We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
pc slow, tried the usual....
Comments
-
That cant possibly be the complete log
Go to C drive and open COMBOFIX.TXT and post the rest (in sections):idea:0 -
ok mate, i have done ask you told me, this is what was there:
ComboFix 09-12-05.06 - r d 06/12/2009 14:56.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.479.243 [GMT 0:00]
Running from: c:\documents and settings\r d\Desktop\qwerty.exe
AV: Kaspersky Internet Security *On-access scanning disabled* (Outdated) {2C4D4BC6-0793-4956-A9F9-E252435469C0}
FW: Kaspersky Internet Security *disabled* {2C4D4BC6-0793-4956-A9F9-E252435469C0}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\recycler\S-1-5-21-11671569-2779650084-2115268048-1003
C:\test.txt
c:\windows\system32\MabryObj.dll
.
((((((((((((((((((((((((( Files Created from 2009-11-06 to 2009-12-06 )))))))))))))))))))))))))))))))
.
2009-12-06 14:10 . 2009-12-06 14:10
d
w- c:\program files\Trend Micro
2009-12-06 11:46 . 2009-12-03 16:14 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-06 11:46 . 2009-12-03 16:13 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-06 11:46 . 2009-12-06 11:47
d
w- c:\program files\Malwarebytes' Anti-Malware
2009-12-05 14:47 . 2009-12-05 14:47 2944 ---hatw- c:\windows\system32\muIO.sys
2009-11-12 12:17 . 2009-12-06 15:15 466976 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2009-11-12 12:17 . 2009-12-06 15:15 3125280 --sha-w- c:\windows\system32\drivers\fidbox.dat
2009-11-12 12:17 . 2009-11-12 12:17
d
w- c:\program files\Kaspersky Lab
2009-11-10 10:54 . 2009-12-05 02:23
d
w- c:\documents and settings\r d\Application Data\Skype
2009-11-10 10:52 . 2009-11-10 10:52
d
w- c:\program files\Common Files\Skype
2009-11-10 10:52 . 2009-11-10 10:53
d
r- c:\program files\Skype
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-12-06 15:20 . 2008-10-09 10:13
d
w- c:\documents and settings\All Users\Application Data\Kaspersky Lab
2009-12-06 15:15 . 2009-11-12 12:17 2676 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2009-12-06 15:15 . 2009-11-12 12:17 25496 --sha-w- c:\windows\system32\drivers\fidbox.idx
2009-12-05 12:16 . 2009-08-09 13:07 1 ----a-w- c:\documents and settings\r d\Application Data\OpenOffice.org2\user\uno_packages\cache\stamp.sys
2009-12-05 12:16 . 2008-06-05 01:13
d
w- c:\documents and settings\r d\Application Data\OpenOffice.org2
2009-12-04 22:25 . 2008-08-19 15:40
d
w- c:\documents and settings\r d\Application Data\skypePM
2009-11-23 02:59 . 2008-08-04 21:57
d
w- c:\program files\PFG FX Trader
2009-11-20 13:38 . 2008-12-06 00:00
d
w- c:\documents and settings\r d\Application Data\VSO
2009-11-13 16:01 . 2008-07-05 00:10
d
w- c:\program files\HOTALBUMMyBOX
2009-11-10 10:52 . 2008-08-19 15:35
d
w- c:\documents and settings\All Users\Application Data\Skype
2009-11-09 22:54 . 2009-10-23 15:49
d
w- c:\program files\eToro
2009-11-05 19:19 . 2008-05-06 13:33
d
w- c:\program files\Spybot - Search & Destroy
2009-11-05 19:19 . 2005-12-12 13:19
d
w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-11-05 11:02 . 2009-11-05 11:02
d
w- c:\documents and settings\r d\Application Data\Malwarebytes
2009-11-05 11:02 . 2009-11-05 11:02
d
w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-11-05 10:51 . 2009-11-05 10:51
d
w- c:\program files\Alwil Software
2009-11-05 10:42 . 2009-11-03 17:38
d
w- c:\documents and settings\All Users\Application Data\McAfee
2009-11-05 09:43 . 2009-11-03 17:52
d
w- c:\documents and settings\All Users\Application Data\SiteAdvisor
2009-11-04 22:47 . 2009-11-04 22:47
d
w- c:\documents and settings\LocalService\Application Data\SACore
2009-11-02 17:21 . 2009-11-02 17:21
d
w- c:\program files\AVG
2009-09-25 05:37 . 2005-02-18 15:19 667136 ----a-w- c:\windows\system32\wininet.dll
2009-09-25 05:37 . 2004-08-04 07:56 81920 ----a-w- c:\windows\system32\ieencode.dll
2009-09-17 12:00 . 2006-01-25 14:51 52488 ----a-w- c:\documents and settings\r d\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-09-11 14:18 . 2002-09-19 20:26 136192 ----a-w- c:\windows\system32\msv1_0.dll
2008-10-30 23:55 . 2008-02-05 15:05 11776 ----a-w- c:\program files\new job cover letter2008.wps
2008-08-23 13:49 . 2008-08-23 13:49 5126750 ----a-w- c:\program files\TVUPlayer.zip
2008-08-23 13:41 . 2008-08-23 13:41 3328542 ----a-w- c:\program files\SopCast.zip
2008-06-10 09:48 . 2008-06-10 09:48 20405 ----a-w- c:\program files\newcvlatest.rtf
2008-06-09 13:27 . 2008-06-09 13:27 22776 ----a-w- c:\program files\rdnewcvl&gnew.odt
2008-03-14 22:26 . 2008-03-14 22:26 37375 ----a-w- c:\program files\openoffice.org-xsltfilter.cab
2008-03-14 22:26 . 2008-03-14 22:26 2489204 ----a-w- c:\program files\openoffice.org-writer.cab
2008-03-14 22:26 . 2008-03-14 22:26 207388 ----a-w- c:\program files\openoffice.org-testtool.cab
2008-03-14 22:26 . 2008-03-14 22:26 2504855 ----a-w- c:\program files\openoffice.org-pyuno.cab
2008-03-14 22:26 . 2008-03-14 22:26 51973 ----a-w- c:\program files\openoffice.org-onlineupdate.cab
2008-03-14 22:26 . 2008-03-14 22:26 1090334 ----a-w- c:\program files\openoffice.org-math.cab
2008-03-14 22:25 . 2008-03-14 22:25 118910 ----a-w- c:\program files\openoffice.org-javafilter.cab
2008-03-14 22:25 . 2008-03-14 22:25 1254017 ----a-w- c:\program files\openoffice.org-impress.cab
2008-03-14 22:25 . 2008-03-14 22:25 86870 ----a-w- c:\program files\openoffice.org-graphicfilter.cab
2008-03-14 22:25 . 2008-03-14 22:25 2769 ----a-w- c:\program files\openoffice.org-emailmerge.cab
2008-03-14 22:25 . 2008-03-14 22:25 919329 ----a-w- c:\program files\openoffice.org-draw.cab
2008-03-14 22:25 . 2008-03-14 22:25 2031954 ----a-w- c:\program files\openoffice.org-core09.cab
2008-03-14 22:25 . 2008-03-14 22:25 293054 ----a-w- c:\program files\openoffice.org-core08.cab
2008-03-14 22:25 . 2008-03-14 22:25 3842531 ----a-w- c:\program files\openoffice.org-core07.cab
2008-03-14 22:25 . 2008-03-14 22:25 28861971 ----a-w- c:\program files\openoffice.org-core06.cab
2008-03-14 22:21 . 2008-03-14 22:21 18636793 ----a-w- c:\program files\openoffice.org-core05.cab
2008-03-14 22:19 . 2008-03-14 22:19 16453751 ----a-w- c:\program files\openoffice.org-core04.cab
2008-03-14 22:18 . 2008-03-14 22:18 9118219 ----a-w- c:\program files\openoffice.org-core03.cab
2008-03-14 22:18 . 2008-03-14 22:18 3860200 ----a-w- c:\program files\openoffice.org-core02.cab
2008-03-14 22:18 . 2008-03-14 22:18 15102497 ----a-w- c:\program files\openoffice.org-core01.cab
2008-03-14 22:17 . 2008-03-14 22:17 4696905 ----a-w- c:\program files\openoffice.org-calc.cab
2008-03-14 22:17 . 2008-03-14 22:17 1802028 ----a-w- c:\program files\openoffice.org-base.cab
2008-03-14 22:17 . 2008-03-14 22:17 43005 ----a-w- c:\program files\openoffice.org-activex.cab
2008-03-14 22:17 . 2008-03-14 22:17 217 ----a-w- c:\program files\setup.ini
2008-03-14 22:17 . 2008-03-14 22:17 4372992 ----a-w- c:\program files\openofficeorg24.msi
2008-01-29 13:49 . 2008-01-29 13:49 7339 ----a-w- c:\program files\rdnewcvl&gnoaddress.rtf
2008-01-17 16:05 . 2008-01-17 15:37 10752 ----a-w- c:\program files\new job cover letter.wps
2008-01-11 12:35 . 2008-01-11 12:12 7448 ----a-w- c:\program files\rdnewcvl&g.doc
2008-01-11 12:01 . 2007-08-08 15:24 7516 ----a-w- c:\program files\rd cv julie pincher new2 latest.doc.rtf
2008-01-11 11:58 . 2007-08-08 15:16 7998 ----a-w- c:\program files\rd cv new1 latest.rtf
2007-11-17 01:06 . 2007-11-17 01:05 206143560 ----a-w- c:\program files\UBCD4WinV306.exe
2007-08-08 14:22 . 2007-08-07 16:14 8801 ----a-w- c:\program files\rd cv new latest.doc
2007-08-07 16:13 . 2006-10-19 11:10 7930 ----a-w- c:\program files\rd cv latest.doc.rtf
2006-10-20 12:48 . 2006-10-20 12:48 7557 ----a-w- c:\program files\rdCurriculumvitaenewversion2.doc
2006-10-18 15:53 . 2006-08-17 14:24 7713 ----a-w- c:\program files\rdCurriculumvitae new 1.doc.rtf
2006-03-24 10:55 . 2006-03-24 10:55 33280 ----a-w- c:\program files\rdCurriculumvitae.doc
2006-03-22 13:55 . 2006-03-22 13:55 14208 ----a-w- c:\program files\rdcv[1][1].doc.rtf
2006-03-20 16:15 . 2006-03-20 16:06 6986 ----a-w- c:\program files\rdcv.doc.rtf
2006-03-16 12:21 . 2006-03-16 12:15 9216 ----a-w- c:\program files\CVDisplay.aspx
2006-02-28 19:40 . 2006-02-28 19:40 529 ----a-w- c:\program files\sol_now5a_bb.asx
2006-02-25 15:12 . 2006-02-25 15:12 625 ----a-w- c:\program files\stv.asx
2006-02-08 20:39 . 2006-02-08 19:40 437 ----a-w- c:\program files\espn.asx
2006-02-08 11:12 . 2006-02-07 15:28 726626806 ----a-w- c:\program files\Steven Gerrard -My Story
2006-02-08 04:06 . 2006-02-07 18:10 705067008 ----a-w- c:\program files\Zinedine Zidane - Comme dans un Rave.avi
2006-02-07 13:57 . 2006-02-07 13:57 56254 ----a-w- c:\program files\steven gerrard my story.torrent
2006-02-04 22:23 . 2006-02-04 22:23 2417608 ----a-w- c:\program files\Super_Internet_TV_6[1].2___Patch.rar
2006-01-23 12:52 . 2006-01-23 12:52 155117072 ----a-w- c:\program files\diego maradona.wmv
2006-01-23 11:56 . 2006-01-23 11:56 34165669 ----a-w- c:\program files\ronaldhino.zip
2006-01-23 11:17 . 2006-01-23 11:17 27059281 ----a-w- c:\program files\steven gerarrd.zip
2002-03-11 09:06 . 2002-03-11 09:06 1822520 ----a-w- c:\program files\instmsiw.exe
2002-03-11 08:45 . 2002-03-11 08:45 1708856 ----a-w- c:\program files\instmsia.exe
2005-06-03 09:54 . 2005-06-03 09:54 56 --sha-r- c:\windows\system32\87215C1791.sys
2005-06-03 09:54 . 2005-06-03 09:54 1682 --sha-w- c:\windows\system32\KGyGaAvL.sys
.
Sigcheck
[-] 2005-01-28 12:44 . 140EF97B64F560FD78643CAE2CDAD838 . 25088 . . [10.0.3790.3802] . . c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MsPMSNSv.dll
[-] 2005-01-28 12:44 . 140EF97B64F560FD78643CAE2CDAD838 . 25088 . . [10.0.3790.3802] . . c:\windows\system32\mspmsnsv.dll
[-] 2004-08-04 07:56 . C086483E3DBA8C1C0A687EC8D5B3D4C1 . 52224 . . [9.0.1.56] . . c:\windows\ServicePackFiles\i386\mspmsnsv.dll
[-] 2002-11-26 20:03 . 36678803A8030EE9A771935CFC1848BD . 52224 . . [9.0.1.56] . . c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MsPMSNSv.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2005-09-30 180269]
"AVP"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe" [2009-11-16 208616]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0SsiEfr.e\0lsdelete
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Synchronizer.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Adobe Reader Synchronizer.lnk
backup=c:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Exif Launcher S.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Exif Launcher S.lnk
backup=c:\windows\pss\Exif Launcher S.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^MediaChecker.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\MediaChecker.lnk
backup=c:\windows\pss\MediaChecker.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Update Agent.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\Update Agent.lnk
backup=c:\windows\pss\Update Agent.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^YouTube Uploader for CASIO.lnk]
path=c:\documents and settings\All Users\Start Menu\Programs\Startup\YouTube Uploader for CASIO.lnk
backup=c:\windows\pss\YouTube Uploader for CASIO.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^bobby dhillon^Start Menu^Programs^Startup^OpenOffice.org 2.4.lnk]
path=c:\documents and settings\r d\Start Menu\Programs\Startup\OpenOffice.org 2.4.lnk
backup=c:\windows\pss\OpenOffice.org 2.4.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^r d^Start Menu^Programs^Startup^²¥°ÔÍøÂçµçÊÓ.lnk]
path=c:\documents and settings\r d\Start Menu\Programs\Startup\²¥°ÔÍøÂçµçÊÓ.lnk
backup=c:\windows\pss\²¥°ÔÍøÂçµçÊÓ.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^r d^Start Menu^Programs^Startup^³¬¼¶²¥°Ô.lnk]
path=c:\documents and settings\r d\Start Menu\Programs\Startup\³¬¼¶²¥°Ô.lnk
backup=c:\windows\pss\³¬¼¶²¥°Ô.lnkStartup
[HKLM\~\startupfolder\C:^Documents and Settings^r d^Start Menu^Programs^Startup^èÑÛÍøÂçµçÊÓ.lnk]
path=c:\documents and settings\r d\Start Menu\Programs\Startup\èÑÛÍøÂçµçÊÓ.lnk
backup=c:\windows\pss\èÑÛÍøÂçµçÊÓ.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"WANMiniportService"=2 (0x2)
"VCSSecS"=2 (0x2)
"usnjsvc"=3 (0x3)
"SLService"=2 (0x2)
"SDPASVC"=2 (0x2)
"KService"=2 (0x2)
"IDriverT"=3 (0x3)
"AVGEMS"=2 (0x2)
"Avg7UpdSvc"=2 (0x2)
"Avg7Alrt"=2 (0x2)
"Automatic LiveUpdate Scheduler"=2 (0x2)
"dmadmin"=3 (0x3)
"AntiVirService"=2 (0x2)
"AntiVirScheduler"=2 (0x2)
"aawservice"=2 (0x2)
"a2free"=2 (0x2)
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Media Player\\wmplayer.exe"=
"c:\\Program Files\\Shareaza\\Shareaza.exe"=
"c:\\Program Files\\Kontiki\\KService.exe"=
"c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\Kaspersky Lab Setup Files\\Kaspersky Internet Security 2009\\english\\setup.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"5495:TCP"= 5495:TCP:ppLive
"5635:UDP"= 5635:UDP:ppLive
"3107:TCP"= 3107:TCP:ppLive
"7368:UDP"= 7368:UDP:ppLive
R0 klbg;Kaspersky Lab Boot Guard Driver;c:\windows\system32\drivers\klbg.sys [29/01/2008 17:29 33808]
R0 PzWDM;PzWDM;c:\windows\system32\drivers\PzWDM.sys [05/07/2008 00:12 15172]
R1 Asapi;Asapi;c:\windows\system32\drivers\asapi.sys [19/02/2004 13:00 11264]
R1 vcsmpdrv;vcsmpdrv;c:\windows\system32\drivers\vcsmpdrv.sys [19/02/2004 13:03 49024]
R3 KLFLTDEV;Kaspersky Lab KLFltDev;c:\windows\system32\drivers\klfltdev.sys [13/03/2008 18:02 26640]
R3 STAC97NA;SigmaTel 3D Environmental Audio;c:\windows\system32\drivers\stac97na.sys [01/01/1980 296179]
R3 STAC97NH;STAC97NH;c:\windows\system32\drivers\stac97nh.sys [01/01/1980 231983]
S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [22/08/2008 18:56 7680]
S3 muIO;muIO;c:\windows\system32\muIO.sys [05/12/2009 14:47 2944]
S4 a2free;a-squared Free Service;c:\ubcd4win\plugin\AntiSpyware\a2free\a2free\a2service.exe [11/12/2007 14:58 217208]
S4 SDPASVC;SDPAUMS server service;c:\windows\System32\sdpasvc.exe -service --> c:\windows\System32\sdpasvc.exe -service [?]
S4 VCSSecS;Virtual CD v4 Security service (SDK - Version);c:\program files\Virtual CD v4 SDK\System\vcssecs.exe [19/02/2004 13:03 139264]
.
Supplementary Scan
.
uStart Page = hxxp://www.google.co.uk/
mStart Page = hxxp://dogpile.co.uk/
mSearch Bar = hxxp://search.blueyonder.co.uk/search/search.jsp
uInternet Settings,ProxyOverride = 127.0.0.1;<local>
IE: Add to Banner Ad Blocker - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
DPF: DirectAnimation Java Classes - [URL]file://c:\windows\Java\classes\dajava.cab[/URL]
DPF: Microsoft XML Parser for Java - [URL]file://c:\windows\Java\classes\xmldso.cab[/URL]
DPF: {9BF607E0-4CC1-4099-9A07-362C9E4FB090} - hxxp://live.pdbox.co.kr:8057/WStarter.cab
DPF: {CA11EB7C-1C85-4577-8A49-9E28EFB30184} - hxxp://www.umediaserver.net/bin/UMediaControl4.cab
FF - ProfilePath - c:\documents and settings\r d\Application Data\Mozilla\Firefox\Profiles\esfhop8b.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.co.uk/
FF - plugin: c:\documents and settings\r d\Application Data\Mozilla\Firefox\Profiles\esfhop8b.default\extensions\npfax@microgaming.co.uk\platform\WINNT_x86-msvc\plugins\npfax.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPnsv_vp3_mp3.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
.
- - - - ORPHANS REMOVED - - - -
HKCU-RunServices-Regmgr - scvhost.exe
HKU-Default-Run-ALUAlert - c:\program files\Symantec\LiveUpdate\ALUNotify.exe
HKU-Default-Run-Symantec NetDriver Warning - c:\progra~1\SYMNET~1\SNDWarn.exe
HKU-Default-Run-Regmgr - scvhost.exe
HKU-Default-RunServices-Regmgr - scvhost.exe
AddRemove-blueyonder Instant Support Tool - c:\progra~1\BLUEYO~2\Uninstall.exe blueyonder
AddRemove-RealJukebox 1.0 - c:\program files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
AddRemove-RealPlayer 6.0 - c:\program files\Common Files\Real\Update_OB\r1puninst.exe RealNetworks|RealPlayer|6.0
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-12-06 15:21
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
LOCKED REGISTRY KEYS
[HKEY_USERS\S-1-5-21-3862385990-2863853287-1817818385-1005\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
@SACL=
.
Other Running Processes
.
c:\windows\System32\wdfmgr.exe
c:\windows\system32\wscntfy.exe
.
**************************************************************************
.
Completion time: 2009-12-06 15:29 - machine was rebooted
ComboFix-quarantined-files.txt 2009-12-06 15:29
Pre-Run: 20,716,244,992 bytes free
Post-Run: 20,749,725,696 bytes free
- - End Of File - - F141FCB5C5CEB196E82F3F18D5B93D3D0 -
re-install windows.!!
> . !!!! ----> .0 -
You sure it's not your hard drive? I had one die on me a few years ago and the warning signs I got was a very slow PC.
Backup immediately if you haven't already done so.World Peace in 20100 -
Combofix looks fine to me
If you wish to run one more final scan ~
Download and run the FREE version of DR WEB
http://www.freedrweb.com/download+cureit/gr/
Turn your anti virus OFF
It will auto QUICK scan
After that set to scan the WHOLE computer and press the 'play' icon:idea:0 -
ive got 3 x spare sticks of 512mb ddr here.
pm me if required.Get some gorm.0 -
Combofix looks fine to me
If you wish to run one more final scan ~
Download and run the FREE version of DR WEB
http://www.freedrweb.com/download+cureit/gr/
Turn your anti virus OFF
It will auto QUICK scan
After that set to scan the WHOLE computer and press the 'play' icon
thanks mate tried that too....
it doesnt appear as slow as normal today, but from all the tests and scan you had me do, your saying there isnt too much wrong showing up??
do you think adding more ram will help improve this? or maybe re-installing windows as suggested above??0 -
More ram would make a hell of a difference. A fresh install would also make a difference though how much is debatable:idea:0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 353.6K Banking & Borrowing
- 254.2K Reduce Debt & Boost Income
- 455.1K Spending & Discounts
- 246.7K Work, Benefits & Business
- 603K Mortgages, Homes & Bills
- 178.1K Life & Family
- 260.7K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards