I'll do that tomorrow when I resume work on it
Sorry for the delay in replying; I've been ill.
First of all, here is the MalWareBytes AntiMalware Log:
Malwarebytes' Anti-Malware 1.25
Database version: 1071
Windows 5.1.2600 Service Pack 2
14:33:37 20/08/2008
mbam-log-08-20-2008 (14-32-41).txt
Scan type: Full Scan (C:\|D:\|)
Objects scanned: 103459
Time elapsed: 1 hour(s), 7 minute(s), 27 second(s)
Memory Processes Infected: 1
Memory Modules Infected: 0
Registry Keys Infected: 4
Registry Values Infected: 5
Registry Data Items Infected: 0
Folders Infected: 14
Files Infected: 11
Memory Processes Infected:
C:\WINDOWS\system32\blphcjmjj0el85.scr (Trojan.FakeAlert) -> No action taken.
Memory Modules Infected:
(No malicious items detected)
Moderator Edit:
Pasted logs removed
You must attach the logs
After that I took action, after which the log was clean, but I forgot to save that one! and as I'm not at my client's house now, I can't take one!
rdable answer is a rebuild
Here is the AntiSpyware Log
SUPERAntiSpyware Scan Log
http://www.superantispyware.com
Generated 08/20/2008 at 04:58 PM
Application Version : 4.15.1000
Core Rules Database Version : 3541
Trace Rules Database Version: 1530
Scan type : Quick Scan
Total Scan Time : 00:20:04
Memory items scanned : 376
Memory threats detected : 0
Registry items scanned : 429
Registry threats detected : 0
File items scanned : 8835
File threats detected : 0
Moderator Edit:
Pasted logs removed
You must attach the logs
Here is the HiJack This log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:24:57, on 20/08/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal
Moderator Edit:
Pasted logs removed
You must attach the logs
Another problem has arisen now. After all those scans, and deleting the files, I rebooted. Everything was fine, until I did a Windows Update, after which it wouldn't startup properly. I dad a Repair which worked fine. Then it wouldn't recognise the CD drive, so I followed a procedure from Microsoft, rebooted, then it recognised it again.
On Sunday night, John turned it off, and it said it was installing an update on shut down (the same update it had installed twice before) and on Monday morning it just crashed on the initial loading screen again.
I think it is going to be quicker, and more affordable for him, for me to do a rebuild.