We’d like to remind Forumites to please avoid political debate on the Forum.

This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.

📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!

Recommend a quicker programme than Nero Vision 8

12346

Comments

  • BOBS
    BOBS Posts: 2,871 Forumite
    Ok Alienrik finally got it to run!! - part 1
    ComboFix 09-11-22.05 - Roberta 23/11/2009 12:49.1.1 - x86
    Microsoft Windows XP Home Edition 5.1.2600.2.1252.44.1033.18.478.188 [GMT 0:00]
    Running from: c:\documents and settings\Roberta\My Documents\My PSP Files\qwerty.exe
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    c:\documents and settings\Roberta\Application Data\inst.exe
    c:\program files\Fast Browser Search
    c:\program files\Fast Browser Search\ClearRecycleBin.exe
    c:\program files\Fast Browser Search\error.html
    c:\program files\Fast Browser Search\FBSPlugin.dll
    c:\program files\Fast Browser Search\fbsProtection.xml
    c:\program files\Fast Browser Search\FbsSearchProvider.xml
    c:\program files\Fast Browser Search\FbsSearchProviderIE8.exe
    c:\program files\Fast Browser Search\FBStoolbar.dll
    c:\program files\Fast Browser Search\fbstoolbar.jar
    c:\program files\Fast Browser Search\fbstoolbar.manifest
    c:\program files\Fast Browser Search\icons.bmp
    c:\program files\Fast Browser Search\IE\basis.xml
    c:\program files\Fast Browser Search\IE\fbsSearchProvider.xml
    c:\program files\Fast Browser Search\IE\SearchGuardPlus.ico
    c:\program files\Fast Browser Search\IE\SGPU.ico
    c:\program files\Fast Browser Search\IE\sgpUpdater.exe
    c:\program files\Fast Browser Search\IE\sgpUpdater.xml
    c:\program files\Fast Browser Search\IE\SGPUpdaterS.exe
    c:\program files\Fast Browser Search\IE\tbhelper.dll
    c:\program files\Fast Browser Search\IE\tbs_include_script_003175.js
    c:\program files\Fast Browser Search\IE\tbs_include_script_005064.js
    c:\program files\Fast Browser Search\IE\tbs_include_script_012817.js
    c:\program files\Fast Browser Search\IE\Toolbar Help.htm
    c:\program files\Fast Browser Search\IE\uninstall.exe
    c:\program files\Fast Browser Search\IE\uninstalSGP.exe
    c:\program files\Fast Browser Search\IE\uninstalSGPU.exe
    c:\program files\Fast Browser Search\IE\update.exe
    c:\program files\Fast Browser Search\info.txt
    c:\program files\Fast Browser Search\local.xml
    c:\program files\Fast Browser Search\logobg.bmp
    c:\program files\Fast Browser Search\MTWBtoolbar.html
    c:\program files\Fast Browser Search\search.bmp
    c:\program files\Fast Browser Search\SearchGuardPlus.exe
    c:\program files\SGPSA
    c:\recycler\S-1-5-21-1387597153-2446122821-3113132327-1003
    c:\recycler\S-1-5-21-1667302104-2785736964-2797828404-1003
    c:\recycler\S-1-5-21-2043071480-3567137969-1582743025-1003
    c:\recycler\S-1-5-21-2047753841-3467415759-2009791400-1003
    c:\recycler\S-1-5-21-2819292643-4187677018-3282258917-1003
    c:\recycler\S-1-5-21-342584083-281274579-1876857821-1003
    c:\recycler\S-1-5-21-3976530364-2322461219-393798730-1003
    c:\recycler\S-1-5-21-3992127013-585707474-1184038962-1003
    C:\test.txt
    c:\windows\system32\_000006_.tmp.dll
    c:\windows\system32\_000009_.tmp.dll
    c:\windows\system32\_000010_.tmp.dll
    c:\windows\system32\zip32.dll
    .
    ((((((((((((((((((((((((( Files Created from 2009-10-23 to 2009-11-23 )))))))))))))))))))))))))))))))
    .
    2009-11-23 09:02 . 2009-08-25 08:00 84912 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\NAVENG.SYS
    2009-11-23 09:02 . 2009-08-25 08:00 177520 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\NAVENG32.DLL
    2009-11-23 09:02 . 2009-08-25 08:00 1647984 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\NAVEX32A.DLL
    2009-11-23 09:02 . 2009-08-25 08:00 1323568 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\NAVEX15.SYS
    2009-11-23 09:02 . 2009-09-22 08:00 259440 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\ECMSVR32.DLL
    2009-11-23 09:02 . 2009-09-15 08:00 2747952 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\CCERASER.DLL
    2009-11-23 09:02 . 2009-08-26 08:00 371248 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\EECTRL.SYS
    2009-11-23 09:02 . 2009-08-26 08:00 102448 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20091122.020\ERASER.SYS
    2009-11-22 19:18 . 2009-11-22 19:18
    d
    w- c:\documents and settings\Roberta\DoctorWeb
    2009-11-22 15:43 . 2009-11-22 15:43
    d
    w- c:\documents and settings\NetworkService\Local Settings\Application Data\Google
    2009-11-22 15:38 . 2009-11-22 15:40
    d
    w- c:\documents and settings\Roberta\Local Settings\Application Data\Temp
    2009-11-22 15:38 . 2009-11-22 15:38
    d
    w- c:\documents and settings\LocalService\Local Settings\Application Data\Google
    2009-11-22 15:34 . 2009-11-22 15:36
    d
    w- c:\documents and settings\Roberta\Local Settings\Application Data\Deployment
    2009-11-22 14:36 . 2009-11-22 14:36
    d
    w- c:\program files\Trend Micro
    2009-11-20 20:36 . 2009-09-02 16:41 102439 ----a-w- c:\windows\system32\sipr3260.dll
    2009-11-20 20:36 . 2009-09-02 16:41 217127 ----a-w- c:\windows\system32\drv43260.dll
    2009-11-20 20:36 . 2009-09-02 16:41 208935 ----a-w- c:\windows\system32\drv33260.dll
    2009-11-20 20:36 . 2009-09-02 16:41 65602 ----a-w- c:\windows\system32\cook3260.dll
    2009-11-20 20:36 . 2009-09-02 16:41 176165 ----a-w- c:\windows\system32\drv23260.dll
    2009-11-20 20:36 . 2009-09-02 16:41 626688 ----a-w- c:\windows\system32\vp7vfw.dll
    2009-11-20 20:36 . 2009-09-02 16:41 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
    2009-11-13 13:53 . 2009-10-28 22:37 811896 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\Scxpx86.dll
    2009-11-13 13:53 . 2009-10-28 22:37 329592 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSXpx86.sys
    2009-11-13 13:53 . 2009-10-28 22:37 488312 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSxpx86.dll
    2009-11-13 13:53 . 2009-10-28 22:37 343088 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSvix86.sys
    2009-11-13 13:53 . 2009-10-28 22:37 466992 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091111.001\IDSviA64.sys
    2009-11-11 20:55 . 2009-10-28 22:37 811896 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\Scxpx86.dll
    2009-11-11 20:55 . 2009-10-28 22:37 329592 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSXpx86.sys
    2009-11-11 20:55 . 2009-10-28 22:37 488312 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSxpx86.dll
    2009-11-11 20:55 . 2009-10-28 22:37 343088 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSvix86.sys
    2009-11-11 20:55 . 2009-10-28 22:37 466992 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\20091107.001\IDSviA64.sys
    2009-10-28 22:37 . 2009-10-28 22:37 343088 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSvix86.sys
    2009-10-28 22:37 . 2009-10-28 22:37 329592 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSXpx86.sys
    2009-10-28 22:37 . 2009-10-28 22:37 811896 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\Scxpx86.dll
    2009-10-28 22:37 . 2009-10-28 22:37 488312 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSxpx86.dll
    2009-10-28 22:37 . 2009-10-28 22:37 466992 ----a-w- c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\IPSDefs\BinHub\IDSviA64.sys
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2009-11-23 10:35 . 2006-11-17 17:29 11986 ----a-w- c:\documents and settings\Roberta\Application Data\wklnhst.dat
    2009-11-23 08:48 . 2006-11-24 12:35
    d
    w- c:\program files\EPSON
    2009-11-22 15:49 . 2005-12-05 14:42
    d--h--w- c:\program files\InstallShield Installation Information
    2009-11-22 15:38 . 2007-02-05 18:15
    d
    w- c:\program files\Google
    2009-11-22 11:29 . 2008-09-18 11:36
    d
    w- c:\program files\Malwarebytes' Anti-Malware
    2009-11-21 15:23 . 2009-02-21 10:33
    d
    w- c:\documents and settings\Roberta\Application Data\Vso
    2009-11-20 23:26 . 2007-11-06 13:33
    d
    w- c:\documents and settings\Roberta\Application Data\uTorrent
    2009-11-20 20:38 . 2009-02-21 10:33 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys
    2009-11-20 20:38 . 2009-02-21 10:33 47360 ----a-w- c:\documents and settings\Roberta\Application Data\pcouffin.sys
    2009-11-20 20:38 . 2009-02-21 10:33 47360 ----a-w- c:\documents and settings\Roberta\Application Data\pcouffin.sys
    2009-11-20 20:36 . 2009-03-11 08:22
    d
    w- c:\program files\VSO
    2009-09-30 13:58 . 2007-08-25 05:07 9576 ----a-w- c:\documents and settings\All Users\Application Data\Symantec\LiveUpdate\LuRegManifests\Static\CCMSLLUM.DLL
    2009-09-11 14:03 . 2006-09-08 07:06 136192 ----a-w- c:\windows\system32\msv1_0.dll
    2009-09-10 14:54 . 2008-09-18 11:36 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2009-09-10 14:53 . 2008-09-18 11:36 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
    2009-09-04 20:45 . 2006-09-08 07:06 58880 ----a-w- c:\windows\system32\msasn1.dll
    2009-08-29 08:08 . 2005-12-05 11:41 916480 ----a-w- c:\windows\system32\wininet.dll
    2009-08-26 08:16 . 2006-09-08 07:07 247326
    w- c:\windows\system32\strmdll.dll
    2006-11-18 13:46 . 2006-11-18 13:46 0 --sha-w- c:\windows\SMINST\HPCD.sys
    .
    [FONT=verdana,arial,helvetica][/FONT]
  • BOBS
    BOBS Posts: 2,871 Forumite
    part 2
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2009-03-18 4363504]
    "Search Protection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [2009-02-03 111856]
    "YSearchProtection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [2009-02-03 111856]
    "Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2009-04-30 2329936]
    "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-11-22 39408]
    "HijackThis startup scan"="c:\program files\Trend Micro\HijackThis\HijackThis.exe" [2009-11-22 396288]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048]
    "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2006-11-17 98304]
    "YSearchProtection"="c:\program files\Yahoo!\Search Protection\SearchProtection.exe" [2009-02-03 111856]
    "TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-07-30 198160]
    "wltray.exe"="c:\windows\system32\wltray.exe" [2005-01-29 696422]
    "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080]
    "Google Quick Search Box"="c:\program files\Google\Quick Search Box\GoogleQuickSearchBox.exe" [2009-11-22 122368]
    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360]
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToAssist]
    2009-08-10 08:58 10792 ----a-w- c:\program files\Citrix\GoToAssist\482\g2awinlogon.dll
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
    @=""
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SymEFA.sys]
    @="FSFilter Activity Monitor"
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
    path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
    backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^AOL 9.0 Tray Icon.lnk]
    path=c:\documents and settings\All Users\Start Menu\Programs\Startup\AOL 9.0 Tray Icon.lnk
    backup=c:\windows\pss\AOL 9.0 Tray Icon.lnkCommon Startup
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Norton GoBack.lnk]
    path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Norton GoBack.lnk
    backup=c:\windows\pss\Norton GoBack.lnkCommon Startup
    [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Wireless Network Manager.lnk]
    path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Wireless Network Manager.lnk
    backup=c:\windows\pss\Wireless Network Manager.lnkCommon Startup
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
    "wltrysvc"=2 (0x2)
    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
    "DisableMonitoring"=dword:00000001
    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
    "DisableMonitoring"=dword:00000001
    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
    "DisableMonitoring"=dword:00000001
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
    "EnableFirewall"= 0 (0x0)
    [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
    "%windir%\\system32\\sessmgr.exe"=
    "c:\\Program Files\\AOL 9.0\\waol.exe"=
    "c:\\Program Files\\NetSpy Protector\\quarantie\\04-08-2007-10-49-32\\84686d5b-ffdd-49ba-af1b-ad9f44efa7c9\\LimeWire.exe"=
    "c:\\Program Files\\Messenger\\msmsgs.exe"=
    "c:\\Program Files\\uTorrent\\uTorrent.exe"=
    "c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
    "c:\\WINDOWS\\system32\\spool\\drivers\\w32x86\\3\\SAGENT4.EXE"=
    "c:\\Program Files\\BT Broadband Desktop Help\\btbb\\BTHelpBrowser.exe"=
    "c:\\Program Files\\BT Broadband Desktop Help\\btbb\\BTHelpNotifier.exe"=
    R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2009-11-22 135664]
    R3 FXDRV;FXDRV;D:\Fxdrv.sys [x]
    R3 WN4501HLFZZ(Technology Corporation);802.11g Wireless USB Adapter(Technology Corporation);c:\windows\system32\DRIVERS\O4501U.sys [2005-06-01 408064]
    S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1007020.00B\SYMEFA.SYS [2009-08-22 310320]
    S1 BHDrvx86;Symantec Heuristics Driver;c:\windows\System32\Drivers\NIS\1007020.00B\BHDrvx86.sys [2009-08-22 259632]
    S1 ccHP;Symantec Hash Provider;c:\windows\System32\Drivers\NIS\1007020.00B\ccHPx86.sys [2009-09-09 482432]
    S1 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20091111.001\IDSxpx86.sys [2009-10-28 329592]
    S2 Norton Internet Security;Norton Internet Security;c:\program files\Norton Internet Security\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe [2009-08-22 117640]
    S2 Norton Save and Restore;Norton Save and Restore;c:\program files\Norton Save and Restore\Agent\VProSvc.exe [2007-03-26 2111080]
    S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2009-08-26 102448]

    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
    c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,LaunchINFSectionEx c:\program files\Internet Explorer\clrtour.inf,DefaultInstall.ResetTour,,12
    .
    Contents of the 'Scheduled Tasks' folder
    2009-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2009-11-22 15:36]
    2009-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2009-11-22 15:36]
    2009-11-23 c:\windows\Tasks\User_Feed_Synchronization-{94838A10-5CB0-4E9F-ADFC-72F9C6FA4E5E}.job
    - c:\windows\system32\msfeedssync.exe [2009-03-08 04:31]
    .
    .
    Supplementary Scan
    .
    uStart Page = hxxp://uk.my.yahoo.com/
    mSearch Bar = hxxp://uk.red.clientapps.yahoo.com/customize/btyahoo/defaults/sb/*http://uk.docs.yahoo.com/info/bt_side.html
    uSearchURL,(Default) = hxxp://uk.rd.yahoo.com/customize/ie/defaults/su/msgr9/*http://uk.search.yahoo.com
    IE: &Search
    IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
    IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
    TCP: {69C97AF2-572F-45AC-B456-F6E616A526D6} = 192.168.2.1
    DPF: Microsoft XML Parser for Java - [URL]file://c:\windows\Java\classes\xmldso.cab[/URL]
    DPF: {0972B098-DEE9-4279-AC7E-4BAAA029102D} - hxxp://assets.photobox.com/assets/aurigma/ImageUploader5.cab?20090721092544
    DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} - hxxp://www.facebook.com/controls/contactx.dll
    DPF: {D8575CE3-3432-4540-88A9-85A1325D3375} - hxxps://ebanking.northernbank.co.uk/html/activex/e-Safekey/NB/e-Safekey.cab
    .
    **************************************************************************
    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2009-11-23 13:40
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden autostart entries ...
    scanning hidden files ...
    scan completed successfully
    hidden files: 0
    **************************************************************************
    [HKEY_LOCAL_MACHINE\System\ControlSet002\Services\Norton Internet Security]
    "ImagePath"="\"c:\program files\Norton Internet Security\Norton Internet Security\Engine\16.7.2.11\ccSvcHst.exe\" /s \"Norton Internet Security\" /m \"c:\program files\Norton Internet Security\Norton Internet Security\Engine\16.7.2.11\diMaster.dll\" /prefetch:1"
    .
    DLLs Loaded Under Running Processes
    - - - - - - - > 'winlogon.exe'(1128)
    c:\program files\Citrix\GoToAssist\482\G2AWinLogon.dll
    c:\windows\System32\BCMLogon.dll
    .
    Completion time: 2009-11-23 13:51
    ComboFix-quarantined-files.txt 2009-11-23 13:51
    Pre-Run: 32,077,107,200 bytes free
    Post-Run: 32,493,518,848 bytes free
    WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
    [boot loader]
    timeout=2
    default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
    [operating systems]
    c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
    multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
    - - End Of File - - 3B9BD690118D6014EB6F3D0D5EA98F39
    [FONT=verdana,arial,helvetica][/FONT]
  • BOBS
    BOBS Posts: 2,871 Forumite
    quarantined files -
    2009-11-23 13:14:33 . 2009-11-23 13:14:33 9,654 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
    2009-11-22 16:09:59 . 2009-11-23 12:39:00 204 ----a-w- C:\Qoobox\Quarantine\catchme.log
    2009-07-20 11:36:55 . 2009-07-20 11:36:55 0 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\fbsSearchProvider.xml.vir
    2009-07-20 11:36:49 . 2009-07-20 11:36:49 0 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\basis.xml.vir
    2009-07-20 11:36:48 . 2008-11-10 12:44:06 62,336 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\update.exe.vir
    2009-07-20 11:36:48 . 2009-07-16 13:45:42 553,856 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\uninstalSGPU.exe.vir
    2009-07-20 11:36:48 . 2009-07-09 15:58:14 165,760 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\uninstall.exe.vir
    2009-07-20 11:36:48 . 2009-07-16 11:44:14 554,368 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\uninstalSGP.exe.vir
    2009-07-20 11:36:48 . 2009-07-14 16:37:52 2,059 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\tbs_include_script_012817.js.vir
    2009-07-20 11:36:48 . 2008-02-20 12:36:36 304 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\Toolbar Help.htm.vir
    2009-07-20 11:36:48 . 2009-01-16 10:48:00 2,465 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\tbs_include_script_005064.js.vir
    2009-07-20 11:36:47 . 2007-09-17 16:00:06 2,029 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\tbs_include_script_003175.js.vir
    2009-07-20 11:36:47 . 2009-06-08 08:47:48 368,000 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\tbhelper.dll.vir
    2009-07-20 11:36:47 . 2009-05-15 08:57:18 67,456 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\SGPUpdaterS.exe.vir
    2009-07-20 11:36:47 . 2009-05-08 14:05:56 3,710 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\sgpUpdater.xml.vir
    2009-07-20 11:36:47 . 2009-05-08 15:46:08 307,584 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\sgpUpdater.exe.vir
    2009-07-20 11:36:47 . 2009-05-07 09:02:00 1,150 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\SGPU.ico.vir
    2009-07-20 11:36:47 . 2009-04-27 15:25:00 1,150 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\IE\SearchGuardPlus.ico.vir
    2009-07-13 13:42:00 . 2009-07-13 13:42:00 9,776 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\logobg.bmp.vir
    2009-07-13 13:41:22 . 2009-07-13 13:41:22 311,085 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\fbstoolbar.jar.vir
    2009-07-07 09:15:58 . 2009-07-07 09:15:58 146 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\fbstoolbar.manifest.vir
    2009-06-10 08:45:56 . 2009-06-10 08:45:56 2,602,368 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\FBStoolbar.dll.vir
    2009-05-15 08:56:32 . 2009-05-15 08:56:32 54,144 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\FbsSearchProviderIE8.exe.vir
    2009-05-05 10:43:34 . 2009-05-05 10:43:34 108,416 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\FBSPlugin.dll.vir
    2009-05-04 15:08:28 . 2009-05-04 15:08:28 194,432 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\SearchGuardPlus.exe.vir
    2009-05-01 10:41:00 . 2009-05-01 10:41:00 4,844 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\search.bmp.vir
    2009-05-01 10:39:00 . 2009-05-01 10:39:00 151,830 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\icons.bmp.vir
    2009-04-16 13:47:56 . 2009-04-16 13:47:56 474 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\FbsSearchProvider.xml.vir
    2009-03-24 02:52:44 . 2009-03-24 02:52:44 3,960 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\fbsProtection.xml.vir
    2009-02-21 10:33:30 . 2009-11-20 20:38:17 87,608 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Roberta\Application Data\inst.exe.vir
    2009-01-05 23:48:38 . 2009-01-05 23:48:38 2,036 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\MTWBtoolbar.html.vir
    2008-12-03 12:03:44 . 2008-12-03 12:03:44 9,088 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\ClearRecycleBin.exe.vir
    2008-10-27 10:17:42 . 2008-10-27 10:17:42 79 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\info.txt.vir
    2007-03-03 12:32:29 . 2007-04-25 18:49:59 21,281 ----a-w- C:\Qoobox\Quarantine\C\test.txt.vir
    2006-12-18 13:54:26 . 2006-12-18 13:54:26 133,120 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\zip32.dll.vir
    2006-09-08 07:08:25 . 2004-08-04 12:00:00 132,096 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\_000009_.tmp.dll.vir
    2006-09-08 07:03:45 . 2004-08-04 12:00:00 611,328 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\_000006_.tmp.dll.vir
    2005-12-05 11:41:27 . 2004-10-28 01:21:01 721,920 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\_000010_.tmp.dll.vir
    2004-04-21 14:07:36 . 2004-04-21 14:07:36 53 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\local.xml.vir
    2004-02-19 02:20:32 . 2004-02-19 02:20:32 519 ----a-w- C:\Qoobox\Quarantine\C\Program Files\Fast Browser Search\error.html.vir
    [FONT=verdana,arial,helvetica][/FONT]
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    Looks clean to me. The fact it removed some 'temp' files is worrying though as that makes it look like it might be still infected

    CCLEANER and GLARY will remove 'dead' files

    Download CCLEANER
    http://www.ccleaner.com/download/builds/downloading-slim
    Run the CLEANER scan (UNTICK 'cookies')
    Then run the REGISTRY scan (Backup the registry when it asks)


    reboot

    Download GLARY UTILITIES
    http://www.glaryutilities.com/download/gusetup_slim.exe
    Run the ONE CLICK scan
    Goto MODULES / SYSTEM TOOLS / WINDOWS STNDARD TOOLS / then run SYSTEM FILE CHECKER
    :idea:
  • Donnie
    Donnie Posts: 9,862 Forumite
    Oneday77 wrote: »
    So I can stand corrected, can some one please link me a 3D graphics card (usually for gaming and most common in PCs) from a main stream company, ATI/Nvidia, that states it will enhance the encoding of video and speed it up substantially?
    They all decode pretty well these days but encoding is a completely different thing all together.

    ATI Video Converter can be used in conjunction with the card I mentioned earlier, priced at £25. Haven't needed to test it myself.
  • BOBS
    BOBS Posts: 2,871 Forumite
    aliEnRIK wrote: »
    Looks clean to me. The fact it removed some 'temp' files is worrying though as that makes it look like it might be still infected

    CCLEANER and GLARY will remove 'dead' files

    Download CCLEANER
    http://www.ccleaner.com/download/builds/downloading-slim
    Run the CLEANER scan (UNTICK 'cookies')
    Then run the REGISTRY scan (Backup the registry when it asks)


    reboot

    Download GLARY UTILITIES
    http://www.glaryutilities.com/download/gusetup_slim.exe
    Run the ONE CLICK scan
    Goto MODULES / SYSTEM TOOLS / WINDOWS STNDARD TOOLS / then run SYSTEM FILE CHECKER

    Have done this - the Glary utilities found problems and they are now solved.
    Do you think my system should be ok now ??
    [FONT=verdana,arial,helvetica][/FONT]
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    BOBS wrote: »
    Have done this - the Glary utilities found problems and they are now solved.
    Do you think my system should be ok now ??

    Hard to say for sure, but its certainly better than it was

    See how you get on :)
    :idea:
  • BOBS
    BOBS Posts: 2,871 Forumite
    Thanks so much Alienrik - my internet usage and other applications seems to be working faster!!
    [FONT=verdana,arial,helvetica][/FONT]
  • aliEnRIK
    aliEnRIK Posts: 17,741 Forumite
    Part of the Furniture Combo Breaker
    To me (if it really is 3.3, I doubt that somehow) the processor is very fast for a singular one. So id look to buy some RAM to upgrade it first and see how fast it is then (trust me, it will be a LOT faster)
    :idea:
  • nitr02007
    nitr02007 Posts: 327 Forumite
    Part of the Furniture 100 Posts Combo Breaker
    Donnie wrote: »
    ATI Video Converter can be used in conjunction with the card I mentioned earlier, priced at £25. Haven't needed to test it myself.

    There's also Cyberlink Expresso which, in theory, will use CUDA (nvidia) or ATI Stream to speed up transcoding. I tried it a while back but there was a driver issue so I couldnt turn on the ATI Stream processing. I need to give this another go with the latest Catalyst drivers.

    The ATI Video Converter (above) wont transcode anything for me - keeps saying the video is the wrong format.
This discussion has been closed.
Meet your Ambassadors

🚀 Getting Started

Hi new member!

Our Getting Started Guide will help you get the most out of the Forum

Categories

  • All Categories
  • 352.3K Banking & Borrowing
  • 253.6K Reduce Debt & Boost Income
  • 454.3K Spending & Discounts
  • 245.3K Work, Benefits & Business
  • 601K Mortgages, Homes & Bills
  • 177.5K Life & Family
  • 259.1K Travel & Transport
  • 1.5M Hobbies & Leisure
  • 16K Discuss & Feedback
  • 37.7K Read-Only Boards

Is this how you want to be seen?

We see you are using a default avatar. It takes only a few seconds to pick a picture.
Update Your Picture