1. Computer problem? Tech Support Guy is completely free -- paid for by advertisers and donations. Click here to join today! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

XP Pro(fessionally annoying) hangs during shutdown

Discussion in 'Windows XP' started by GamerMail, Apr 30, 2010.

Thread Status:
Not open for further replies.
  1. GamerMail

    GamerMail Thread Starter

    Joined:
    Apr 29, 2010
    Messages:
    1
    Hello fellow cyber-junkies and nerds alike,
    I come to you from atop a mountain, with a problem that doesn't seem to affect just me. However I have done some research and saved alot of time (i hope) but....this computer is about to get thrown out the rear of a fast moving vehicle on the interstate very soon (not really, its all i can afford -_- )

    Enough of the BSin, heres the situation report. I have ran combofix and pervx 3.0 both with different results and....now...i have some blank icons.

    Combofix report reads as follows:

    ComboFix 10-04-28.08 - HP_Owner 04/29/2010 16:04:14.1.1 - x86
    Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1015.666 [GMT -4:00]
    Running from: c:\documents and settings\HP_Owner\My Documents\Downloads\ComboFix.exe
    AV: Norton AntiVirus 2005 *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
    FW: Norton Internet Worm Protection *enabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E}
    .

    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    c:\docume~1\HP_Owner\LOCALS~1\Temp\IadHide5.dll
    c:\documents and settings\HP_Owner\Local Settings\Temp\IadHide5.dll
    c:\hp\bin\cloaker.exe
    c:\recycler\S-1-5-21-45849246-1241535104-1731767544-1009
    c:\windows\viassary-hp.reg
    D:\Autorun.inf

    .
    ((((((((((((((((((((((((( Files Created from 2010-03-28 to 2010-04-29 )))))))))))))))))))))))))))))))
    .

    2010-04-29 19:19 . 2010-04-29 19:19 -------- d-----w- c:\documents and settings\HP_Owner\Local Settings\Application Data\LightScribe
    2010-04-29 19:19 . 2010-04-29 19:19 -------- d-----w- c:\windows\system32\Lang
    2010-04-29 19:18 . 2004-08-21 05:50 159744 ----a-w- c:\windows\system32\igfxres.dll
    2010-04-29 19:18 . 2004-08-04 10:00 221184 ----a-w- c:\windows\system32\wmpns.dll
    2010-04-29 19:18 . 2004-10-22 01:06 45056 ----a-r- c:\documents and settings\HP_Owner\Application Data\Microsoft\Installer\{457791C5-D702-4143-A7B2-2744BE9573F2}\NewShortcut1_5B69D3033CA54B39B5ECE7D051297E77.exe
    2010-04-29 19:18 . 2004-10-22 02:30 128 ----a-w- c:\documents and settings\HP_Owner\Local Settings\Application Data\fusioncache.dat
    2010-04-29 19:16 . 2004-10-22 02:30 -------- d-----w- c:\windows\system32\config\systemprofile\Local Settings\Application Data\ApplicationHistory
    2010-04-29 19:16 . 2004-10-22 02:30 128 ----a-w- c:\windows\system32\config\systemprofile\Local Settings\Application Data\fusioncache.dat
    2010-04-29 19:16 . 2004-10-22 01:59 -------- d-----w- c:\windows\system32\config\systemprofile\WINDOWS
    2010-04-29 19:16 . 2004-10-22 01:58 -------- d-----w- c:\windows\system32\config\systemprofile\Local Settings\Application Data\Apple Computer
    2010-04-29 19:16 . 2004-10-22 00:27 -------- d-----w- c:\windows\system32\config\systemprofile\Local Settings\Application Data\{7148F0A6-6813-11D6-A77B-00B0D0142030}
    2010-04-29 19:15 . 2003-09-19 05:47 10368 ------w- c:\windows\system32\drivers\pfc.sys
    2010-04-29 19:15 . 2003-09-11 03:36 21060 ------w- c:\windows\system32\drivers\iviaspi.sys
    2010-04-29 19:14 . 2004-09-27 18:09 204800 ----a-w- c:\windows\system32\IVIresizeW7.dll
    2010-04-29 19:14 . 2004-09-27 18:09 20480 ----a-w- c:\windows\system32\IVIresize.dll
    2010-04-29 19:14 . 2004-09-27 18:09 200704 ----a-w- c:\windows\system32\IVIresizeA6.dll
    2010-04-29 19:14 . 2004-09-27 18:09 192512 ----a-w- c:\windows\system32\IVIresizeP6.dll
    2010-04-29 19:14 . 2004-09-27 18:09 192512 ----a-w- c:\windows\system32\IVIresizeM6.dll
    2010-04-29 19:14 . 2004-09-27 18:09 188416 ----a-w- c:\windows\system32\IVIresizePX.dll
    2010-04-29 19:14 . 2010-04-29 19:14 -------- d-----w- c:\windows\system32\config\systemprofile\Local Settings\Application Data\LightScribe
    2010-04-29 19:07 . 2001-08-17 20:48 12160 ----a-w- c:\windows\system32\drivers\mouhid.sys
    2010-04-29 19:07 . 2004-08-04 07:56 21504 ----a-w- c:\windows\system32\hidserv.dll
    2010-04-29 19:07 . 2001-08-17 21:02 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys
    2010-04-29 19:07 . 2004-08-04 06:10 61056 ----a-w- c:\windows\system32\drivers\ohci1394.sys
    2010-04-29 19:07 . 2004-08-04 06:10 53248 ----a-w- c:\windows\system32\drivers\1394bus.sys
    2010-04-29 19:07 . 2001-08-17 20:46 6400 ----a-w- c:\windows\system32\drivers\enum1394.sys
    2010-04-29 18:32 . 2010-04-29 20:08 -------- dcsh--r- c:\windows\system32\dllcache
    2010-04-29 14:08 . 2010-04-29 14:08 -------- d-----w- C:\Windows SP3
    2010-04-28 23:58 . 2010-04-28 23:58 73728 ----a-w- c:\windows\ALCFDRTM.EXE
    2010-04-28 23:33 . 2010-04-28 23:33 50354 ----a-w- c:\documents and settings\HP_Owner\Application Data\Facebook\uninstall.exe
    2010-04-28 23:33 . 2010-04-28 23:33 -------- d-----w- c:\documents and settings\HP_Owner\Application Data\Facebook
    2010-04-28 23:22 . 2010-04-28 23:22 -------- d-----w- C:\Pics
    2010-04-28 22:49 . 2010-04-28 22:49 -------- d-----w- c:\program files\muvee Technologies
    2010-04-28 22:49 . 2010-04-28 22:49 -------- d-----w- c:\program files\Common Files\muvee Technologies
    2010-04-28 22:48 . 2010-04-28 22:48 -------- d-----w- c:\documents and settings\All Users\Application Data\InstallShield
    2010-04-28 22:48 . 2010-04-28 22:48 -------- d-----w- c:\windows\Logs
    2010-04-28 22:47 . 2010-04-28 22:51 -------- d-----w- c:\documents and settings\All Users\Application Data\OrbNetworks
    2010-04-28 22:47 . 2010-04-28 22:51 -------- d-----w- c:\program files\Winamp Remote
    2010-04-28 22:47 . 2010-04-28 22:48 -------- d-----w- c:\program files\InterVideo
    2010-04-28 22:47 . 2010-04-29 19:14 -------- d---a-w- c:\program files\Common Files\LightScribe
    2010-04-28 22:47 . 2010-04-29 00:38 -------- d-----w- c:\documents and settings\HP_Owner\Application Data\Winamp
    2010-04-28 22:45 . 2004-10-22 01:59 -------- d-----w- c:\documents and settings\Default User\WINDOWS
    2010-04-28 22:13 . 2010-04-29 20:08 242 ----a-w- c:\windows\system\hpsysdrv.dat
    2010-04-28 22:12 . 2010-04-28 22:12 -------- d-----w- c:\windows\I386
    2010-04-28 22:05 . 2010-04-29 18:39 -------- d-----r- C:\Program Files
    2010-04-28 22:05 . 2010-04-29 18:39 -------- d-----r- C:\MSOCache
    2010-04-28 22:05 . 2010-04-29 18:39 -------- d-----r- c:\documents and settings\All Users\Documents
    2010-04-28 21:38 . 2010-04-28 22:44 -------- d-----w- c:\documents and settings\HP_Owner\Local Settings\Application Data\Temp
    2010-04-28 21:22 . 2010-04-28 21:22 8192 ----a-w- c:\documents and settings\HP_Owner\Application Data\LimeWire\browser\xulrunner\AccessibleMarshal.dll
    2010-04-28 21:22 . 2010-04-28 21:22 20480 ----a-w- c:\documents and settings\HP_Owner\Application Data\LimeWire\browser\xulrunner\IA2Marshal.dll
    2010-04-28 21:22 . 2010-04-29 14:51 -------- d-----w- c:\documents and settings\HP_Owner\Application Data\LimeWire
    2010-04-28 21:19 . 2010-04-28 21:19 -------- d-----w- c:\windows\Sun
    2010-04-28 21:18 . 2010-04-28 21:18 61440 ----a-w- c:\documents and settings\HP_Owner\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-2fea984b-n\decora-sse.dll
    2010-04-28 21:18 . 2010-04-28 21:18 503808 ----a-w- c:\documents and settings\HP_Owner\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-138afe39-n\msvcp71.dll
    2010-04-28 21:18 . 2010-04-28 21:18 499712 ----a-w- c:\documents and settings\HP_Owner\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-138afe39-n\jmc.dll
    2010-04-28 21:18 . 2010-04-28 21:18 348160 ----a-w- c:\documents and settings\HP_Owner\Application Data\Sun\Java\Deployment\SystemCache\6.0\54\1a209876-138afe39-n\msvcr71.dll
    2010-04-28 21:18 . 2010-04-28 21:18 12800 ----a-w- c:\documents and settings\HP_Owner\Application Data\Sun\Java\Deployment\SystemCache\6.0\17\6d0ad391-2fea984b-n\decora-d3d.dll
    2010-04-28 20:38 . 2010-04-28 20:38 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Google
    2010-04-28 20:33 . 2010-04-28 20:33 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
    2010-04-28 20:33 . 2010-04-28 22:44 -------- d-----w- c:\documents and settings\HP_Owner\Local Settings\Application Data\Google
    2010-04-28 20:33 . 2010-04-28 20:33 -------- d-----w- c:\program files\Google
    2010-04-28 20:33 . 2010-04-28 20:33 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
    2010-04-28 20:15 . 2010-04-28 22:40 -------- d-----w- C:\Music
    2010-04-28 20:15 . 2010-04-28 23:32 -------- d-----w- C:\proggies
    2010-04-28 20:11 . 2010-04-28 20:11 -------- d-s---w- c:\documents and settings\HP_Owner\UserData
    1601-01-01 00:00 . 1601-01-01 00:00 0 ----a-w- c:\windows\system32\ntoskrnl.exe
    1601-01-01 00:00 . 1601-01-01 00:00 -------- d-----w- c:\windows\LastGood.Tmp

    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2010-04-29 20:08 . 2004-10-22 21:12 -------- d-----w- c:\program files\Common Files\Symantec Shared
    2010-04-29 19:57 . 2004-10-22 02:34 -------- d-----w- c:\program files\Easy Internet signup
    2010-04-29 19:18 . 2010-04-29 19:18 1917 --sha-r- c:\windows\system32\drivers\103C_HP_CPC_PS500AA-ABA A824N_YC_0Pavi_QMXK505_E51NAheBLU3_47_IGoldfish2_SASUSTeK Computer INC._V1.xx_B3.10_T041112_WXH2_L409_M1016_J200_7Intel_8Pentium 4_93_#100321_N10EC8139_Z11C1048C_G80862582.MRK
    2010-04-29 19:13 . 2004-10-22 01:37 -------- d-----w- c:\program files\Common Files\SureThing Shared
    2010-03-06 05:30 . 2010-03-06 05:30 847040 ----a-w- c:\documents and settings\HP_Owner\Application Data\Facebook\axfbootloader.dll
    2010-03-06 05:30 . 2010-03-06 05:30 5582848 ----a-w- c:\documents and settings\HP_Owner\Application Data\Facebook\npfbplugin_1_0_3.dll
    2005-03-04 05:32 . 2010-04-28 22:13 0 --sha-w- c:\windows\SMINST\HPCD.SYS
    .

    ------- Sigcheck -------

    [-] 2010-02-17 . D41C3CBAD0E1C0728D1CDFD541F60CFA . 2189952 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3GDR\ntoskrnl.exe
    [-] 2010-02-17 . D41C3CBAD0E1C0728D1CDFD541F60CFA . 2189952 . . [5.1.2600.5938] . . c:\windows\SoftwareDistribution\Download\9d21500a4aa475547c4a2420fee1c623\SP3GDR\ntoskrnl.exe
    [-] 2010-02-16 . 97E2BF68857818A4D142B872404DC41B . 2186880 . . [5.1.2600.3670] . . c:\windows\$hf_mig$\KB979683\SP2QFE\ntoskrnl.exe
    [-] 2010-02-16 . 97E2BF68857818A4D142B872404DC41B . 2186880 . . [5.1.2600.3670] . . c:\windows\SoftwareDistribution\Download\9d21500a4aa475547c4a2420fee1c623\SP2QFE\ntoskrnl.exe
    [-] 2010-02-16 . EBB75B113E74E90074382347B74D652B . 2181376 . . [5.1.2600.3670] . . c:\windows\Driver Cache\i386\ntoskrnl.exe
    [-] 2010-02-16 . EBB75B113E74E90074382347B74D652B . 2181376 . . [5.1.2600.3670] . . c:\windows\SoftwareDistribution\Download\9d21500a4aa475547c4a2420fee1c623\SP2GDR\ntoskrnl.exe
    [-] 2010-02-16 . E1F653A542449D54FA2D27463D99B6B6 . 2190080 . . [5.1.2600.5938] . . c:\windows\$hf_mig$\KB979683\SP3QFE\ntoskrnl.exe
    [-] 2010-02-16 . E1F653A542449D54FA2D27463D99B6B6 . 2190080 . . [5.1.2600.5938] . . c:\windows\SoftwareDistribution\Download\9d21500a4aa475547c4a2420fee1c623\SP3QFE\ntoskrnl.exe
    [-] 2009-02-07 . EFE8EACE83EAAD5849A7A548FB75B584 . 2189184 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3QFE\ntoskrnl.exe
    [-] 2009-02-06 . FACEBB0CA3154F77009CDFEE78A00BBB . 2180480 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2GDR\ntoskrnl.exe
    [-] 2009-02-06 . 7A95B10A73737EBF24139AAA63F5212B . 2189056 . . [5.1.2600.5755] . . c:\windows\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3GDR\ntoskrnl.exe
    [-] 2009-02-06 . 6A936E9D7BADAF3CAAEED1E1966EC1B0 . 2186112 . . [5.1.2600.3520] . . c:\windows\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2QFE\ntoskrnl.exe
    [7] 2004-08-04 . CE218BC7088681FAA06633E218596CA7 . 2180992 . . [5.1.2600.2180] . . c:\windows\LastGood\system32\ntoskrnl.exe
    [7] 2004-08-04 . CE218BC7088681FAA06633E218596CA7 . 2180992 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0009\DriverFiles\i386\ntoskrnl.exe
    [7] 2004-08-04 . 626309040459C3915997EF98EC1C8D40 . 2148352 . . [5.1.2600.2180] . . c:\windows\$NtUninstallKB979683$\ntoskrnl.exe

    c:\windows\System32\ntoskrnl.exe ... is missing !!
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="c:\program files\Java\j2re1.4.2_03\bin\jusched.exe" [2004-10-22 32881]
    "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2004-08-21 118784]
    "HPHUPD06"="c:\program files\HP\{AAC4FC36-8F89-4587-8DD3-EBC57C83374D}\hphupd06.exe" [2004-06-08 49152]
    "HPHmon06"="c:\windows\system32\hphmon06.exe" [2004-06-08 659456]
    "KBD"="c:\hp\KBD\KBD.EXE" [2003-02-12 61440]
    "UpdateManager"="c:\program files\Common Files\Sonic\Update Manager\sgtray.exe" [2003-08-19 110592]
    "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2004-10-22 180269]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2004-06-05 286720]
    "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-15 233472]
    "AlcxMonitor"="ALCXMNTR.EXE" [2004-09-08 57344]
    "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2004-08-14 58488]
    "SSC_UserPrompt"="c:\program files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe" [2004-08-06 218240]
    "NAV CfgWiz"="c:\program files\Norton AntiVirus\CfgWiz.exe" [2004-08-18 132248]
    "IS CfgWiz"="c:\program files\Common Files\Symantec Shared\cfgwiz.exe" [2003-11-05 124096]
    "AGRSMMSG"="AGRSMMSG.exe" [2004-06-30 88363]
    "SoundMan"="SOUNDMAN.EXE" [2004-07-29 77824]
    "PS2"="c:\windows\system32\ps2.exe" [2002-10-16 81920]
    "AlcWzrd"="ALCWZRD.EXE" [2004-07-29 2551808]
    "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2004-10-15 253952]

    c:\documents and settings\HP_Owner\Start Menu\Programs\Startup\
    LimeWire On Startup.lnk - c:\proggies\Limewire Pro\actual\LimeWire\LimeWire.exe [2010-3-30 503808]

    c:\documents and settings\All Users\Start Menu\Programs\Startup\
    HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2004-5-29 241664]
    Updates from HP.lnk - c:\program files\Updates from HP\309731\Program\Updates from HP.exe [2004-10-21 45056]

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001

    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\iTunes\\iTunes.exe"=
    "c:\\Program Files\\Updates from HP\\309731\\Program\\Updates from HP.exe"=

    .
    Contents of the 'Scheduled Tasks' folder

    2010-04-29 c:\windows\Tasks\Easy Internet Sign-up.job
    - c:\program files\Easy Internet signup\HPSdpApp.exe [2004-08-13 15:50]

    2010-04-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2010-04-28 20:33]

    2010-04-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2010-04-28 20:33]

    2010-04-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-45849246-1241535104-1731767544-1009Core.job
    - c:\documents and settings\HP_Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-28 21:38]

    2010-04-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-45849246-1241535104-1731767544-1009UA.job
    - c:\documents and settings\HP_Owner\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-04-28 21:38]

    2004-10-22 c:\windows\Tasks\Symantec NetDetect.job
    - c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2004-10-22 07:26]
    .
    .
    ------- Supplementary Scan -------
    .
    uStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q105&bd=pavilion&pf=desktop
    uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q105&bd=pavilion&pf=desktop
    mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q105&bd=pavilion&pf=desktop
    mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q105&bd=pavilion&pf=desktop
    IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
    .
    - - - - ORPHANS REMOVED - - - -

    HKLM-Run-VTTimer - VTTimer.exe
    HKLM-Run-secondintel - c:\hp\bin\cloaker.exe
    HKLM-Run-regcmdcons - c:\hp\bin\cloaker.exe



    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2010-04-29 16:08
    Windows 5.1.2600 Service Pack 2 NTFS

    scanning hidden processes ...

    scanning hidden autostart entries ...

    scanning hidden files ...


    c:\windows\system32\OLD5.tmp 2180992 bytes executable

    scan completed successfully
    hidden files: 1

    **************************************************************************
    .
    --------------------- DLLs Loaded Under Running Processes ---------------------

    - - - - - - - > 'explorer.exe'(2096)
    c:\docume~1\HP_Owner\LOCALS~1\Temp\IadHide5.dll
    .
    ------------------------ Other Running Processes ------------------------
    .
    c:\program files\Common Files\Symantec Shared\ccProxy.exe
    c:\program files\Common Files\Symantec Shared\ccSetMgr.exe
    c:\program files\Norton AntiVirus\navapsvc.exe
    c:\program files\Common Files\Symantec Shared\ccEvtMgr.exe
    c:\program files\Common Files\LightScribe\LSSrvc.exe
    c:\program files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    c:\windows\AGRSMMSG.exe
    c:\windows\SOUNDMAN.EXE
    c:\windows\ALCWZRD.EXE
    c:\windows\system32\wdfmgr.exe
    c:\program files\Common Files\Symantec Shared\Security Center\SymWSC.exe
    c:\program files\iPod\bin\iPodService.exe
    c:\windows\system32\rundll32.exe
    .
    **************************************************************************
    .
    Completion time: 2010-04-29 16:10:46 - machine was rebooted
    ComboFix-quarantined-files.txt 2010-04-29 20:10

    Pre-Run: 183,327,825,920 bytes free
    Post-Run: 183,262,494,720 bytes free

    WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect

    - - End Of File - - DF0E0149FA20D14999C918D8DE7B99F9














    the pervx 3.0 screenshot as follows:

    [​IMG]

    ******************************************************************************************************************************************

    I hope all this info was helpful
    PLEASE SAVE THE WHALE....er...my computer lol

    Thanks again
     
As Seen On
As Seen On...

Welcome to Tech Support Guy!

Are you looking for the solution to your computer problem? Join our site today to ask your question. This site is completely free -- paid for by advertisers and donations.

If you're not already familiar with forums, watch our Welcome Guide to get started.

Join over 733,556 other people just like you!

Thread Status:
Not open for further replies.

Short URL to this thread: https://techguy.org/920157

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Dismiss Notice