Live Chat & Podcast at 1:00PM Eastern on Sunday!

Advertisement

There's no such thing as a stupid question, but they're the easiest to answer.
Login
Search

Advertisement

Virus & Other Malware Removal Virus & Other Malware Removal
Go to first new post Virus
Go to first new post Explorer.exe doesn't start
Go to first new post Conduit search provider in IE
Go to first new post Laptop is acting weird
Go to first new post Trojan virus
Go to first new post Suspected virus is causing havoc (contin ...
Go to first new post Suspected virus is causing havoc (contin ...
Go to first new post Suspected virus is causing havoc
Go to first new post intermittent freezing and strange progra ...
Go to first new post Browser shutdown
Go to first new post Infected with "Police Cybercrime In ...
Go to first new post Lavasoft Search redirect hijack
Go to first new post Yontoo removal
Go to first new post YellowMoxie Redirect
Go to first new post Printer Communication Problem- HKLM Boot ...
Search Search
Search for:
Tech Support Guy Forums > > >

Computer is SO slow it's IMPOSSIBLE to get anything done!!

(In Progress)
(!)

Reply
Page 2 of 8 1 2 345 Last »
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
07-Jul-2012, 10:13 AM #16
Do you use Putty or have it installed?

I'm assuming these proxy settings relate to that program:

uInternet Settings,ProxyServer = 127.0.0.1:9666
blessedbythree's Avatar
Computer Specs
Member with 58 posts.
THREAD STARTER
  
Join Date: Jul 2012
Experience: Beginner
08-Jul-2012, 01:03 AM #17
I've never heard of putty.
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
08-Jul-2012, 07:04 PM #18
Are you running a proxy server?
blessedbythree's Avatar
Computer Specs
Member with 58 posts.
THREAD STARTER
  
Join Date: Jul 2012
Experience: Beginner
08-Jul-2012, 07:54 PM #19
I'm not familiar with a proxy server either, so I'm pretty sure I don't use one.
blessedbythree's Avatar
Computer Specs
Member with 58 posts.
THREAD STARTER
  
Join Date: Jul 2012
Experience: Beginner
08-Jul-2012, 07:55 PM #20
Can I turn back on my McAfee yet, or should I wait?
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
08-Jul-2012, 08:13 PM #21
We are going to run ComboFix again in a few minutes when I post the instructions so please leave it off until then but you can turn it back on right after.
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
08-Jul-2012, 08:23 PM #22
Open Notepad and copy and paste the text in the code box below into it:

Code:
DDS::
uInternet Settings,ProxyServer = 127.0.0.1:9666

Firefox::
FF - ProfilePath - c:\documents and settings\HP_Administrator\Application Data\Mozilla\Firefox\Profiles\2au2xdzn.default\
FF - prefs.js: network.proxy.ftp - 127.0.0.1
FF - prefs.js: network.proxy.ftp_port - 9666
FF - prefs.js: network.proxy.gopher - 127.0.0.1
FF - prefs.js: network.proxy.gopher_port - 9666
FF - prefs.js: network.proxy.http - 127.0.0.1
FF - prefs.js: network.proxy.http_port - 9666
FF - prefs.js: network.proxy.socks - 127.0.0.1
FF - prefs.js: network.proxy.socks_port - 9666
FF - prefs.js: network.proxy.ssl - 127.0.0.1
FF - prefs.js: network.proxy.ssl_port - 9666
Save the file to your desktop and name it CFScript.txt

Referring to the picture below, drag CFScript.txt into ComboFix.exe




This will start ComboFix again. It may ask to reboot. Post the contents of Combofix.txt in your next reply.

Note: These instructions and script were created specifically for this user. If you are not this user, do NOT follow these instructions or use this script as it could damage the workings of your system.
__________________
Microsoft MVP - Consumer Security
blessedbythree's Avatar
Computer Specs
Member with 58 posts.
THREAD STARTER
  
Join Date: Jul 2012
Experience: Beginner
09-Jul-2012, 11:28 AM #23
ComboFix 12-07-06.02 - HP_Administrator 07/09/2012 1:20.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1022.473 [GMT -7:00]
Running from: c:\documents and settings\HP_Administrator\Desktop\puppy.exe.exe
Command switches used :: c:\documents and settings\HP_Administrator\Desktop\CFScript.txt
AV: Lavasoft Ad-Watch Live! Anti-Virus *Disabled/Updated* {A1C4F2E0-7FDE-4917-AFAE-013EFC3EDE33}
AV: McAfee Anti-Virus and Anti-Spyware *Disabled/Updated* {84B5EE75-6421-4CDE-A33A-DD43BA9FAD83}
FW: McAfee Firewall *Disabled* {94894B63-8C7F-4050-BDA4-813CA00DA3E8}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\docume~1\HP_ADM~1\LOCALS~1\Temp\IadHide5.dll
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\HP_Administrator\Local Settings\temp\IadHide5.dll
c:\documents and settings\HP_Administrator\WINDOWS
c:\windows\Downloaded Program Files\ODCTOOLS
c:\windows\system32\config\systemprofile\WINDOWS
.
.
((((((((((((((((((((((((( Files Created from 2012-06-09 to 2012-07-09 )))))))))))))))))))))))))))))))
.
.
2012-07-08 00:03 . 2012-07-08 00:04 -------- d-----w- c:\windows\system32\NtmsData
2012-07-06 19:34 . 2012-07-06 19:34 -------- d-----w- c:\program files\Citrix
2012-07-06 19:34 . 2012-07-06 19:34 -------- d-----w- c:\documents and settings\HP_Administrator\Local Settings\Application Data\Citrix
2012-06-22 00:32 . 2012-05-26 00:09 29312 ----a-w- c:\program files\Mozilla Firefox\ScriptFF.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-06-23 01:52 . 2012-04-11 03:29 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-23 01:52 . 2011-07-07 06:40 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-02 22:19 . 2007-06-01 02:01 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 22:19 . 2007-06-01 02:01 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 22:19 . 2004-08-09 21:00 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 22:19 . 2004-08-09 21:00 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 22:19 . 2004-08-09 21:00 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 22:19 . 2007-06-01 02:01 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 22:19 . 2005-05-26 11:16 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 22:19 . 2004-08-09 21:00 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 22:19 . 2004-08-09 21:00 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 22:19 . 2004-08-09 21:00 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 22:19 . 2007-06-01 02:01 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 22:19 . 2004-08-09 21:00 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 22:19 . 2004-08-09 21:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 22:18 . 2007-06-02 04:57 17136 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 22:18 . 2006-07-07 16:17 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 22:18 . 2005-05-26 11:19 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2004-08-09 21:00 599040 ----a-w- c:\windows\system32\crypt32.dll
2012-05-15 15:39 . 2004-08-09 21:00 832512 ----a-w- c:\windows\system32\wininet.dll
2012-05-15 13:20 . 2004-08-09 21:00 1863168 ------w- c:\windows\system32\win32k.sys
2012-05-04 13:16 . 2004-08-10 04:00 2148352 ------w- c:\windows\system32\ntoskrnl.exe
2012-05-04 12:32 . 2004-08-10 04:00 2026496 ------w- c:\windows\system32\ntkrnlpa.exe
2012-05-02 13:46 . 2004-08-09 21:00 139656 ------w- c:\windows\system32\drivers\rdpwd.sys
2012-04-23 14:46 . 2009-04-20 17:35 78336 ------w- c:\windows\system32\ieencode.dll
2012-04-23 14:46 . 2004-08-09 21:00 1830912 ------w- c:\windows\system32\inetcpl.cpl
2012-04-23 14:46 . 2004-08-09 21:00 17408 ------w- c:\windows\system32\corpol.dll
2009-01-14 19:11 . 2009-01-14 19:11 163840 ----a-w- c:\program files\ShippingAssistant.exe
2009-01-14 19:10 . 2009-01-14 19:10 175104 ----a-w- c:\program files\USPS.SmartClient.Presentation.LabelImport.dll
2009-01-14 19:10 . 2009-01-14 19:10 880640 ----a-w- c:\program files\USPS.SmartClient.Presentation.ShippingLabel.dll
2009-01-14 19:10 . 2009-01-14 19:10 151552 ----a-w- c:\program files\USPS.SmartClient.Presentation.ShippingCart.dll
2009-01-14 19:10 . 2009-01-14 19:10 24064 ----a-w- c:\program files\USPS.SmartClient.Presentation.WizardShellModule.dll
2009-01-14 19:10 . 2009-01-14 19:10 14336 ----a-w- c:\program files\USPS.SmartClient.Presentation.UserPreferences.dll
2009-01-14 19:10 . 2009-01-14 19:10 147456 ----a-w- c:\program files\USPS.SmartClient.Presentation.ShippingTools.dll
2009-01-14 19:10 . 2009-01-14 19:10 1024000 ----a-w- c:\program files\USPS.SmartClient.Presentation.Shell.Layout.dll
2009-01-14 19:10 . 2009-01-14 19:10 266240 ----a-w- c:\program files\USPS.SmartClient.Presentation.MyShipments.dll
2009-01-14 19:10 . 2009-01-14 19:10 49152 ----a-w- c:\program files\USPS.SmartClient.Presentation.MessageCenter.dll
2009-01-14 19:10 . 2009-01-14 19:10 1046528 ----a-w- c:\program files\USPS.SmartClient.Presentation.DeviceIntegration.dll
2009-01-14 19:10 . 2009-01-14 19:10 237568 ----a-w- c:\program files\USPS.SmartClient.Presentation.AddressBook.dll
2009-01-14 19:10 . 2009-01-14 19:10 131072 ----a-w- c:\program files\USPS.SmartClient.Presentation.Shell.Library.dll
2009-01-14 19:10 . 2009-01-14 19:10 1294336 ----a-w- c:\program files\USPS.SmartClient.Presentation.Shell.UI.dll
2009-01-14 19:09 . 2009-01-14 19:09 53248 ----a-w- c:\program files\USPS.SmartClient.Presentation.Shell.Interface.dll
2009-01-14 19:09 . 2009-01-14 19:09 65536 ----a-w- c:\program files\USPS.SmartClient.DomainModel.Workflow.dll
2009-01-14 19:09 . 2009-01-14 19:09 176128 ----a-w- c:\program files\USPS.SmartClient.Proxy.WebTools.Http.dll
2009-01-14 19:09 . 2009-01-14 19:09 36864 ----a-w- c:\program files\USPS.SmartClient.Proxy.WebTools.Agent.dll
2009-01-14 19:09 . 2009-01-14 19:09 77824 ----a-w- c:\program files\USPS.SmartClient.Device.PBK700DeviceAdapter.dll
2009-01-14 19:09 . 2009-01-14 19:09 15872 ----a-w- c:\program files\USPS.SmartClient.Device.dll
2009-01-14 19:09 . 2009-01-14 19:09 274432 ----a-w- c:\program files\USPS.SmartClient.Common.Label.Print.dll
2009-01-14 19:09 . 2009-01-14 19:09 374272 ----a-w- c:\program files\USPS.SmartClient.Common.eBay.Agent.dll
2009-01-14 19:09 . 2009-01-14 19:09 356352 ----a-w- c:\program files\USPS.SmartClient.DomainModel.Repositories.dll
2009-01-14 19:09 . 2009-01-14 19:09 20480 ----a-w- c:\program files\USPS.SmartClient.Proxy.WebTools.Provider.dll
2009-01-14 19:09 . 2009-01-14 19:09 13312 ----a-w- c:\program files\USPS.SmartClient.Device.Common.dll
2009-01-14 19:09 . 2009-01-14 19:09 2359296 ----a-w- c:\program files\USPS.SmartClient.Common.eBay.Provider.XmlSerializers.dll
2009-01-14 19:08 . 2009-01-14 19:08 1143808 ----a-w- c:\program files\USPS.SmartClient.Common.eBay.Provider.dll
2009-01-14 19:08 . 2009-01-14 19:08 262144 ----a-w- c:\program files\USPS.SmartClient.DomainModel.Entities.dll
2009-01-14 19:08 . 2009-01-14 19:08 49152 ----a-w- c:\program files\PostApplicationExitActivationProcess.exe
2009-01-14 19:08 . 2009-01-14 19:08 98304 ----a-w- c:\program files\USPS.SmartClient.Common.Label.Drawing.dll
2009-01-14 19:08 . 2009-01-14 19:08 73728 ----a-w- c:\program files\Microsoft.ApplicationBlocks.Updater.ActivationProcessors.dll
2009-01-14 19:08 . 2009-01-14 19:08 49152 ----a-w- c:\program files\Microsoft.ApplicationBlocks.Updater.Downloaders.dll
2009-01-14 19:08 . 2009-01-14 19:08 36864 ----a-w- c:\program files\Interop.WindowsInstaller.dll
2009-01-14 19:08 . 2009-01-14 19:08 61440 ----a-w- c:\program files\USPS.SmartClient.DomainModel.Common.dll
2009-01-14 19:08 . 2009-01-14 19:08 11776 ----a-w- c:\program files\USPS.SmartClient.Common.Label.Storage.dll
2009-01-14 19:08 . 2009-01-14 19:08 9216 ----a-w- c:\program files\USPS.SmartClient.Common.InsuranceCalculator.dll
2009-01-14 19:08 . 2009-01-14 19:08 118784 ----a-w- c:\program files\Microsoft.ApplicationBlocks.Updater.dll
2009-01-14 19:08 . 2009-01-14 19:08 32768 ----a-w- c:\program files\Avanade.Utility.ConnectionManager.dll
2009-01-14 19:08 . 2009-01-14 19:08 36864 ----a-w- c:\program files\USPS.SmartClient.Common.dll
2009-01-14 19:07 . 2009-01-14 19:07 644160 ----a-w- c:\program files\sqlceqp35.dll
2009-01-14 19:07 . 2009-01-14 19:07 343104 ----a-w- c:\program files\sqlceca35.dll
2009-01-14 19:07 . 2009-01-14 19:07 84544 ----a-w- c:\program files\sqlcecompact35.dll
2009-01-14 19:07 . 2009-01-14 19:07 65088 ----a-w- c:\program files\sqlceme35.dll
2009-01-14 19:07 . 2009-01-14 19:07 348224 ----a-w- c:\program files\sqlcese35.dll
2009-01-14 19:07 . 2009-01-14 19:07 172608 ----a-w- c:\program files\sqlceoledb35.dll
2009-01-14 19:07 . 2009-01-14 19:07 148032 ----a-w- c:\program files\sqlceer35EN.dll
2009-01-14 19:07 . 2009-01-14 19:07 95656 ----a-w- c:\program files\Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.dll
2009-01-14 19:07 . 2009-01-14 19:07 79272 ----a-w- c:\program files\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.dll
2009-01-14 19:07 . 2009-01-14 19:07 77824 ----a-w- c:\program files\Castle.DynamicProxy.dll
2009-01-14 19:07 . 2009-01-14 19:07 75176 ----a-w- c:\program files\Microsoft.Practices.EnterpriseLibrary.Security.dll
2009-01-14 19:07 . 2009-01-14 19:07 75168 ----a-w- c:\program files\Microsoft.Practices.CompositeUI.WinForms.dll
2009-01-14 19:07 . 2009-01-14 19:07 64352 ----a-w- c:\program files\Microsoft.Practices.ObjectBuilder.dll
2009-01-14 19:07 . 2009-01-14 19:07 38312 ----a-w- c:\program files\Microsoft.Practices.EnterpriseLibrary.ExceptionHandling.Logging.dll
2009-01-14 19:07 . 2009-01-14 19:07 32768 ----a-w- c:\program files\Iesi.Collections.dll
2009-01-14 19:07 . 2009-01-14 19:07 270336 ----a-w- c:\program files\log4net.dll
2009-01-14 19:07 . 2009-01-14 19:07 218536 ----a-w- c:\program files\Microsoft.Practices.EnterpriseLibrary.Logging.dll
2009-01-14 19:07 . 2009-01-14 19:07 200704 ----a-w- c:\program files\ICSharpCode.SharpZipLib.dll
2009-01-14 19:07 . 2009-01-14 19:07 189856 ----a-w- c:\program files\Microsoft.Practices.CompositeUI.dll
2009-01-14 19:07 . 2009-01-14 19:07 161192 ----a-w- c:\program files\Microsoft.Practices.EnterpriseLibrary.Common.dll
2009-01-14 19:07 . 2009-01-14 19:07 148904 ----a-w- c:\program files\Microsoft.Practices.EnterpriseLibrary.Validation.dll
2009-01-14 19:07 . 2009-01-14 19:07 1085440 ----a-w- c:\program files\NHibernate.dll
2008-08-12 17:26 . 2008-08-12 17:26 271440 ----a-w- c:\program files\System.Data.SqlServerCe.dll
2012-06-16 02:06 . 2011-06-01 04:54 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2011-04-14 21:01 . 2011-01-25 17:57 24376 ----a-w- c:\program files\mozilla firefox\components\Scriptff.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shell iconoverlayidentifiers\Carbonite.Green]
@="{95A27763-F62A-4114-9072-E81D87DE3B68}"
[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]
2012-03-17 04:06 1008784 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shell iconoverlayidentifiers\Carbonite.Partial]
@="{E300CD91-100F-4E67-9AF3-1384A6124015}"
[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]
2012-03-17 04:06 1008784 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shell iconoverlayidentifiers\Carbonite.Yellow]
@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"
[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]
2012-03-17 04:06 1008784 ----a-r- c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-26 68856]
"DIMDownloading your update...1300677038425"="c:\program files\Corel\CorelDRAW Graphics Suite X5\Draw\DIM.exe" [2010-05-21 95592]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-01-11 15961088]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2005-07-22 237568]
"nwiz"="nwiz.exe" [2006-10-31 1622016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2006-10-31 7634944]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2009-01-16 181544]
"KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440]
"IconixOEAddOn"="c:\program files\Iconix\OEAddOn\OEdmn_6.exe" [2010-03-04 342872]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2006-02-21 143360]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2007-08-23 80896]
"HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-01 49152]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2005-11-09 249856]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-12 49152]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"DMAScheduler"="c:\program files\Sonic\DigitalMedia Plus\DigitalMedia Archive\DMAScheduler.exe" [2005-11-01 90112]
"DiscUpdateManager"="c:\program files\DISC\DiscUpdateMgr.exe" [2005-11-11 61440]
"DISCover"="c:\program files\DISC\DISCover.exe" [2005-11-11 1064960]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-27 30040]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-02 149280]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2012-03-22 1318816]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-21 59240]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Nikon Message Center 2"="c:\program files\Nikon\Nikon Message Center 2\NkMC2.exe" [2010-05-26 619008]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888]
"Carbonite Backup"="c:\program files\Carbonite\Carbonite Backup\CarboniteUI.exe" [2012-03-17 1059984]
"TkBellExe"="c:\program files\real\realplayer\update\realsched.exe" [2012-05-15 296056]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
AutoCAD Startup Accelerator.lnk - c:\program files\Common Files\Autodesk Shared\acstart16.exe [2004-2-25 10872]
HD Writer.lnk - c:\program files\Common Files\Panasonic\HD Writer AutoStart\HDWriterAutoStart.exe [2012-5-14 292240]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-3-11 210520]
ImageMixer 3 SE Camera Monitor Ver.6.lnk - c:\program files\PIXELA\ImageMixer 3 SE Ver.6\Transfer Utility\CameraMonitor.exe [2011-12-7 537968]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
Updates From HP.lnk - c:\program files\Updates from HP\9972322\Program\Updates from HP.exe [2006-3-18 36903]
.
c:\documents and settings\Default User\Start Menu\Programs\Startup\
Pin.lnk - c:\hp\bin\CLOAKER.EXE [2006-3-18 27136]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavaso ft Ad-Aware Service]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscs vc]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKLM\~\startupfolder\C:^Documents and Settings^HP_Administrator^Start Menu^Programs^Startup^Seagate 2GEVSHP6 Product Registration.lnk]
path=c:\documents and settings\HP_Administrator\Start Menu\Programs\Startup\Seagate 2GEVSHP6 Product Registration.lnk
backup=c:\windows\pss\Seagate 2GEVSHP6 Product Registration.lnkStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\Auth orizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\DISC\\DISCover.exe"=
"c:\\Program Files\\DISC\\DiscStreamHub.exe"=
"c:\\Program Files\\DISC\\myFTP.exe"=
"c:\\Program Files\\Updates from HP\\9972322\\Program\\Updates from HP.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Common Files\\McAfee\\McSvcHost\\McSvHost.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
.
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
R3 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [x]
R3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [x]
R3 mfendisk;McAfee Core NDIS Intermediate Filter;c:\windows\system32\DRIVERS\mfendisk.sys [x]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [x]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
S0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys [x]
S1 mfetdi2k;McAfee Inc. mfetdi2k;c:\windows\system32\drivers\mfetdi2k.sys [x]
S2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [x]
S2 IconixService;Iconix Update Service;c:\program files\Common Files\Iconix\IconixService.exe [x]
S2 IntuitUpdateServiceV4;Intuit Update Service v4;c:\program files\Common Files\Intuit\Update Service v4\IntuitUpdateService.exe [x]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\McAfee\SiteAdvisor\McSACore.exe [x]
S2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [x]
S2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [x]
S2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [x]
S2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [x]
S3 BEFCMU10V4XP;Linksys BEFCMU10 ver. 4 Cable Modem;c:\windows\system32\DRIVERS\BEFCMU10V4XP.sys [x]
S3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [x]
S3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [x]
S3 mfendiskmp;mfendiskmp;c:\windows\system32\DRIVERS\mfendisk.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*Deregistered* - mfeavfk01
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Contents of the 'Scheduled Tasks' folder
.
2012-07-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-11 01:53]
.
2012-07-02 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-02 00:57]
.
2012-07-08 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-02-01 16:53]
.
2012-07-09 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-4117639358-2012749475-3948883146-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2012-05-01 01:21]
.
2012-07-05 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-4117639358-2012749475-3948883146-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2012-05-01 01:21]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uInternet Connection Wizard,ShellNext = hxxp://redirect.hp.com/svs/rdr?TYPE=3&tp=ebay&pf=desktop&locale=en_us&bd=all&c=q106
uInternet Settings,ProxyOverride = local;*.local
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
Trusted Zone: intuit.com\ttlc
Trusted Zone: trymedia.com
TCP: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
FF - ProfilePath - c:\documents and settings\HP_Administrator\Application Data\Mozilla\Firefox\Profiles\2au2xdzn.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=OCYTDF&PC=OCDY&q=
FF - prefs.js: browser.startup.homepage - hxxp://www.bing.com
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=OCYTDF&PC=OCDY&q=
FF - prefs.js: network.proxy.type - 4
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-07-09 01:50
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'explorer.exe'(4108)
c:\windows\system32\WININET.dll
c:\docume~1\HP_ADM~1\LOCALS~1\Temp\IadHide5.dll
c:\program files\Iconix\OEAddOn\OEldr_7.dll
c:\windows\system32\nview.dll
c:\progra~1\mcafee\SITEAD~1\saHook.dll
c:\program files\Carbonite\Carbonite Backup\CarboniteNSE.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\mshtml.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\system32\nvwddi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Carbonite\Carbonite Backup\carboniteservice.exe
c:\windows\eHome\ehRecvr.exe
c:\windows\eHome\ehSched.exe
c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
c:\program files\Common Files\Intuit\Update Service\IntuitUpdateService.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Intel\IntelDH\Intel(R) Quick Resume Technology\ELService.exe
c:\windows\ehome\mcrdsvc.exe
c:\program files\Common Files\McAfee\SystemCore\mcshield.exe
c:\program files\Common Files\McAfee\SystemCore\mfefire.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\dllhost.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\wscntfy.exe
c:\windows\RTHDCPL.EXE
c:\windows\system32\rundll32.exe
c:\windows\eHome\ehmsas.exe
c:\program files\DISC\DiscGui.exe
c:\program files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe
c:\program files\DISC\DiscStreamHub.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\windows\System32\vssvc.exe
c:\windows\system32\dllhost.exe
c:\progra~1\mcafee.com\agent\mcupdate.exe
.
**************************************************************************
.
Completion time: 2012-07-09 02:20:14 - machine was rebooted
ComboFix-quarantined-files.txt 2012-07-09 09:19
ComboFix2.txt 2012-07-06 23:17
ComboFix3.txt 2009-04-21 01:23
.
Pre-Run: 85,389,996,032 bytes free
Post-Run: 86,638,612,480 bytes free
.
WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Windows XP Media Center Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 91BFEFAE84FEA9E68891B12B264A4948
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
09-Jul-2012, 06:29 PM #24
Please run the following on-line scanner. Note that you must use Internet Explorer to perform the scan.

Note: If you're running a 64-bit system you have to choose the 32-bit option in IE. To do that, go to the Start Menu and right-click the Internet Explorer (32-bit) icon and then select 'Run as administrator' from the right-click menu.

http://www.eset.com/online-scanner

Accept the Terms of Use and then press the Start button

Allow the ActiveX control to be installed.

Put a check by Remove found threats and then run the scan.

When the scan is finished, you will see the results in a window.

A log.txt file is created here: C:\Program Files\EsetOnlineScanner\log.txt.

Open the log file with Notepad and copy and paste the contents here please.
__________________
Microsoft MVP - Consumer Security
blessedbythree's Avatar
Computer Specs
Member with 58 posts.
THREAD STARTER
  
Join Date: Jul 2012
Experience: Beginner
10-Jul-2012, 03:48 AM #25
Checked "remove found threats" and says that McAfee software is detected and could affect the performance of the scan. Should I disable it before proceeding?

Thx
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
10-Jul-2012, 01:31 PM #26
Yes, please do.
blessedbythree's Avatar
Computer Specs
Member with 58 posts.
THREAD STARTER
  
Join Date: Jul 2012
Experience: Beginner
10-Jul-2012, 08:20 PM #27
ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=7.00.6000.17110 (vista_gdr.120419-1718)
# OnlineScanner.ocx=1.0.0.6583
# api_version=3.0.2
# EOSSerial=b9588b45d0414b44892ce214783adeec
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2012-07-10 10:37:19
# local_time=2012-07-10 03:37:19 (-0800, Pacific Daylight Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=5121 16777189 100 75 700421 6221316 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=268652
# found=0
# cleaned=0
# scan_time=10055
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
10-Jul-2012, 09:18 PM #28
Download OTS.exe to your Desktop.
  1. Close any open browsers.
  2. If your Real protection or Antivirus interferes with OTS, allow it to run.
  3. Double-click on OTS.exe to start the program.
  4. At the top put a check mark in the box beside "Scan All Users".
  5. Under the Additional Scans section put a check in the box next to Disabled MS Config Items, NetSvcs and EventViewer logs (Last 10 errors)
  6. Now click the Run Scan button on the toolbar.
  7. Let it run unhindered until it finishes.
  8. When the scan is complete Notepad will open with the report file loaded in it.
  9. Save that notepad file.
Use the Reply button, scroll down to the attachments section and attach the notepad file here.
__________________
Microsoft MVP - Consumer Security
blessedbythree's Avatar
Computer Specs
Member with 58 posts.
THREAD STARTER
  
Join Date: Jul 2012
Experience: Beginner
11-Jul-2012, 12:19 AM #29
OTS scan results
Attachment Blocked
Attachments in the HJT forum are often designed to solve a specific issue and not meant to be used without instructions specific to your computer. If you want help specific to your computer, please post a HiJackThis Log. If you started this thread, please make sure you are logged in to be able to view attachments.
Cookiegal's Avatar
Administrator & Malware Removal Specialist with 89,439 posts.
  
Join Date: Aug 2003
Location: Quebec, Canada
12-Jul-2012, 08:06 PM #30
Start OTS. Copy/Paste the information in the code box below into the pane where it says "Paste fix here" and then click the "Run Fix" button.

The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the OK button and Notepad will open with a log of actions taken during the fix. Post that information back here please.

Code:
[Kill All Processes]
[Unregister Dlls]
[Registry - Safe List]
< Internet Explorer Settings [HKEY_USERS\.DEFAULT\] > -> 
YN -> HKEY_USERS\.DEFAULT\: URLSearchHooks\\"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.]
YN -> HKEY_USERS\.DEFAULT\: "ProxyServer" -> 127.0.0.1:9666
< Internet Explorer Settings [HKEY_USERS\S-1-5-18\] > -> 
YN -> HKEY_USERS\S-1-5-18\: URLSearchHooks\\"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.]
YN -> HKEY_USERS\S-1-5-18\: "ProxyServer" -> 127.0.0.1:9666
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
YN -> {02478D38-C3F9-4efb-9B51-7695ECA05670} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.]
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\
YN -> {E2D4D26B-0180-43a4-B05F-462D6D54C789}:C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm [HKLM] -> [Button: Internet Connection Help]
YN -> {E2D4D26B-0180-43a4-B05F-462D6D54C789}:C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm [HKLM] -> [Menu: Internet Connection Help]
< Internet Explorer Extensions [HKEY_USERS\.DEFAULT\] > -> HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Extensions\
YN -> CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.]
YN -> CmdMapping\\"{E2D4D26B-0180-43a4-B05F-462D6D54C789}" [HKLM] -> [Internet Connection Help]
< Internet Explorer Extensions [HKEY_USERS\S-1-5-18\] > -> HKEY_USERS\S-1-5-18\Software\Microsoft\Internet Explorer\Extensions\
YN -> CmdMapping\\"{08B0E5C0-4FCB-11CF-AAA5-00401C608501}" [HKLM] -> [Reg Error: Value error.]
< Internet Explorer Extensions [HKEY_USERS\S-1-5-21-4117639358-2012749475-3948883146-1008\] > -> HKEY_USERS\S-1-5-21-4117639358-2012749475-3948883146-1008\Software\Microsoft\Internet Explorer\Extensions\
YN -> CmdMapping\\"{E2D4D26B-0180-43a4-B05F-462D6D54C789}" [HKLM] -> [Internet Connection Help]
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\
YN -> trymedia.com .[http] -> Trusted sites
YN -> trymedia.com .[https] -> Trusted sites
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\
YN -> {CAFEEFAC-0015-0000-0005-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_05-windows-i586.cab [Reg Error: Key error.]
YN -> {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab [Reg Error: Key error.]
YN -> {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.5.0/jinstall-1_5_0_09-windows-i586.cab [Reg Error: Key error.]
YN -> {CAFEEFAC-0016-0000-0001-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_01-windows-i586.cab [Reg Error: Key error.]
YN -> {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab [Reg Error: Key error.]
YN -> {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab [Java Plug-in 1.6.0_07]
YN -> {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16]
YN -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab [Java Plug-in 1.6.0_16]
[Files/Folders - Created Within 30 Days]
NY ->  2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp
NY ->  1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp
NY ->  1 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp
[Files/Folders - Modified Within 30 Days]
NY ->  5 C:\Documents and Settings\HP_Administrator\Local Settings\temp\*.tmp files -> C:\Documents and Settings\HP_Administrator\Local Settings\temp\*.tmp
NY ->  2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp
NY ->  1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp
NY ->  1 C:\Documents and Settings\All Users\Application Data\*.tmp files -> C:\Documents and Settings\All Users\Application Data\*.tmp
[Empty Temp Folders]
[EmptyFlash]
[EmptyJava]
[Start Explorer]
[Reboot]
__________________
Microsoft MVP - Consumer Security
Email This Email  Print This Print  Tweet This Send to Facebook Send to MySpace Send to StumbleUpon Digg This | More Services More
Reply
Page 2 of 8 1 2 345 Last »
As Seen On

BBC, Reader's Digest, PC Magazine, Today Show, Money Magazine
WELCOME TO TECH SUPPORT GUY!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join Today!

(clock)
THIS THREAD HAS EXPIRED.
Are you having the same problem? We have volunteers ready to answer your question, but first you'll have to join for free. Need help getting started? Check out our Welcome Guide.

Search Tech Support Guy

Find the solution to your
computer problem!

« Previous Thread | Virus & Other Malware Removal | Next Thread »

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools


TECH SUPPORT GUY
WELCOME
FOLLOW US
 
You Are Using: Server ID
All times are GMT -4. The time now is 02:26 AM.
Advertisements do not imply our endorsement of that product or service.
Copyright © 1996 - 2013 TechGuy, Inc. All rights reserved. Privacy & Terms.

Trusted Website Back to the Top ↑