Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

Recently Deleted Trojan.Generic [CLOSED]


  • This topic is locked This topic is locked

#16
xXDanXx

xXDanXx

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
Ok some of the things that are going wrong with the computer are such as...* Running much slower then usual, * And also on my other user account for the computer "Kurtis", the desktop background is blue and won't change itself, also the icons on the desktop move around on there own. However on the user im on now "Sonya" it's fine and is running perfectly... P.S sorry about the slow reply.


From the OTMoveIT log....

Explorer killed successfully
File/Folder C:\DocumentsandSettings\Kurtis\LocalSettings\Temp\9T39lbqU.exe not found.
< EmptyTemp >
File delete failed. C:\DOCUME~1\Sonya\LOCALS~1\Temp\hpodvd09.log scheduled to be deleted on reboot.
Temp folders emptied.
IE temp folders emptied.
< purity >
Explorer started successfully

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 07122008_225223

Files moved on Reboot...
C:\DOCUME~1\Sonya\LOCALS~1\Temp\hpodvd09.log moved successfully.



DSS LOG........



Deckard's System Scanner v20071014.68
Run by Sonya on 2008-07-12 22:57:04
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Sonya.exe) -----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:57:15, on 12/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\WINDOWS\eHome\ehmsas.exe
C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
C:\Program Files\Real\RealPlayer\RealPlay.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\AOL\1206714946\ee\AOLSoftware.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Windows NT\Accessories\wordpad.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\NETGEAR\WG111v2\WG111v2.exe
c:\program files\common files\aol\1206714946\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
c:\program files\common files\aol\1206714946\ee\aolsoftware.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Sonya\My Documents\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Sonya.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1206714946\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [AOLAspSunset2] C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: AOL 9.0 Tray Icon.lnk = C:\Program Files\AOL 9.0a\aoltray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: NETGEAR WG111v2 Smart Wizard.lnk = ?
O8 - Extra context menu item: &AOL Toolbar search - res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v5.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1152538098733
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 8189 bytes

-- Files created between 2008-06-12 and 2008-07-12 -----------------------------

2008-07-12 09:46:08 0 d-------- C:\Program Files\LimeWire
2008-07-12 07:00:01 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-07-12 05:35:59 0 d-------- C:\WINDOWS\ERUNT
2008-07-10 07:38:59 0 d-------- C:\Documents and Settings\Sonya\Application Data\Mozilla
2008-07-09 21:49:09 0 d-------- C:\Program Files\EA GAMES
2008-07-09 19:40:02 0 d-------- C:\Documents and Settings\Kurtis\Application Data\SUPERAntiSpyware.com
2008-07-09 19:33:03 262144 --ah----- C:\Documents and Settings\Kurtis\ntuser.dat
2008-07-09 10:58:45 0 d-------- C:\Documents and Settings\Sonya\Application Data\Apple Computer
2008-07-09 09:11:25 0 d--h----- C:\$AVG8.VAULT$
2008-07-09 09:09:50 0 d-------- C:\WINDOWS\system32\drivers\Avg
2008-07-09 09:09:39 0 d-------- C:\Program Files\AVG
2008-07-09 09:09:38 0 d-------- C:\Documents and Settings\All Users\Application Data\avg8
2008-07-09 08:21:22 0 d-------- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2008-07-09 08:21:10 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-07-09 08:21:10 0 d-------- C:\Documents and Settings\Sonya\Application Data\SUPERAntiSpyware.com
2008-07-09 08:20:49 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-07-09 04:28:27 0 d-------- C:\Documents and Settings\Kurtis\Application Data\TrojanHunter
2008-07-09 04:06:17 0 d-------- C:\Documents and Settings\Kurtis\Application Data\Malwarebytes
2008-07-09 02:11:59 0 d-------- C:\Documents and Settings\Sonya\Application Data\TrojanHunter
2008-07-09 01:24:10 0 d-------- C:\Documents and Settings\Sonya\Application Data\Malwarebytes
2008-07-09 01:23:58 0 d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-07-09 00:42:48 0 d-------- C:\Documents and Settings\Sonya\Application Data\WinRAR
2008-07-09 00:37:17 0 d-------- C:\Program Files\Trend Micro
2008-07-09 00:21:52 0 d-------- C:\WINDOWS\pss
2008-07-07 08:56:00 0 d-------- C:\Documents and Settings\All Users\Application Data\Disk Cleaner
2008-07-06 04:23:09 0 d-------- C:\WINDOWS\048298C9A4D3490B9FF9AB023A9238F3.TMP
2008-07-05 09:49:44 0 d-------- C:\Documents and Settings\Kurtis\Application Data\WinRAR
2008-07-04 06:24:16 0 d-------- C:\Documents and Settings\All Users\Application Data\Adobe
2008-07-04 06:24:10 0 d-------- C:\Program Files\Common Files\Adobe
2008-07-03 01:21:16 0 d-------- C:\Documents and Settings\Kurtis\Application Data\acccore
2008-07-03 00:44:29 0 d-------- C:\Documents and Settings\Kurtis\Application Data\Ubisoft
2008-07-02 10:22:06 0 d-------- C:\Documents and Settings\All Users\Application Data\nView_Profiles
2008-07-01 22:21:10 0 d-------- C:\Program Files\Realtek AC97
2008-07-01 22:21:08 315392 --a------ C:\WINDOWS\alcupd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update driver Tool>
2008-07-01 06:11:40 0 d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-07-01 05:51:56 0 d-------- C:\Program Files\InCode Solutions
2008-07-01 00:29:06 0 d-------- C:\Documents and Settings\Kurtis\Application Data\Mozilla
2008-06-28 17:36:15 0 d-------- C:\Documents and Settings\All Users\Application Data\Trymedia
2008-06-28 17:35:59 0 d-------- C:\Program Files\AOL Games
2008-06-24 00:57:14 4682 --a------ C:\WINDOWS\system32\npptNT2.sys <Not Verified; INCA Internet Co., Ltd.; nProtect NPSC Kernel Mode Driver for NT>
2008-06-24 00:54:53 0 d-------- C:\Program Files\Common Files\INCA Shared
2008-06-24 00:43:24 0 d-------- C:\Program Files\9Dragons
2008-06-23 07:50:01 0 d-------- C:\WINDOWS\system32\LogFiles
2008-06-23 07:16:59 0 d-------- C:\WINDOWS\system32\appmgmt
2008-06-23 06:43:16 0 d-------- C:\Netgear
2008-06-22 02:25:04 0 d-------- C:\Program Files\ReflexiveArcade


-- Find3M Report ---------------------------------------------------------------

2008-07-10 10:01:33 0 d-------- C:\Program Files\Common Files
2008-07-09 21:49:06 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-07-09 19:37:59 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-06-28 17:29:04 0 d-------- C:\Program Files\AOL 9.0a
2008-06-23 07:18:13 0 d-------- C:\Program Files\Serif
2008-06-03 17:55:55 0 d-------- C:\Program Files\NETGEAR
2008-06-03 17:55:46 0 d-------- C:\Documents and Settings\Sonya\Application Data\InstallShield
2008-06-03 15:58:37 0 d-------- C:\Program Files\iTunes
2008-06-03 15:58:29 0 d-------- C:\Program Files\iPod
2008-06-03 15:58:14 0 d-------- C:\Program Files\Bonjour
2008-06-03 15:58:07 0 d-------- C:\Program Files\QuickTime
2008-06-03 15:57:37 0 d-------- C:\Program Files\Apple Software Update
2008-06-03 15:57:23 0 d-------- C:\Program Files\Common Files\Apple
2008-06-02 13:56:38 0 d-------- C:\Program Files\AOL Companion
2008-06-02 13:56:36 0 d-------- C:\Program Files\Learn2.com
2008-06-02 13:56:32 0 d-------- C:\Program Files\AOL Toolbar
2008-06-02 13:56:21 0 d-------- C:\Program Files\Common Files\aolshare
2008-06-02 13:56:18 0 d-------- C:\Program Files\Common Files\AOL
2008-05-30 14:06:19 0 d-------- C:\Program Files\HP
2008-05-30 11:53:41 0 d-------- C:\Program Files\Realtek
2008-05-30 11:53:36 315392 --a------ C:\WINDOWS\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
2008-05-30 11:53:27 0 d-------- C:\Program Files\Driver
2008-05-06 08:34:58 117681 --a------ C:\WINDOWS\hpoins11.dat


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [29/09/2005 23:01]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [13/09/2002 14:42]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [22/02/2008 04:25]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [09/07/2001 11:50]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [04/10/2007 17:14]
"nwiz"="nwiz.exe" [04/10/2007 17:14 C:\WINDOWS\system32\nwiz.exe]
"HDAudDeck"="C:\Program Files\VIAudioi\HDADeck\HDeck.exe" [17/07/2006 15:36]
"AOLDialer"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" [07/12/2007 16:30]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [26/03/2008 15:25]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [28/03/2008 23:37]
"HostManager"="C:\Program Files\Common Files\AOL\1206714946\ee\AOLSoftware.exe" [26/09/2006 01:52]
"AOLAspSunset2"="C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe" []
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [08/05/2007 16:24]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [04/10/2007 17:14]
"RTHDCPL"="RTHDCPL.EXE" [16/10/2007 18:30 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [11/10/2007 11:04 C:\WINDOWS\SkyTel.exe]
"Alcmtr"="ALCMTR.EXE" [03/05/2005 18:43 C:\WINDOWS\Alcmtr.exe]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [30/03/2008 10:36]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [12/07/2008 04:31]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [13/10/2004 17:24]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [30/04/2008 12:20]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [10/08/2004 20:00]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [28/05/2008 10:33]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [23/04/2008 03:38:16]
AOL 9.0 Tray Icon.lnk - C:\Program Files\AOL 9.0a\aoltray.exe [02/06/2008 13:56:13]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [19/02/2006 04:21:22]
NETGEAR WG111v2 Smart Wizard.lnk - C:\Program Files\NETGEAR\WG111v2\WG111v2.exe [03/06/2008 17:55:55]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [13/05/2008 10:13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 19/04/2007 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{cacbee9e-2e2e-11dd-ad8c-806d6172696f}]
AutoRun\command- D:\Autorun.exe




-- End of Deckard's System Scanner: finished at 2008-07-12 22:57:58 ------------
  • 0

Advertisements


#17
fenzodahl512

fenzodahl512

  • Malware Removal
  • 9,863 posts

Ok some of the things that are going wrong with the computer are such as...* Running much slower then usual, * And also on my other user account for the computer "Kurtis", the desktop background is blue and won't change itself, also the icons on the desktop move around on there own. However on the user im on now "Sonya" it's fine and is running perfectly... P.S sorry about the slow reply.



Ok.. To avoid some confusion, This is my assumption and please tell me are they right or not..

1. The computer has two account (Kurtis and Sonya)

2. The "Sonya" account now works perfectly fine

3. The "Kurtis" account now become much worse..

Is that true?..
  • 0

#18
xXDanXx

xXDanXx

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
Yes precisely
  • 0

#19
fenzodahl512

fenzodahl512

  • Malware Removal
  • 9,863 posts
Ok.. log in "Kurtis" account and post me a fresh Deckard System Scanner log here.. From now on, every fix must be done in "Kurtis" account :)
  • 0

#20
xXDanXx

xXDanXx

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
kk now working on it
  • 0

#21
xXDanXx

xXDanXx

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
ok heres the dss scan from the Kurtis account.....


Deckard's System Scanner v20071014.68
Run by Kurtis on 2008-07-13 08:28:55
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Kurtis.exe) ----------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 08:29:06, on 13/07/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16674)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
C:\PROGRA~1\AVG\AVG8\avgrsx.exe
C:\PROGRA~1\AVG\AVG8\avgemc.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Sonya\My Documents\dss.exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\Kurtis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,First Home Page = C:\Program Files\AOL Toolbar\welcome.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - Default URLSearchHook is missing
F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\Userinit.exe
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O3 - Toolbar: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [HDAudDeck] C:\Program Files\VIAudioi\HDADeck\HDeck.exe 1
O4 - HKLM\..\Run: [AOLDialer] C:\Program Files\Common Files\AOL\ACS\AOLDial.exe
O4 - HKLM\..\Run: [RealTray] C:\Program Files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HostManager] C:\Program Files\Common Files\AOL\1206714946\ee\AOLSoftware.exe
O4 - HKLM\..\Run: [AOLAspSunset2] C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [SkyTel] SkyTel.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-2017429169-388926501-409313994-1006\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User 'Sonya')
O4 - HKUS\S-1-5-21-2017429169-388926501-409313994-1006\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (User 'Sonya')
O4 - HKUS\S-1-5-21-2017429169-388926501-409313994-1006\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User 'Sonya')
O4 - HKUS\S-1-5-21-2017429169-388926501-409313994-1006\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (User 'Sonya')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: AOL 9.0 Tray Icon.lnk = C:\Program Files\AOL 9.0a\aoltray.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: NETGEAR WG111v2 Smart Wizard.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra 'Tools' menuitem: AOL Toolbar - {4982D40A-C53B-4615-B15B-B5B5E98D167C} - C:\Program Files\AOL Toolbar\toolbar.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {69EF49E5-FE46-4B92-B5FA-2193AB7A6B8A} (GameLauncher Control) - http://www.acclaim.c.../acclaim_v5.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1152538098733
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\PROGRA~1\COMMON~1\AOL\ACS\AOLacsd.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: AVG8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--
End of file - 7283 bytes

-- Files created between 2008-06-13 and 2008-07-13 -----------------------------

2008-07-12 09:46:08 0 d-------- C:\Program Files\LimeWire
2008-07-12 07:00:01 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-07-12 05:35:59 0 d-------- C:\WINDOWS\ERUNT
2008-07-09 21:49:09 0 d-------- C:\Program Files\EA GAMES
2008-07-09 09:11:25 0 d--h----- C:\$AVG8.VAULT$
2008-07-09 09:09:50 0 d-------- C:\WINDOWS\system32\drivers\Avg
2008-07-09 09:09:39 0 d-------- C:\Program Files\AVG
2008-07-09 08:21:10 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-07-09 08:20:49 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-07-09 02:10:48 4224 --a------ C:\WINDOWS\system32\drivers\beep.sys <Not Verified; Microsoft Corporation; Microsoft® Windows® Operating System>
2008-07-09 00:37:17 0 d-------- C:\Program Files\Trend Micro
2008-07-09 00:21:52 0 d-------- C:\WINDOWS\pss
2008-07-06 04:23:09 0 d-------- C:\WINDOWS\048298C9A4D3490B9FF9AB023A9238F3.TMP
2008-07-04 06:24:10 0 d-------- C:\Program Files\Common Files\Adobe
2008-07-01 22:21:10 0 d-------- C:\Program Files\Realtek AC97
2008-07-01 22:21:08 315392 --a------ C:\WINDOWS\alcupd.exe <Not Verified; Realtek Semiconductor Corp.; Realtek AC'97 Update driver Tool>
2008-07-01 05:51:56 0 d-------- C:\Program Files\InCode Solutions
2008-06-28 17:35:59 0 d-------- C:\Program Files\AOL Games
2008-06-24 00:57:14 4682 --a------ C:\WINDOWS\system32\npptNT2.sys <Not Verified; INCA Internet Co., Ltd.; nProtect NPSC Kernel Mode Driver for NT>
2008-06-24 00:54:53 0 d-------- C:\Program Files\Common Files\INCA Shared
2008-06-24 00:43:24 0 d-------- C:\Program Files\9Dragons
2008-06-23 07:50:01 0 d-------- C:\WINDOWS\system32\LogFiles
2008-06-23 07:16:59 0 d-------- C:\WINDOWS\system32\appmgmt
2008-06-23 06:43:16 0 d-------- C:\Netgear
2008-06-22 02:25:04 0 d-------- C:\Program Files\ReflexiveArcade


-- Find3M Report ---------------------------------------------------------------

2008-07-10 10:01:33 0 d-------- C:\Program Files\Common Files
2008-07-09 21:49:06 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-07-09 19:37:59 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-07-09 09:09:09 0 d---s---- C:\WINDOWS\system32\config\systemprofile\Application Data\Microsoft
2008-06-28 17:29:04 0 d-------- C:\Program Files\AOL 9.0a
2008-06-23 07:18:13 0 d-------- C:\Program Files\Serif
2008-06-03 17:55:55 0 d-------- C:\Program Files\NETGEAR
2008-06-03 15:58:37 0 d-------- C:\Program Files\iTunes
2008-06-03 15:58:29 0 d-------- C:\Program Files\iPod
2008-06-03 15:58:14 0 d-------- C:\Program Files\Bonjour
2008-06-03 15:58:07 0 d-------- C:\Program Files\QuickTime
2008-06-03 15:57:37 0 d-------- C:\Program Files\Apple Software Update
2008-06-03 15:57:23 0 d-------- C:\Program Files\Common Files\Apple
2008-06-02 13:56:38 0 d-------- C:\Program Files\AOL Companion
2008-06-02 13:56:36 0 d-------- C:\Program Files\Learn2.com
2008-06-02 13:56:32 0 d-------- C:\Program Files\AOL Toolbar
2008-06-02 13:56:21 0 d-------- C:\Program Files\Common Files\aolshare
2008-06-02 13:56:18 0 d-------- C:\Program Files\Common Files\AOL
2008-05-30 14:06:19 0 d-------- C:\Program Files\HP
2008-05-30 11:53:41 0 d-------- C:\Program Files\Realtek
2008-05-30 11:53:36 315392 --a------ C:\WINDOWS\HideWin.exe <Not Verified; Realtek Semiconductor Corp.; HD Audio Hide windows program>
2008-05-30 11:53:27 0 d-------- C:\Program Files\Driver
2008-05-06 08:34:58 117681 --a------ C:\WINDOWS\hpoins11.dat


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ehTray"="C:\WINDOWS\ehome\ehtray.exe" [29/09/2005 23:01]
"Recguard"="C:\WINDOWS\SMINST\RECGUARD.EXE" [13/09/2002 14:42]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [22/02/2008 04:25]
"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [09/07/2001 11:50]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [04/10/2007 17:14]
"nwiz"="nwiz.exe" [04/10/2007 17:14 C:\WINDOWS\system32\nwiz.exe]
"HDAudDeck"="C:\Program Files\VIAudioi\HDADeck\HDeck.exe" [17/07/2006 15:36]
"AOLDialer"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe" [07/12/2007 16:30]
"RealTray"="C:\Program Files\Real\RealPlayer\RealPlay.exe" [26/03/2008 15:25]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [28/03/2008 23:37]
"HostManager"="C:\Program Files\Common Files\AOL\1206714946\ee\AOLSoftware.exe" [26/09/2006 01:52]
"AOLAspSunset2"="C:\Documents and Settings\All Users\Application Data\AOL\UserProfiles\All Users\antiSpyware\dat\updates\aspapp\sunsetAsp2.exe" []
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [08/05/2007 16:24]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [04/10/2007 17:14]
"RTHDCPL"="RTHDCPL.EXE" [16/10/2007 18:30 C:\WINDOWS\RTHDCPL.exe]
"SkyTel"="SkyTel.EXE" [11/10/2007 11:04 C:\WINDOWS\SkyTel.exe]
"Alcmtr"="ALCMTR.EXE" [03/05/2005 18:43 C:\WINDOWS\Alcmtr.exe]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [30/03/2008 10:36]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [12/07/2008 04:31]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [10/08/2004 20:00]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [13/05/2008 10:13 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 19/04/2007 13:41 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,




-- End of Deckard's System Scanner: finished at 2008-07-13 08:29:32 ------------
  • 0

#22
fenzodahl512

fenzodahl512

  • Malware Removal
  • 9,863 posts
Erm.. nothing malicious there.. Lets do these....


Please do an online scan with Kaspersky WebScanner

Click on Accept

You will be promted to install an ActiveX component from Kaspersky, Click Yes.
  • The program will launch and then begin downloading the latest definition files:
  • Once the files have been downloaded click on NEXT
  • Now click on Scan Settings
  • In the scan settings make that the following are selected:
    • Scan using the following Anti-Virus database:
    Extended (if available otherwise Standard)
    • Scan Options:
    Scan Archives
    Scan Mail Bases
  • Click OK
  • Now under select a target to scan:Select My Computer
  • This will program will start and scan your system.
  • The scan will take a while so be patient and let it run.
  • Once the scan is complete it will display if your system has been infected.
    • Now click on the Save as Text button:
  • Save the file to your desktop.
  • Copy and paste that information in your next post.


Regards
fenzodahl512
  • 0

#23
xXDanXx

xXDanXx

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
sorry for the late reply had work :) and the kapersky programme when i click accept nothing happens have you got a different link for it , i also tried it into internet explorer instead of mozilla firefox and same thing.

thanks alot, kurtis
  • 0

#24
xXDanXx

xXDanXx

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
ok ive accepted it now, for some reason it didn't want to work , however now i can't install activex :S everytime i try to a fishing philter pops up i click allow this website option but it doesn' work. Oh on the options it says use the administrators account to download it so ill go onto Sonya quickly

Edited by xXDanXx, 11 July 2008 - 06:08 AM.

  • 0

#25
xXDanXx

xXDanXx

    Member

  • Topic Starter
  • Member
  • PipPip
  • 16 posts
Ok i cant get it working on "Kurtis" but the kaspersky is working on "Sonya".
  • 0

Advertisements


#26
fenzodahl512

fenzodahl512

  • Malware Removal
  • 9,863 posts
Erm.. tell me, is that "Kurtis" account has Administrator privilage?..


Do the following....

Lets run F-Secure online scan for Viruses, Spyware and RootKits:
  • Scroll to the bottom of the page and click the Start scanning button. A window will pop up.
  • Allow the Active X control to be installed on your computer, then click the Accept button
  • Click Full System Scan and allow the components to download and the scan to complete.
  • If malware is found, check Submit samples to F-Secure then select Automatic cleaning
  • When cleaning has finitished, click Show report (this will open an Internet Explorer window containing the report)
  • Highlight and Copy (CTRL + C) the complete report, and Paste (CTRL + V) in a new reply to this post
If Automatic cleaning with Submit samples hangs, click Cancel, then New Scan
  • When the cleaning option is presented, Uncheck Submit samples to F-Secure
  • Click Automatic cleaning
  • When cleaning has finitished, click Show report (this will open an Internet Explorer window containing the report)
  • Highlight and Copy (CTRL + C) the complete report, and Paste (CTRL + V) in a new reply to this post
Notes:
  • This scan will only work with Internet Explorer
  • You must have administrator rights to run this scan
  • This scan can take several hours, so please be patient


Regards
fenzodahl512
  • 0

#27
fenzodahl512

fenzodahl512

  • Malware Removal
  • 9,863 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP