Not able to instal programs

[rinoscar]

Here is the OTL log:

All processes killed
========== OTL ==========
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{02478D38-C3F9-4efb-9B51-7695ECA05670}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2B9A2F4B-E636-4C40-A422-DF4CAAE800A2}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2B9A2F4B-E636-4C40-A422-DF4CAAE800A2}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EFDBF2A-6563-4DFC-BFCA-34F2677A5C01}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2EFDBF2A-6563-4DFC-BFCA-34F2677A5C01}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BB3E753A-140C-4385-A351-BC12C06F0856}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BB3E753A-140C-4385-A351-BC12C06F0856}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C2A1C5CB-C0EF-4689-9436-F62CCA1C5383}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{C2A1C5CB-C0EF-4689-9436-F62CCA1C5383}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E3DB17F5-A378-41BC-BBF7-B6A07F360F60}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E3DB17F5-A378-41BC-BBF7-B6A07F360F60}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F0626A63-410B-45E2-99A1-3F2475B2D695}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F0626A63-410B-45E2-99A1-3F2475B2D695}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\QuickTime Task deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\iiijigh\ deleted successfully.
C:\WINDOWS\system32\rntqsueq.ini moved successfully.
C:\WINDOWS\system32\dkugiqog.ini moved successfully.
C:\WINDOWS\system32\jmnmp.ini2 moved successfully.
C:\WINDOWS\system32\jmnmp.ini moved successfully.
C:\WINDOWS\system32\bwwfuyth.ini moved successfully.
C:\WINDOWS\system32\qsstv.ini2 moved successfully.
C:\WINDOWS\system32\qsstv.ini moved successfully.
C:\WINDOWS\system32\llthyrxc.ini moved successfully.
C:\WINDOWS\system32\jadqlfgw.ini moved successfully.
C:\WINDOWS\system32\mujooknm.ini moved successfully.
C:\WINDOWS\system32\fillm.ini moved successfully.
C:\WINDOWS\system32\fillm.ini2 moved successfully.
C:\WINDOWS\system32\npupgxwb.ini moved successfully.
C:\WINDOWS\system32\cfvppvjg.ini moved successfully.
C:\WINDOWS\system32\mmnpo.ini2 moved successfully.
C:\WINDOWS\system32\mmnpo.ini moved successfully.
C:\WINDOWS\system32\fydajndn.ini moved successfully.
C:\WINDOWS\system32\qekwvtiw.ini moved successfully.
C:\WINDOWS\system32\witvwkeq.dll moved successfully.
C:\WINDOWS\system32\jopykjtv.ini moved successfully.
C:\WINDOWS\system32\vxwvw.ini2 moved successfully.
C:\WINDOWS\system32\vxwvw.ini moved successfully.
C:\WINDOWS\system32\cvuxgfoh.ini moved successfully.
C:\WINDOWS\system32\tkshywqk.ini moved successfully.
C:\WINDOWS\system32\wvutv.ini2 moved successfully.
C:\WINDOWS\system32\wvutv.ini moved successfully.
C:\WINDOWS\system32\mxflokte.ini moved successfully.
C:\WINDOWS\system32\cedgh.ini2 moved successfully.
C:\WINDOWS\system32\cedgh.ini moved successfully.
C:\WINDOWS\system32\tkoshxfv.ini moved successfully.
C:\WINDOWS\system32\clmxmulr.ini moved successfully.
C:\WINDOWS\system32\dddgh.ini2 moved successfully.
C:\WINDOWS\system32\dddgh.ini moved successfully.
C:\WINDOWS\system32\mbbfgabp.ini moved successfully.
C:\WINDOWS\system32\iptvikkp.ini moved successfully.
C:\WINDOWS\system32\twxbc.ini2 moved successfully.
C:\WINDOWS\system32\twxbc.ini moved successfully.
C:\WINDOWS\system32\prhunlqg.ini moved successfully.
C:\WINDOWS\system32\theabnwq.ini moved successfully.
C:\WINDOWS\system32\blejwrkm.ini moved successfully.
C:\WINDOWS\system32\pmjsmbrg.ini moved successfully.
C:\WINDOWS\system32\gxnmcwvr.ini moved successfully.
C:\WINDOWS\system32\vvrrpebw.ini moved successfully.
C:\WINDOWS\system32\wwparwxv.ini moved successfully.
C:\WINDOWS\system32\uaakuipe.ini moved successfully.
C:\WINDOWS\system32\ufbimqwi.ini moved successfully.
C:\WINDOWS\system32\kjsojfkd.ini moved successfully.
C:\WINDOWS\system32\bipmroyg.ini moved successfully.
C:\WINDOWS\system32\suxbc.ini2 moved successfully.
C:\WINDOWS\system32\suxbc.ini moved successfully.
C:\WINDOWS\system32\yeturmgy.ini moved successfully.
C:\WINDOWS\system32\insgwoyy.ini moved successfully.
C:\WINDOWS\system32\nmnpo.ini2 moved successfully.
C:\WINDOWS\system32\nmnpo.ini moved successfully.
C:\WINDOWS\system32\vwiovfsi.ini moved successfully.
C:\WINDOWS\system32\dsnvrwqx.ini moved successfully.
C:\WINDOWS\system32\xvjnngxp.ini moved successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:5C321E34 deleted successfully.
ADS C:\Documents and Settings\All Users\Application Data\TEMP:B623B5B8 deleted successfully.
========== REGISTRY ==========
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Documents and Settings\user\Desktop\cmd.bat deleted successfully.
C:\Documents and Settings\user\Desktop\cmd.txt deleted successfully.
========== COMMANDS ==========
 
[EMPTYTEMP]
 
User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 6554635 bytes
->Flash cache emptied: 434 bytes
 
User: All Users
 
User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes
 
User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
 
User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
 
User: Owner
 
User: user
->Temp folder emptied: 2328828 bytes
->Temporary Internet Files folder emptied: 3852519 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 3363851 bytes
->Flash cache emptied: 434 bytes
 
%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 1172792 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 4986136 bytes
 
Total Files Cleaned = 21.00 mb
 
 
[EMPTYFLASH]
 
User: Administrator
->Flash cache emptied: 0 bytes
 
User: All Users
 
User: Default User
->Flash cache emptied: 0 bytes
 
User: LocalService
 
User: NetworkService
 
User: Owner
 
User: user
->Flash cache emptied: 0 bytes
 
Total Flash Files Cleaned = 0.00 mb
 
 
OTL by OldTimer - Version 3.2.20.6 log created on 01272011_182442

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\user\Local Settings\Temp\~DF1394.tmp not found!
File\Folder C:\Documents and Settings\user\Local Settings\Temp\~DF13AF.tmp not found!
File\Folder C:\Documents and Settings\user\Local Settings\Temp\~DFF060.tmp not found!
File\Folder C:\Documents and Settings\user\Local Settings\Temp\~DFF07B.tmp not found!
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\Content.IE5\97DYN1P1\index[2].htm moved successfully.
C:\Documents and Settings\user\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
File\Folder C:\WINDOWS\temp\JET8725.tmp not found!

Registry entries deleted on Reboot...

[guestolo]

Yes, go ahead and run ComboFix from Safe mode with Networking if you have to
Post back the results afterwards

[rinoscar]

I wanted to run it, however Norton was running in the background. SInce there was no icon of norton on the bottom right hand, I thought it was not on! So I had to cancel the combofix, and then the icon vanished and the ethernet card would not work. Even if I safemode with network, it will not access the internet. So I am stuck!!

I managed to run a chkdsk(checkdisk) maybe that would have somehow unblock the ether card, nope.

Can you remote access that computer with no internet? Cause I am about to reboot that computer with my boot:P

[guestolo]

Combofix will disconnect the computer from the Internet temporarily, just let it run
Reboot the computer and try it again

[rinoscar]

Ran the PC in safemode...

Launched combofix....it wanted to download something that it needed to do the job good, however the ethernet card is disabled. Still went on with the scan. I was in a rush, so I had to leave and did not return to that computer yet. As soon as I get info on the status, I will let you know.

[rinoscar]

My sister went over to check up on the pc. She said the was a log file. Is there a way to retrieve that log?

THere are now 2 other problems, first when loading in regular mode, there are no more Icons on the desktop. If I click on start and then any other program, it will freeze up. I can only get on through safemode. Second problem, even in safe mode with networking, it will not connect to the internet. The ethernet card will not work.

[guestolo]

She said the was a log file. Is there a way to retrieve that log?

I'm not sure what you mean by that?
Can you copy/paste that log to a thumbdrive, transfer it to this computer and post back here
It may be easier if the owner of the computer posts, not such a delay in replies
Or take the computer to your place and continue with the cleaning process

As far as being knocked offline
Can you save to the desktop, you may have to transfer WinsockfixXP to the desktop of the computer offline
http://www.snapfiles.com/get/winsockxpfix.html
Run the tool, follow the prompts, reboot when done, are you back online?

NOTE: It is going to be very hard to help without seeing some kind of log from this computer

[rinoscar]

When I ran the combofix, I could not stay until the end. I was told that after the combo fix, there was a pop up window with somesort of log. Is it from after combofix finished running?

I will have to put this on hold. I think the owner is going to scrap the computer and buy a laptop. I will let you know at the end of the day.

[guestolo]

I was told that after the combo fix, there was a pop up window with somesort of log. Is it from after combofix finished running?

Yes, more than likely that is the log from ComboFix


As I stated earlier

Please include the C:\ComboFix.txt in your next reply

If you do plan to stay with this topic, and troubleshoot this computer
Can you manually navigate to ComboFix.txt and include the contents please

[rinoscar]

Still on hold, they are shopping for a laptop.