We’d like to remind Forumites to please avoid political debate on the Forum.
This is to keep it a safe and useful space for MoneySaving discussions. Threads that are – or become – political in nature may be removed in line with the Forum’s rules. Thank you for your understanding.
📨 Have you signed up to the Forum's new Email Digest yet? Get a selection of trending threads sent straight to your inbox daily, weekly or monthly!
The Forum now has a brand new text editor, adding a bunch of handy features to use when creating posts. Read more in our how-to guide
Help with my computer please
Comments
-
TICK and FIX these ~
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Search Assistant - {F0626A63-410B-45E2-99A1-3F2475B2D695} - C:\Program Files\SGPSA\BHO.dll (file missing)
O2 - BHO: XBTBPos00 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\Fast Browser Search\IE\FBStoolbar.dll
O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKCU\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKCU\..\RunOnce: [Shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103471 -"Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 5.1; Trident/4.0; FBSMTWB; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://s7.ktrmr.com/mrIWeb/mrIWeb.dll"
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolb...lerControl.cab
O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing)
Uninstall LOGITECH DESKTOP MESSENGER
Please run COMBOFIX
http://download.bleepingcomputer.com/sUBs/ComboFix.exe
Shut down your anti virus
Follow the simple instructions it gives
Post the COMPLETE log it creates here (Split into sections if need be) ~ if there are loads of 'SNAPSHOT' pages then leave them out
If it comes up with a RENAMING error then RIGHT click the exe file and RENAME and call it QWERTY (Making the complete file name 'QWERTY.exe') Or SAVE as 'QWERTY' on download:idea:0 -
how do i shut down ani virus0
-
To disable the Resident Shield, please:
* open AVG User Interface
* double-click on the Resident Shield
* un-tick the option "Resident Shield active"
* save the changes:idea:0 -
ComboFix 10-04-07.01 - Yvonne 08/04/2010 8:51.2.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.44.1033.18.1023.495 [GMT 1:00]
Running from: d:\documents and settings\Yvonne.048698920054\My Documents\QWERTY.exe
AV: AVG Anti-Virus Free *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\windows\TEMP\logishrd\LVPrcInj01.dll
.
((((((((((((((((((((((((( Files Created from 2010-03-08 to 2010-04-08 )))))))))))))))))))))))))))))))
.
2010-04-07 17:53 . 2010-04-07 17:53
d
w- c:\program files\Trend Micro
2010-04-07 14:07 . 2010-04-07 14:07
d
w- d:\documents and settings\Yvonne.048698920054\Application Data\Malwarebytes
2010-04-07 14:06 . 2010-03-29 14:24 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-04-07 14:06 . 2010-04-07 14:06
d
w- d:\documents and settings\All Users\Application Data\Malwarebytes
2010-04-07 14:06 . 2010-03-29 14:24 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-07 14:06 . 2010-04-07 14:06
d
w- c:\program files\Malwarebytes' Anti-Malware
2010-04-07 08:33 . 2010-04-07 08:33
d
w- d:\documents and settings\Yvonne.048698920054\Application Data\MSNInstaller
2010-04-06 20:26 . 2010-04-06 20:26
d
w- d:\documents and settings\NetworkService.NT AUTHORITY.003\Local Settings\Application Data\Apple
2010-04-05 19:13 . 2010-04-08 07:03
d
w- d:\documents and settings\LocalService.NT AUTHORITY.003\Local Settings\Application Data\Microsoft
2010-04-05 19:13 . 2010-04-06 20:25
d-sh--w- d:\documents and settings\LocalService.NT AUTHORITY.003
2010-04-05 19:12 . 2010-04-08 07:03
d
w- d:\documents and settings\NetworkService.NT AUTHORITY.003\Local Settings\Application Data\Microsoft
2010-04-05 19:12 . 2010-04-06 20:25
d-sh--w- d:\documents and settings\NetworkService.NT AUTHORITY.003
2010-04-05 19:10 . 2010-04-05 19:10
d
w- c:\windows\system32\wbem\Repository
2010-04-05 13:48 . 2010-04-05 13:48
d
w- d:\documents and settings\NetworkService.NT AUTHORITY.002\IETldCache
2010-03-19 16:21 . 2010-03-19 16:21
d
w- c:\program files\Oberon Media
2010-03-17 19:07 . 2010-03-17 19:08 69 ----a-w- d:\documents and settings\Connor.048698920054\jagex_runescape_preferences2.dat
2010-03-17 19:07 . 2010-03-17 19:08 41 ----a-w- d:\documents and settings\Connor.048698920054\jagex_runescape_preferences.dat
2010-03-17 19:06 . 2010-03-17 19:06
d
w- c:\windows\.jagex_cache_32
2010-03-10 08:39 . 2009-10-23 15:28 3558912
w- c:\windows\system32\dllcache\moviemk.exe
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-08 08:01 . 2008-12-25 08:11 0 ----a-w- c:\windows\system32\drivers\lvuvc.hs
2010-04-08 08:01 . 2008-12-25 08:10 0 ----a-w- c:\windows\system32\drivers\logiflt.iad
2010-04-08 07:03 . 2009-11-17 20:21
d
w- d:\documents and settings\All Users\Application Data\avg9
2010-04-08 07:03 . 2008-08-20 21:32
d
w- d:\documents and settings\All Users\Application Data\avg8
2010-04-08 06:54 . 2008-12-26 22:27
d
w- c:\program files\Logitech
2010-04-07 17:30 . 2009-06-18 17:00 0 ----a-w- d:\documents and settings\Yvonne.048698920054\Local Settings\Application Data\prvlcl.dat
2010-04-07 17:30 . 2008-09-26 07:51 0 ----a-w- d:\documents and settings\Connor.048698920054\Local Settings\Application Data\prvlcl.dat
2010-04-07 17:30 . 2008-09-18 17:41 0 ----a-w- d:\documents and settings\Gary.048698920054\Local Settings\Application Data\prvlcl.dat
2010-04-06 20:26 . 2009-04-03 17:42
d
w- c:\program files\Safari
2010-04-04 23:03 . 2009-10-25 15:02
d
w- d:\documents and settings\Yvonne.048698920054\Application Data\Image Zone Express
2010-03-19 16:21 . 2008-08-29 17:28
d
w- c:\program files\Virgin Media Games
2010-03-19 16:20 . 2008-08-21 04:21
d--h--w- c:\program files\InstallShield Installation Information
2010-03-17 09:37 . 2008-08-21 22:49 242696 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-03-17 09:37 . 2008-08-21 22:49 12464 ----a-w- c:\windows\system32\avgrsstx.dll
2010-03-17 09:37 . 2008-08-21 22:49 29512 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2010-03-17 09:36 . 2008-08-21 22:49 216200 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-03-12 09:45 . 2009-09-13 13:50
d
w- d:\documents and settings\All Users\Application Data\ParetoLogic
2010-03-09 16:23 . 2008-09-14 15:33 5380 ----a-w- d:\documents and settings\Connor.048698920054\Application Data\wklnhst.dat
2010-03-07 08:43 . 2010-03-07 08:43
d
w- d:\documents and settings\All Users\Application Data\FileCure
2010-03-07 08:43 . 2009-09-13 13:50
d
w- c:\program files\ParetoLogic
2010-03-06 17:38 . 2007-03-18 17:19
d---a-w- d:\documents and settings\All Users\Application Data\TEMP
2010-03-06 09:30 . 2010-03-06 09:30
d
w- d:\documents and settings\All Users\Application Data\Fenomen Games
2010-02-28 09:39 . 2009-10-11 16:04
d
w- c:\program files\Common Files\Nero
2010-02-28 09:38 . 2009-10-11 16:04
d
w- d:\documents and settings\All Users\Application Data\Nero
2010-02-25 06:24 . 2004-08-10 15:38 916480 ----a-w- c:\windows\system32\wininet.dll
2010-02-24 09:16 . 2009-10-02 18:24 181632
w- c:\windows\system32\MpSigStub.exe
2010-02-14 12:47 . 2009-10-07 17:47
d
w- c:\program files\iTunes
2010-02-14 12:46 . 2010-02-14 12:46
d
w- c:\program files\iPod
2010-02-14 12:46 . 2008-09-06 10:59
d
w- c:\program files\Common Files\Apple
2010-02-12 20:03 . 2010-02-12 20:03
d
w- d:\documents and settings\Connor.048698920054\Application Data\Facebook
2010-02-12 14:35 . 2008-10-15 16:25
d
w- c:\program files\Avanquest update
2010-02-12 10:03 . 2010-02-26 12:01 293376
w- c:\windows\system32\browserchoice.exe
2010-02-07 15:55 . 2008-09-06 11:18
d
w- d:\documents and settings\Yvonne.048698920054\Application Data\Apple Computer
2010-02-04 19:52 . 2008-09-07 13:00 664 ----a-w- c:\windows\system32\d3d9caps.dat0 -
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-07-26 3883856]
"Sony Ericsson PC Suite"="c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe" [2009-09-24 434176]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"High Definition Audio Property Page Shortcut"="HDAudPropShortcut.exe" [2004-03-17 61952]
"SoundMan"="SOUNDMAN.EXE" [2004-09-10 77824]
"AlcWzrd"="ALCWZRD.EXE" [2004-09-15 2557952]
"ATIPTA"="c:\ati technologies\ATI Control Panel\atiptaxx.exe" [2005-08-05 344064]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-06-26 148888]
"Ulead AutoDetector v2"="c:\program files\Common Files\Ulead Systems\AutoDetector\monitor.exe" [2004-11-26 90112]
"PCMService"="c:\apps\Powercinema\PCMService.exe" [2005-05-11 127118]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952]
"ACTIVBOARD"="c:\apps\ABoard\ABoard.exe" [2003-05-02 24576]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2006-11-03 866584]
"VX3000"="c:\windows\vVX3000.exe" [2006-10-13 707376]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2005-10-03 180269]
"LogitechCommunicationsManager"="c:\program files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2008-08-14 565008]
"LogitechQuickCamRibbon"="c:\program files\Logitech\QuickCam\Quickcam.exe" [2008-08-14 2407184]
"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2009-08-13 177440]
"Wireless Manager"="c:\program files\Virgin Broadband Wireless\Wireless Manager.exe" [2008-05-26 585728]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-01-22 141608]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-11-10 417792]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
d:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-4-23 29696]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-11 282624]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2010-03-17 09:37 12464 ----a-w- c:\windows\system32\avgrsstx.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%ProgramFiles%\\AOL 9.0\\aol.exe"=
"%ProgramFiles%\\UBISOFT\\Splinter Cell Pandora Tomorrow\\logo_ubi.exe"=
"%ProgramFiles%\\UBISOFT\\Splinter Cell Pandora Tomorrow\\pandora.exe"=
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"=
"c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\Sony Ericsson\\Sony Ericsson Media Manager\\MediaManager.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\WINDOWS\\system32\\rtcshare.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgemc.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG9\\avgnsx.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [21/08/2008 23:49 216200]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [21/08/2008 23:49 242696]
R2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [17/03/2010 10:36 916760]
R2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [21/02/2010 17:06 90112]
R3 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [17/03/2010 10:37 308064]
R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [21/02/2010 17:07 27632]
S0 nielprt;Nielsen Patch Service;c:\windows\system32\DRIVERS\nielprt.sys --> c:\windows\system32\DRIVERS\nielprt.sys [?]
S2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [03/11/2006 19:19 13592]
S3 NielGfx;Nielsen USB GFX;c:\windows\system32\drivers\nielgfx.sys --> c:\windows\system32\drivers\nielgfx.sys [?]
S3 s3017bus;Sony Ericsson Device 3017 driver (WDM);c:\windows\system32\drivers\s3017bus.sys [15/10/2008 17:24 83880]
S3 s3017mdfl;Sony Ericsson Device 3017 USB WMC Modem Filter;c:\windows\system32\drivers\s3017mdfl.sys [15/10/2008 17:24 15016]
S3 s3017mdm;Sony Ericsson Device 3017 USB WMC Modem Driver;c:\windows\system32\drivers\s3017mdm.sys [15/10/2008 17:24 110632]
S3 s3017mgmt;Sony Ericsson Device 3017 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s3017mgmt.sys [15/10/2008 17:24 104616]
S3 s3017nd5;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (NDIS);c:\windows\system32\drivers\s3017nd5.sys [15/10/2008 17:24 25512]
S3 s3017obex;Sony Ericsson Device 3017 USB WMC OBEX Interface;c:\windows\system32\drivers\s3017obex.sys [15/10/2008 17:24 100648]
S3 s3017unic;Sony Ericsson Device 3017 USB Ethernet Emulation SEMC3017 (WDM);c:\windows\system32\drivers\s3017unic.sys [15/10/2008 17:24 110120]
.
Contents of the 'Scheduled Tasks' folder
2010-04-05 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 11:34]
2008-08-21 c:\windows\Tasks\HDReg.job
- c:\apps\HDReg\HDRegRem.exe [2005-10-03 09:14]
2010-04-08 c:\windows\Tasks\User_Feed_Synchronization-{57F99293-33AF-4B7D-8732-EF8F64BA934E}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 03:31]
2010-04-07 c:\windows\Tasks\User_Feed_Synchronization-{75572AEE-F16B-4F43-8758-C1049CD26303}.job
- c:\windows\system32\msfeedssync.exe [2007-08-13 03:31]
.
.
Supplementary Scan
.
uStart Page = hxxp://www.google.co.uk/
DPF: {DAF94F73-2AA6-44D8-A562-A28831820D34} - hxxp://www.pixum.co.uk/apps/EasyUploadX.cab
.
- - - - ORPHANS REMOVED - - - -
URLSearchHooks-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
AddRemove-{250c61bc-7ce0-4286-acb5-2b0d7a3391d2} - c:\program files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-08 09:02
Windows 5.1.2600 Service Pack 3 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
DLLs Loaded Under Running Processes
- - - - - - - > 'winlogon.exe'(540)
c:\windows\system32\Ati2evxx.dll
- - - - - - - > 'explorer.exe'(7500)
c:\windows\system32\WININET.dll
c:\windows\TEMP\logishrd\LVPrcInj01.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
Other Running Processes
.
c:\windows\system32\Ati2evxx.exe
c:\program files\AVG\AVG9\avgchsvx.exe
c:\program files\AVG\AVG9\avgrsx.exe
c:\program files\AVG\AVG9\avgcsrvx.exe
c:\program files\Virgin Broadband Wireless\AffinegyService.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\apps\Powercinema\Kernel\TV\CLCapSvc.exe
c:\program files\CyberLink\Shared Files\CLML_NTService\CLMLServer.exe
c:\program files\CyberLink\Shared Files\CLML_NTService\CLMLService.exe
c:\apps\HIDSERVICE\HIDSERVICE.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
c:\program files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
c:\apps\Powercinema\Kernel\TV\CLSched.exe
c:\program files\AVG\AVG9\avgnsx.exe
c:\program files\AVG\AVG9\avgcsrvx.exe
c:\windows\SOUNDMAN.EXE
c:\windows\ALCWZRD.EXE
c:\windows\system32\wscntfy.exe
c:\program files\Common Files\LogiShrd\LVCOMSER\LVComSer.exe
c:\apps\ABoard\AOSD.exe
c:\program files\Common Files\Logishrd\LQCVFX\COCIManager.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\iPod\bin\iPodService.exe
.
**************************************************************************
.
Completion time: 2010-04-08 09:06:37 - machine was rebooted
ComboFix-quarantined-files.txt 2010-04-08 08:06
Pre-Run: 19,134,164,992 bytes free
Post-Run: 19,081,584,640 bytes free
- - End Of File - - 05A7B47063007A6027A2A827D390B5300 -
Will checkback for reply later today. The warning still coming up about security settings, and still not allowing me to put google as homepage, keeps going back to http://go.microsoft.com/fwlink/?LinkId=691570
-
OP ~
Log looks clean to me (Its removed one item itself)
Download HostsXpert
http://download.softpedia.com/dl/a688cad746f64494e3ba8aee103f97e4/4b3ceb67/100027041/software/system/HostsXpert.zip
and then follow the below steps.
* Unzip HostsXpert.zip
* It will create a folder named HostsXpert in whatever folder you extract it to.
* Run HostsXpert.exe by double clicking on it.
* click the Make Writeable? button.
* click Restore Microsoft's Hosts File and then click OK.
* Click the X to exit the program
Manually reset your homepage to google
.............................................................................................
Download SUPERANTISPYWARE (Make sure you click 'DOWNLOAD LATEST VERSION')
http://www.filehippo.com/download_superantispyware/
UPDATE and PERFORM COMPLETE SCAN
(Then goto console and LOGS and post the log it created ):idea:0 -
Ill try that now. As i was running combofix the first time it was deleting a lot of files when the computer crashed. I had to redo it again which is the log i posted. will try next step that you advise and get back to you, thanks0
-
Its not letting me download, just comes up internet explorer cannot open page0
-
Ill try that now. As i was running combofix the first time it was deleting a lot of files when the computer crashed. I had to redo it again which is the log i posted. will try next step that you advise and get back to you, thanks
You really should let us know BEFORE you post the log that it crashed and removed a lot of items:idea:0
This discussion has been closed.
Confirm your email address to Create Threads and Reply
Categories
- All Categories
- 353.5K Banking & Borrowing
- 254.2K Reduce Debt & Boost Income
- 455K Spending & Discounts
- 246.6K Work, Benefits & Business
- 602.9K Mortgages, Homes & Bills
- 178.1K Life & Family
- 260.6K Travel & Transport
- 1.5M Hobbies & Leisure
- 16K Discuss & Feedback
- 37.7K Read-Only Boards