Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Computer Slows Down, Locks Up, Cannot Use System Restore


  • This topic is locked This topic is locked
1 reply to this topic

#1 Marshallross

Marshallross

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:02:56 PM

Posted 01 May 2008 - 02:58 PM

This is my 1st post on a help forum. My system began slowing down and locking up, and then I lost Internet access too last week. I thought I might have a virus or trojan. I have been running ZoneAlarm Security Suite for a couple of years so I was quite surprised. I attempted to scan, could not complete the process. I attempted to do System Restore, will not allow. I downloaded over several days and ran (when I could get the system to allow it) avast, Adaware, AVG, PC Doctor, Spybot Search and Destroy and Registry Mechanic. As I ran these I have slowly gotten "control" back over my system (I think). I can access the Internet (got a newer NIC card) but there are times when I feel the system still is not well yet. I also did a Defrag, which took 3 attempts to complete. I read several posts here and decided to follow some of the advice I saw. I downloaded ComboFix and ran it. Any help I can get will be much appreciated. Here is the log:

ComboFix 08-04-29.5 - Marshall 2008-05-01 15:17:00.1 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.566 [GMT -4:00]
Running from: C:\Documents and Settings\Marshall\Desktop\ComboFix.exe
* Created a new restore point

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Documents and Settings\Marshall\Application Data\install.dat
C:\Documents and Settings\Marshall\g2mdlhlpx.exe
C:\WINDOWS\system32\Cache

.
((((((((((((((((((((((((( Files Created from 2008-04-01 to 2008-05-01 )))))))))))))))))))))))))))))))
.

2008-04-30 15:37 . 2008-04-30 15:37 <DIR> d-------- C:\Program Files\Lavasoft
2008-04-30 15:37 . 2008-04-30 15:41 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-04-29 11:20 . 2008-04-29 11:20 15,648 --a------ C:\WINDOWS\system32\drivers\NSDriver.sys
2008-04-29 11:19 . 2008-04-29 11:19 15,648 --a------ C:\WINDOWS\system32\drivers\Awrtrd.sys
2008-04-29 11:19 . 2008-04-29 11:19 12,960 --a------ C:\WINDOWS\system32\drivers\Awrtpd.sys
2008-04-28 20:32 . 2008-04-28 20:38 <DIR> d-------- C:\Documents and Settings\Marshall\Application Data\MailFrontier
2008-04-28 20:28 . 2008-05-01 15:19 9,633,824 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
2008-04-28 20:28 . 2008-04-30 23:26 122,312 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
2008-04-28 20:19 . 2008-04-02 21:07 75,248 --a------ C:\WINDOWS\zllsputility.exe
2008-04-28 19:40 . 2008-04-02 21:07 1,086,952 --a------ C:\WINDOWS\system32\zpeng24.dll
2008-04-28 19:36 . 2008-04-30 18:02 <DIR> d-------- C:\WINDOWS\system32\ZoneLabs
2008-04-28 19:36 . 2008-04-28 19:36 <DIR> d-------- C:\Program Files\Zone Labs
2008-04-28 19:33 . 2008-05-01 06:28 355,091 --a------ C:\WINDOWS\system32\vsconfig.xml
2008-04-28 19:31 . 2008-05-01 15:05 <DIR> d-------- C:\WINDOWS\Internet Logs
2008-04-28 17:24 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll
2008-04-28 17:24 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll
2008-04-28 17:24 . 2007-07-30 19:19 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui
2008-04-28 17:23 . 2001-08-17 12:12 19,017 --a------ C:\WINDOWS\system32\drivers\RTL8029.sys
2008-04-28 17:23 . 2001-08-17 12:12 19,017 --a--c--- C:\WINDOWS\system32\dllcache\rtl8029.sys
2008-04-27 16:06 . 2008-04-27 16:06 <DIR> d-------- C:\WINDOWS\system32\Logfiles
2008-04-27 16:06 . 2008-04-27 16:06 <DIR> d-------- C:\WINDOWS\IIS Temporary Compressed Files
2008-04-27 16:06 . 2008-04-30 17:23 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-04-27 08:04 . 2001-08-17 22:36 43,520 --a------ C:\WINDOWS\system32\fcachdll.dll
2008-04-27 08:04 . 2001-08-17 22:36 23,040 --a------ C:\WINDOWS\system32\regtrace.exe
2008-04-27 08:04 . 2001-07-21 14:23 21,791 --a------ C:\WINDOWS\system32\smtpctrs.ini
2008-04-27 08:04 . 2001-08-17 22:36 12,288 --a------ C:\WINDOWS\system32\smtpctrs.dll
2008-04-27 08:04 . 2001-07-21 14:23 8,002 --a------ C:\WINDOWS\system32\smtpctrs.h
2008-04-27 08:04 . 2001-08-17 22:36 7,168 --a------ C:\WINDOWS\system32\snprfdll.dll
2008-04-27 08:04 . 2001-08-17 22:36 5,632 --a------ C:\WINDOWS\system32\adsiisex.dll
2008-04-27 08:04 . 2001-07-21 14:23 1,037 --a------ C:\WINDOWS\system32\ntfsdrct.ini
2008-04-27 08:04 . 2001-07-21 14:23 773 --a------ C:\WINDOWS\system32\ntfsdrct.h
2008-04-27 08:01 . 2006-10-10 06:00 290,816 --a------ C:\WINDOWS\system32\adsiis.dll
2008-04-27 08:01 . 2006-10-10 06:00 133,632 --a------ C:\WINDOWS\system32\iisRtl.dll
2008-04-27 08:01 . 2006-10-10 06:00 68,608 --a------ C:\WINDOWS\system32\iisext.dll
2008-04-27 08:01 . 2006-10-10 06:00 64,512 --a------ C:\WINDOWS\system32\iismap.dll
2008-04-27 08:01 . 2006-10-10 06:00 43,520 --a------ C:\WINDOWS\system32\admwprox.dll
2008-04-27 08:01 . 2006-10-10 06:00 14,336 --a------ C:\WINDOWS\system32\exstrace.dll
2008-04-27 08:01 . 2006-10-10 06:00 13,312 --a------ C:\WINDOWS\system32\infoadmn.dll
2008-04-27 08:01 . 2006-10-10 06:00 10,752 --a------ C:\WINDOWS\system32\smtpapi.dll
2008-04-27 08:01 . 2006-10-10 06:00 9,728 --a------ C:\WINDOWS\system32\rwnh.dll
2008-04-27 08:01 . 2006-10-10 06:00 8,192 --a------ C:\WINDOWS\system32\staxmem.dll
2008-04-27 08:00 . 2008-04-27 16:02 <DIR> d-------- C:\Inetpub
2008-04-26 21:26 . 2006-10-10 06:00 101,888 --a------ C:\WINDOWS\system32\evntagnt.dll
2008-04-26 21:26 . 2006-10-10 06:00 92,160 --a------ C:\WINDOWS\system32\evntwin.exe
2008-04-26 21:26 . 2006-10-10 06:00 39,936 --a------ C:\WINDOWS\system32\hostmib.dll
2008-04-26 21:26 . 2006-10-10 06:00 33,792 --a------ C:\WINDOWS\system32\lmmib2.dll
2008-04-26 21:26 . 2006-11-20 04:42 33,280 --a------ C:\WINDOWS\system32\snmp.exe
2008-04-26 21:26 . 2006-10-10 06:00 24,064 --a------ C:\WINDOWS\system32\evntcmd.exe
2008-04-26 21:26 . 2006-10-10 06:00 22,528 --a------ C:\WINDOWS\system32\lpdsvc.dll
2008-04-26 21:26 . 2006-10-10 06:00 18,944 --a------ C:\WINDOWS\system32\lprmon.dll
2008-04-26 21:26 . 2006-10-10 06:00 8,704 --a------ C:\WINDOWS\system32\snmptrap.exe
2008-04-26 21:26 . 2006-10-10 06:00 6,144 --a------ C:\WINDOWS\system32\snmpmib.dll
2008-04-26 18:41 . 2008-04-26 18:42 <DIR> d--h----- C:\$AVG8.VAULT$
2008-04-26 16:12 . 2006-10-10 06:00 18,944 --a------ C:\WINDOWS\system32\simptcp.dll
2008-04-26 16:01 . 2008-04-27 16:03 <DIR> d-------- C:\kazaabegone
2008-04-26 15:59 . 2008-04-27 16:03 <DIR> d-------- C:\lspfix
2008-04-25 20:09 . 2008-04-25 20:09 96,520 --a------ C:\WINDOWS\system32\drivers\avgldx86.sys
2008-04-25 20:09 . 2008-04-25 20:09 75,272 --a------ C:\WINDOWS\system32\drivers\avgtdix.sys
2008-04-25 20:09 . 2008-04-25 20:09 12,424 --a------ C:\WINDOWS\system32\drivers\avgrkx86.sys
2008-04-25 19:49 . 2008-04-30 07:45 <DIR> d-------- C:\Documents and Settings\Administrator.YOUR-A2BF8D4A12.001
2008-04-25 19:49 . 2008-05-01 15:16 1,024 --ah----- C:\Documents and Settings\Administrator.YOUR-A2BF8D4A12.001\NtUser.dat.LOG
2008-04-25 19:10 . 2008-04-27 16:03 <DIR> d-------- C:\Documents and Settings\Administrator.YOUR-A2BF8D4A12.000
2008-04-25 19:10 . 2008-05-01 15:16 1,024 --ah----- C:\Documents and Settings\Administrator.YOUR-A2BF8D4A12.000\NtUser.dat.LOG
2008-04-25 19:02 . 2008-04-27 16:03 <DIR> d-------- C:\Documents and Settings\Administrator.YOUR-A2BF8D4A12
2008-04-25 19:02 . 2008-05-01 15:16 1,024 --ah----- C:\Documents and Settings\Administrator.YOUR-A2BF8D4A12\NtUser.dat.LOG
2008-04-25 16:45 . 2008-04-27 16:06 <DIR> d---s---- C:\Documents and Settings\Administrator
2008-04-25 16:45 . 2008-05-01 15:16 1,024 --ah----- C:\Documents and Settings\Administrator\NtUser.dat.LOG
2008-04-24 22:53 . 2008-05-01 08:32 <DIR> d-------- C:\WINDOWS\system32\drivers\Avg
2008-04-24 22:53 . 2008-04-27 16:06 <DIR> d-------- C:\Program Files\AVG
2008-04-24 22:53 . 2008-04-27 16:04 <DIR> d-------- C:\Documents and Settings\Marshall\Application Data\AVGTOOLBAR
2008-04-24 22:53 . 2008-04-27 16:06 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\avg8
2008-04-24 22:53 . 2008-04-30 07:46 4,718,592 --a------ C:\Documents and Settings\Marshall\ntuser.dat.rmbak
2008-04-24 22:53 . 2008-04-25 20:09 10,520 --a------ C:\WINDOWS\system32\avgrsstx.dll
2008-04-24 22:02 . 2008-04-29 22:27 <DIR> d-------- C:\Program Files\Spybot - Search & Destroy
2008-04-24 22:02 . 2008-04-29 22:27 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-04-24 21:15 . 2008-04-30 18:02 <DIR> d-------- C:\Program Files\Spyware Doctor
2008-04-24 17:25 . 2008-04-24 17:26 <DIR> d-------- C:\Program Files\Windows Live
2008-04-24 17:25 . 2008-04-24 17:25 <DIR> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller
2008-04-24 17:24 . 2008-04-24 17:24 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller
2008-04-21 15:08 . 2008-04-21 15:08 13,144 --a------ C:\WINDOWS\system32\lsdelete.exe
2008-04-19 08:56 . 2008-04-19 08:56 <DIR> d-------- C:\Program Files\Apple Software Update
2008-04-08 22:20 . 2008-04-11 19:56 <DIR> d-------- C:\Program Files\LeapFTP
2008-04-08 22:20 . 2002-08-16 15:15 60,928 --a------ C:\WINDOWS\unleap.exe
2008-04-08 21:24 . 2008-04-08 21:24 <DIR> d-------- C:\Documents and Settings\Marshall\Application Data\CoffeeCup Software
2008-04-08 17:46 . 2008-04-08 17:46 <DIR> d-------- C:\Program Files\iPod
2008-04-08 17:46 . 2008-05-01 06:28 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-04-08 17:46 . 2008-04-08 17:46 1,409 --a------ C:\WINDOWS\QTFont.for
2008-04-08 17:45 . 2008-04-08 17:46 <DIR> d-------- C:\Program Files\iTunes
2008-04-08 17:44 . 2008-04-08 17:45 <DIR> d-------- C:\Program Files\QuickTime
2008-04-08 17:40 . 2008-04-08 17:40 <DIR> d-------- C:\Program Files\Common Files\Apple
2008-04-04 17:42 . 2008-04-04 17:42 <DIR> d-------- C:\Program Files\CoffeeCup SoftwareWebsiteFont
2008-04-04 17:42 . 2006-01-27 01:56 938,272 --a------ C:\WINDOWS\system32\wodFtpDLX.ocx
2008-04-04 17:35 . 2008-04-22 17:17 13 --a------ C:\WINDOWS\system32\WinSys32.crc
2008-04-04 17:34 . 1999-03-22 12:29 233,472 --a------ C:\WINDOWS\system32\Ilda32.dll
2008-04-04 17:34 . 1998-06-17 04:00 18,944 --a------ C:\WINDOWS\system32\BORLNDMM.DLL
2008-04-04 17:33 . 2008-04-08 21:23 <DIR> d-------- C:\Program Files\CoffeeCup Software

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-05-01 01:06 --------- d-----w C:\Documents and Settings\Marshall\Application Data\eBay
2008-05-01 01:03 --------- d-----w C:\Documents and Settings\All Users\Application Data\WholeSecurity
2008-04-30 19:36 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-04-22 00:39 --------- d-----w C:\Documents and Settings\Marshall\Application Data\gtk-2.0
2008-04-09 01:23 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-04-09 01:22 --------- d-----w C:\Program Files\Common Files\InstallShield
2008-04-08 21:46 --------- d-----w C:\Documents and Settings\Marshall\Application Data\Apple Computer
2008-04-08 21:45 --------- d-----w C:\Documents and Settings\All Users\Application Data\Apple Computer
2008-03-29 23:22 --------- d-----w C:\Program Files\TechSmith
2008-03-29 23:22 --------- d-----w C:\Documents and Settings\All Users\Application Data\TechSmith
2008-03-19 09:47 1,845,248 ----a-w C:\WINDOWS\system32\win32k.sys
2008-03-18 15:51 --------- d-----w C:\Program Files\Verizon
2008-03-18 15:51 --------- d-----w C:\Program Files\Common Files\SupportSoft
2008-03-01 13:06 826,368 ----a-w C:\WINDOWS\system32\wininet.dll
2008-02-20 06:51 282,624 ----a-w C:\WINDOWS\system32\gdi32.dll
2008-02-20 05:32 45,568 ----a-w C:\WINDOWS\system32\dnsrslvr.dll
2007-12-01 19:11 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat
2007-02-23 00:41 389,120 ----a-w C:\Documents and Settings\Marshall\GoToAssist_phone__268_en.exe
2007-02-21 23:49 439,296 ----a-w C:\Documents and Settings\Marshall\GoToAssist_phone__317_en.exe
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A057A204-BACC-4D26-9990-79A187E2698E}]
2008-04-25 20:09 2051328 --a------ C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{A057A204-BACC-4D26-9990-79A187E2698E}"= "C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL" [2008-04-25 20:09 2051328]

[HKEY_CLASSES_ROOT\clsid\{a057a204-bacc-4d26-9990-79a187e2698e}]
[HKEY_CLASSES_ROOT\avgtoolbar.AVGTOOLBAR]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{A057A204-BACC-4D26-9990-79A187E2698E}"= C:\PROGRA~1\AVG\AVG8\AVGTOO~1.DLL [2008-04-25 20:09 2051328]

[HKEY_CLASSES_ROOT\clsid\{a057a204-bacc-4d26-9990-79a187e2698e}]
[HKEY_CLASSES_ROOT\avgtoolbar.AVGTOOLBAR]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 01:56 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 23:16 39792]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [2008-03-30 10:36 267048]
"eBayToolbar"="C:\Program Files\eBay\eBay Toolbar2\eBayTBDaemon.exe" [2008-03-20 14:49 652528]
"AVG8_TRAY"="C:\PROGRA~1\AVG\AVG8\avgtray.exe" [2008-04-25 20:09 1177368]
"ZoneAlarm Client"="C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" [2008-04-02 21:07 919016]

C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Free WebSite Tools.lnk - C:\Program Files\CoffeeCup Software\CoffeeCup Free FTP\ThirtyDayTimer.exe [2008-04-08 21:23:41 372224]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2003-09-16 06:19:24 237568]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-02-17 16:05:56 65588]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"= ctwdm32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"vsmon"=2 (0x2)

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe
"MsnMsgr"="C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" -atboottime
"DXDllRegExe"=dxdllreg.exe
"HP Component Manager"="C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001
"UpdatesDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\ZoneLabsFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"C:\\WINDOWS\\system32\\ZoneLabs\\vsmon.exe"=
"C:\\Program Files\\MSN Messenger\\msnmsgr.exe"=
"C:\\Program Files\\MSN Messenger\\livecall.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"C:\\Program Files\\AVG\\AVG8\\avgnsx.exe"=
"C:\\Program Files\\iTunes\\iTunes.exe"=

R0 AvgRkx86;avgrkx86.sys;C:\WINDOWS\system32\Drivers\avgrkx86.sys [2008-04-25 20:09]
R1 AvgLdx86;AVG AVI Loader Driver x86;C:\WINDOWS\system32\Drivers\avgldx86.sys [2008-04-25 20:09]
R2 AvgTdiX;AVG8 Network Redirector;C:\WINDOWS\system32\Drivers\avgtdix.sys [2008-04-25 20:09]
R2 SMTPSVC;Simple Mail Transfer Protocol (SMTP);C:\WINDOWS\system32\inetsrv\inetinfo.exe [2006-10-10 06:00]
S2 avg8wd;AVG8 WatchDog;C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe [2008-04-25 20:09]

*Newly Created Service* - CATCHME
.
Contents of the 'Scheduled Tasks' folder
"2008-04-19 12:56:13 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe
.
**************************************************************************

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-05-01 15:19:38
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-05-01 15:21:15
ComboFix-quarantined-files.txt 2008-05-01 19:20:59

Pre-Run: 119,771,779,072 bytes free
Post-Run: 120,855,724,032 bytes free

217 --- E O F --- 2008-04-28 21:33:46

Looking forward to hearing from you.

-Marshallross

BC AdBot (Login to Remove)

 


#2 rigel

rigel

    FD-BC


  • Members
  • 12,944 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:South Carolina - USA
  • Local time:02:56 PM

Posted 01 May 2008 - 03:05 PM

Hi Marshallross and welcome to BleepingComputer,

ComboFix logs should not to be posted outside the HijackThis forums. It is an extremely powerful tool which should only be used when instructed to do so by someone who has been properly trained. ComboFix is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Please read Combofix's Disclaimer. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.

Please create a new topic explaining the nature of your problem in the Am I infected? What do I do? forum. Describe pop-ups and system tray or desktop icons that have appeared. Explain what is "going wrong" with your computer. Note any tools you have used and their respective results.

If needed, we will direct you to our HJT Preparation Guide.

Thank you for using BleepingComputer as your malware removal source.

This topic is now closed.
The BC Staff

"In a world where you can be anything, be yourself." ~ unknown

"Fall in love with someone who deserves your heart. Not someone who plays with it. Will Smith





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users