SandBox malfunction possibly virus

[essexboy]

Nope safe mode or normal they will function as well

[CAS159]

What do I have to lose?  I'd like to try running some programs in Safe Mode.  What do you recommend?

[essexboy]

OK run combofix using a fresh copy

[CAS159]

What parameters should I enter into ComboFix?

[essexboy]

None just run the base programme

[CAS159]

ComboFix did not a appear to find anything.  However I couldn't run it in Safe Mode because Eset runs a stealth program, Eset SysInspector, which I could not find the file to shut down in Safe modes.  So after getting warning messages in Safe Mode and Safe Mode with Networking I shut down ComboFix and downloaded fresh copies for each time I ran Combofix.  In normal mode I shut down Eset and ran ComboFix.
Since I tried to do a "sfc /scannow" a couple of days ago each time I boot up the command is executed. 

[CAS159]

I remembered I have an old Dell notebook computer and I loaded the WinXP and Cannon CD.  They read well on the notebook.  There is nothing wrong with the CD's

[essexboy]

The way around the cd is to copy the i386 folder from the CD to a USB drive using another computer.
Copy the i386 folder to the root C drive

Then adjust the registry to make that the source path http://hhicomputerguys.blogspot.co.uk/2011/06/sfc-scannow-without-windows-cd-using.html

[CAS159]

I went out and bought a usb drive and I'm copying the i386 folder to it from the CD.  It will take 144 minutes to complete on this old Dell Latitude.  I'm hope my system will read the usb.

[CAS159]

I finished changing the
"registry setting for HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Setup",
"SourcePath and set it equal to C:\", and
ran SFC /SCANNOW after pasting the USB Flash drive i386 folder on the C:\ drive and it still won't read the Windows CD or the Cannon CD.  The SFC /SCANNOW program still starts up on Windows boot-up I displayed on my previous post.  Malware appears to have control of SFC /SCANNOW.  I deleted C:\i386 re-nstalled it from the usb and re-started SFC /SCANNOW.  Are there any other options to try?

[essexboy]

If this is malware then it is doing things completely alien to the normal.  Were you able to run Dr Web from a USB ?

[CAS159]

No.  I didn't try running Dr.Web or Combofix from a USB.  My CMOS does not recognize USB drives.  There is an upgrade but I have not found it. I just downloaded it to my USB.  I don't know the difference between malware and a virus.  I ran scannow again and rebooted.  Windows started with a blue screen with dots as if it was re-initializing itself.  When Windows started scannow started by itself again.  I'm running Scannow again and I've turned off system restore.  I will restart later but if I've turned off system restore I would think that changes made will be lost.  I've found other Google post to similar problems. 

[essexboy]

Try Dr Web cure it http://www.freedrweb.com/cureit/?lng=en

[CAS159]

I finally ran Dr.Web after 2 unsuccessful downloads of 143,232KB with dial-up.  I've attached the log files on this post which I've cut and pasted into 2 files less than 512 KBs, the first on this and the second on my next post, and a couple screen captures. The first a Dr.Web message and the second SFC program starting on Windows boot.  SFC started to start by itself on boot after I tried to start it?
However, there is no change. My system is still unable to access the WinXP CD, and I guess the Cannon CD, from Windows or from DOS. It can read any other CD in Windows or DOS?
Is there a program which tracks which CD's are read in Windows and DOS?  I have not updated the "FastTrack 378(TM) Bios Version 1.00.0.37 (2003) Promise Technology, Inc." BIOS and was opening the Asus manual to check how to update.  Any suggestions?

[CAS159]

This is the other attached part of the 590Kb Dr.Web log file.