The first thing i done was run malwarebytes...it didnt find anything.
The only thing im worried about is the fact that this is not my pc i dont want to have to worry about something not working right for some reason after cleaning everything,otherwise if this was my pc,i wouldnt worry about it one bit
since i have more than a few ways to fix any problem short of total hardware failure.
My brother had problems with this laptop not even booting right before(dont know the whole story,not my laptop,thats why im here)...and we dont have the vista install disk so im basically screwed if something were to mess up somehow...i just want the opinion of someone more experienced than myself,just to be sure of the actions i take with these particular files.I dont imagine theres much to worry about but i dont have a whole lot of experience removing viruses and the like,so im not too sure about what the outcome might be if one of these files happens to be something nasty.
I take more of a a defensive approach to things like this,i like to know what im dealing with and what to expect before i mess around with things.
Here are the main files im concerned abut,Theyre all named chkdsk.dll and protect.dll,only in
different locations.
C>Users>craig>AppData>Roaming>Microsoft>Windows>
Startmenu>Programs>Startup>chkdsk.dll
-->win32:Rootkit-gen
C>Users>Craig>protect.dll -->win32:Rootkit-gen
C>Users>Default>protect.dll -->win32:Rootkit-gen
C>Users>guest.craig-pc>Appdata>Roaming>Microsoft
>Windows>Startmenu>Programs>Startup>chkdsk.dll -->win32:Rootkit-gen
C>Users>Guest.craig-pc>protect.dll -->win32:Rootkit-gen
C>Windows>ServiceProfiles\Localservice>protect.dll -->win32:Rootkit-gen
C>Windows>System32>Config>System>Systemprofile>Appdata>Roaming>Microsoft>Windows>Startmenu>Programs>Startup>chkdsk.dll -->win32:Rootkit-gen
C>Windows>System32>Config>SystemProfile>protect.dll --->win32:Rootkit-gen
I just dont like the fact that theyre named "chkdsk.dll" and "protect.dll"
Heres a couple more.
c>windows>winxs>x86_microsoft-windows-mediaplayer-wmvcore_31bf3856ad364e35_6.0.6000.20864_none_05990578F1Fb9a4\WMVCORE.DLL -- "error:the system cannot read from the specified file"
C>windows>system32>driverstore>filerepository>prnhp.imf_5641fa75>I386>HPFIMG50.DLL -- "error:the system cannot read from the specified file"
And theres a few which i would bet he most likely from frostwire:
C>Windows>System32>LocalServise>317.music.au
>318.music.au
>319.music.au
>320.music.au
Finally i must mention the 11,000 some .tmp files that are causing the avast "spyware blocked" window to keep poping up.They are all win:32:spyware-gen and theyre in the windows/system32 directiory.AKA Win32 Dracur in the scan log.
What should i do here?If i run a boot time scan with avast,are the files safe to quarantine without messing up the pc?