:\docume~1\alan\locals~1\temp\sta4f.exe

8- attached is my hijack this log. i have gone through the process of getting rid of the unwanted programs on hijack this before (too many to count), but i am hoping that you guys can find something new or figure something out before i have to uninstall windows.

i hope i laid things out as clear as possible. if you need to know more info let me know.

thanks in advance!

 

sorry about using word file, i forgot to attach it as text. I had read the tutorial before and deleted all the items suggested but it didnt prevent the problem from reappearing. I have been guided through a few other hijack this procedures and deleted the "search assistant" line a few times. unfortunately it keeps coming back.

the problem i have is not something that can be solved through hijack this. I just posted the hijack this log as added information.

thanks again, and sorry for the problems

 

chaslang, nothing came up in the value field.

the value name was AppInit_DLLs

the keyname was HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows

the type was REG_SZ

 

when i tried to run !log!.bat, i got this message:
"windows cannot access the specific device, path or file. you may not have the appropriate permission"

this is something i have seen before. i have two user accounts on my computer. Mine is listed as the administrator (when i check the user accounts) but for some reason i am not always recognized as such. When i switch the administrator over to the other user i get the same message.

again, thanks for your time.

 

i did it it again, and still the same message.

Maybe this will clarify things a bit. When i reboot in normal mode i get two users, me and my wifes. when i reboot in safe mode i get two users listed, me and "Administrator."

I tried to run the program from my user and my wifes, and then in safe mode i tried it again using my user and the "Adminstrator." neither worked.

thanks

 

i tried to attach the file but it said that it was an invalid file. I saved it as a txt. and when i tried to upload it i got this message: vx2.log: Invalid File Type

i tried it a few times with no luck (and read the instructions a few times). sorry, but here is the log:

Log for VX2.BetterInternet File Finder (msg126)

Files Found---

Additional Files---

Keys Under Notify---
crypt32chain
cryptnet
cscdll
igfxcui
ScCertProp
Schedule
sclgntfy
SensLogn
termsrv
wlballoon


Guardian Key--- is called:

User Agent String---
{9A8855C7-0738-4D49-BB62-3A309D5357AB}

 

I couldnt find that line in hijack this. I also can't post a hijack this log properly because for some reason i am unable to attach it properly.

I can say that since i ran all the programs you suggested i have not encountered the same spyware problems. In fact i only get very minor ones picked up by adaware. So the problem is only the inability to download windows update. Let me know what you want me to do next.