Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Very Slow Computer - First Time Combofix


  • This topic is locked This topic is locked
1 reply to this topic

#1 PhilN

PhilN

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:01:54 AM

Posted 04 September 2008 - 09:44 AM

ComboFix 08-09-03.03 - Philip Nemeth 2008-09-04 9:20:13.4 - FAT32x86

Running from: C:\D-load\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\system\drivers.dll

.
((((((((((((((((((((((((( Files Created from 2008-08-04 to 2008-09-04 )))))))))))))))))))))))))))))))
.

2008-08-26 12:47 . 2008-08-26 12:47 <DIR> dr-h----- C:\MSOCache
2008-08-26 09:09 . 2008-08-26 09:09 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Altova
2008-08-23 11:52 . 2008-08-23 11:52 <DIR> d-------- C:\WINDOWS\SYSTEM32\scripting
2008-08-23 11:52 . 2008-08-23 11:52 <DIR> d-------- C:\WINDOWS\SYSTEM32\en
2008-08-23 11:52 . 2008-08-23 11:52 <DIR> d-------- C:\WINDOWS\SYSTEM32\bits
2008-08-23 11:52 . 2008-08-23 11:52 <DIR> d-------- C:\WINDOWS\l2schemas
2008-08-23 11:44 . 2008-08-23 11:44 <DIR> d-------- C:\WINDOWS\ServicePackFiles
2008-08-23 11:28 . 2008-08-23 11:28 <DIR> d-------- C:\WINDOWS\EHome
2008-08-23 11:12 . 2008-04-13 20:12 193,024 --------- C:\WINDOWS\SYSTEM32\napmontr.dll
2008-08-23 11:11 . 2008-04-13 20:12 286,792 --------- C:\WINDOWS\SYSTEM32\slextspk.dll
2008-08-23 11:10 . 2008-04-13 20:12 4,274,816 --------- C:\WINDOWS\SYSTEM32\nv4_disp.dll
2008-08-23 11:09 . 2008-04-13 20:11 870,784 --------- C:\WINDOWS\SYSTEM32\ati3d1ag.dll
2008-08-23 11:08 . 2004-08-03 22:29 1,897,408 --------- C:\WINDOWS\SYSTEM32\DRIVERS\nv4_mini.sys
2008-08-23 11:07 . 2004-08-03 22:41 1,041,536 --------- C:\WINDOWS\SYSTEM32\DRIVERS\hsfdpsp2.sys
2008-08-23 11:07 . 2004-08-03 22:41 129,535 --------- C:\WINDOWS\SYSTEM32\DRIVERS\slnt7554.sys
2008-08-23 11:07 . 2004-08-03 22:29 63,663 --------- C:\WINDOWS\SYSTEM32\DRIVERS\ati1rvxx.sys
2008-08-23 11:07 . 2004-08-03 22:29 29,455 --------- C:\WINDOWS\SYSTEM32\DRIVERS\ati1xbxx.sys
2008-08-23 11:07 . 2004-08-03 22:29 26,367 --------- C:\WINDOWS\SYSTEM32\DRIVERS\ati1snxx.sys
2008-08-23 11:07 . 2004-08-03 22:29 21,343 --------- C:\WINDOWS\SYSTEM32\DRIVERS\ati1ttxx.sys
2008-08-23 11:07 . 2004-08-03 22:29 14,336 --------- C:\WINDOWS\SYSTEM32\DRIVERS\atinpdxx.sys
2008-08-23 11:07 . 2004-08-03 22:29 13,824 --------- C:\WINDOWS\SYSTEM32\DRIVERS\atinttxx.sys
2008-08-23 11:07 . 2004-08-03 22:29 13,824 --------- C:\WINDOWS\SYSTEM32\DRIVERS\atinmdxx.sys
2008-08-23 11:07 . 2004-08-03 22:29 12,047 --------- C:\WINDOWS\SYSTEM32\DRIVERS\ati1pdxx.sys
2008-08-14 08:10 . 2008-04-11 15:04 691,712 --------- C:\WINDOWS\SYSTEM32\dllcache\inetcomm.dll
2008-08-12 17:30 . 2008-08-12 17:30 <DIR> d-------- C:\BIZ-PLAN

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-09-03 19:15 21,576 ----a-w C:\pass.dat
2008-08-23 16:38 118,064 ----a-w C:\Documents and Settings\Philip Nemeth\Application Data\GDIPFONTCACHEV1.DAT
2008-07-30 21:42 23,888 ----a-w C:\WINDOWS\system32\drivers\COH_Mon.sys
2008-07-30 21:28 706 ----a-w C:\WINDOWS\system32\drivers\COH_Mon.inf
2008-07-30 21:28 10,537 ----a-w C:\WINDOWS\system32\drivers\coh_mon.cat
2008-07-19 02:10 94,920 ----a-w C:\WINDOWS\SYSTEM32\dllcache\cdm.dll
2008-07-19 02:10 94,920 ----a-w C:\WINDOWS\SYSTEM32\cdm.dll
2008-07-19 02:10 53,448 ----a-w C:\WINDOWS\SYSTEM32\wuauclt.exe
2008-07-19 02:10 53,448 ----a-w C:\WINDOWS\SYSTEM32\dllcache\wuauclt.exe
2008-07-19 02:10 45,768 ----a-w C:\WINDOWS\SYSTEM32\wups2.dll
2008-07-19 02:10 36,552 ----a-w C:\WINDOWS\SYSTEM32\wups.dll
2008-07-19 02:10 36,552 ----a-w C:\WINDOWS\SYSTEM32\dllcache\wups.dll
2008-07-19 02:09 563,912 ----a-w C:\WINDOWS\SYSTEM32\wuapi.dll
2008-07-19 02:09 563,912 ----a-w C:\WINDOWS\SYSTEM32\dllcache\wuapi.dll
2008-07-19 02:09 325,832 ----a-w C:\WINDOWS\SYSTEM32\wucltui.dll
2008-07-19 02:09 325,832 ----a-w C:\WINDOWS\SYSTEM32\dllcache\wucltui.dll
2008-07-19 02:09 205,000 ----a-w C:\WINDOWS\SYSTEM32\wuweb.dll
2008-07-19 02:09 205,000 ----a-w C:\WINDOWS\SYSTEM32\dllcache\wuweb.dll
2008-07-19 02:09 1,811,656 ----a-w C:\WINDOWS\SYSTEM32\wuaueng.dll
2008-07-19 02:09 1,811,656 ----a-w C:\WINDOWS\SYSTEM32\dllcache\wuaueng.dll
2008-07-07 20:26 253,952 ----a-w C:\WINDOWS\SYSTEM32\es.dll
2008-07-07 20:26 253,952 ------w C:\WINDOWS\SYSTEM32\dllcache\es.dll
2008-06-24 16:43 74,240 ----a-w C:\WINDOWS\SYSTEM32\mscms.dll
2008-06-24 16:43 74,240 ------w C:\WINDOWS\SYSTEM32\dllcache\mscms.dll
2008-06-24 14:57 3,592,192 ----a-w C:\WINDOWS\SYSTEM32\dllcache\mshtml.dll
2008-06-23 09:20 70,656 ----a-w C:\WINDOWS\SYSTEM32\dllcache\ie4uinit.exe
2008-06-23 09:20 625,664 ----a-w C:\WINDOWS\SYSTEM32\dllcache\iexplore.exe
2008-06-23 09:20 13,824 ------w C:\WINDOWS\SYSTEM32\dllcache\ieudinit.exe
2008-06-21 05:23 161,792 ----a-w C:\WINDOWS\SYSTEM32\dllcache\ieakui.dll
2008-06-20 17:46 245,248 ----a-w C:\WINDOWS\SYSTEM32\mswsock.dll
2008-06-20 17:46 245,248 ------w C:\WINDOWS\SYSTEM32\dllcache\mswsock.dll
2008-06-20 17:46 147,968 ------w C:\WINDOWS\SYSTEM32\dllcache\dnsapi.dll
2008-06-20 11:51 361,600 ------w C:\WINDOWS\SYSTEM32\dllcache\tcpip.sys
2008-06-20 11:40 138,496 ------w C:\WINDOWS\SYSTEM32\dllcache\afd.sys
2008-06-20 11:08 225,856 ------w C:\WINDOWS\SYSTEM32\dllcache\tcpip6.sys
2008-06-13 18:45 579,464 ----a-w C:\WINDOWS\SYSTEM32\SymNeti.dll
2008-06-13 18:45 207,240 ----a-w C:\WINDOWS\SYSTEM32\SymRedir.dll
2008-06-13 11:05 272,128 ------w C:\WINDOWS\SYSTEM32\dllcache\bthport.sys
2008-06-06 18:17 60,800 ----a-w C:\WINDOWS\SYSTEM32\S32EVNT1.DLL
2008-05-29 18:23 724,984 ----a-w C:\Documents and Settings\Philip Nemeth\gotomypc_437.exe
2006-02-09 06:00 114 ----a-w C:\Program Files\AutoUpdate.dat
2000-11-01 19:51 271 --sh--w C:\Program Files\desktop.ini
2000-11-01 19:51 23,357 ---h--w C:\Program Files\folder.htt
.

((((((((((((((((((((((((((((( snapshot_2008-08-23_13.04.31.36 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-08-26 16:48:12 135,168 ----a-r C:\WINDOWS\Installer\{90850409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2008-08-26 16:48:12 40,960 ----a-r C:\WINDOWS\Installer\{90850409-6000-11D3-8CFE-0150048383C9}\wrdvicon.exe
- 2008-04-14 00:12:16 139,264 ----a-w C:\WINDOWS\SYSTEM32\cscript.exe
+ 2008-05-07 09:07:24 135,168 ----a-w C:\WINDOWS\SYSTEM32\cscript.exe
+ 2008-05-07 09:07:24 135,168 ------w C:\WINDOWS\SYSTEM32\dllcache\cscript.exe
+ 2008-05-09 10:53:40 512,000 ------w C:\WINDOWS\SYSTEM32\dllcache\jscript.dll
+ 2008-05-09 10:53:40 180,224 ------w C:\WINDOWS\SYSTEM32\dllcache\scrobj.dll
+ 2008-05-09 10:53:40 172,032 ------w C:\WINDOWS\SYSTEM32\dllcache\scrrun.dll
+ 2008-05-09 10:53:40 430,080 ------w C:\WINDOWS\SYSTEM32\dllcache\vbscript.dll
+ 2008-05-08 11:24:44 155,648 ------w C:\WINDOWS\SYSTEM32\dllcache\wscript.exe
+ 2008-05-09 10:53:40 90,112 ------w C:\WINDOWS\SYSTEM32\dllcache\wshext.dll
- 2008-04-14 00:11:56 512,000 ----a-w C:\WINDOWS\SYSTEM32\jscript.dll
+ 2008-05-09 10:53:40 512,000 ----a-w C:\WINDOWS\SYSTEM32\jscript.dll
- 2008-04-14 00:12:06 180,224 ----a-w C:\WINDOWS\SYSTEM32\scrobj.dll
+ 2008-05-09 10:53:40 180,224 ----a-w C:\WINDOWS\SYSTEM32\scrobj.dll
- 2008-04-14 00:12:06 172,032 ----a-w C:\WINDOWS\SYSTEM32\scrrun.dll
+ 2008-05-09 10:53:40 172,032 ----a-w C:\WINDOWS\SYSTEM32\scrrun.dll
- 2008-04-14 00:12:08 434,176 ----a-w C:\WINDOWS\SYSTEM32\vbscript.dll
+ 2008-05-09 10:53:40 430,080 ----a-w C:\WINDOWS\SYSTEM32\vbscript.dll
- 2008-04-14 00:12:42 155,648 ----a-w C:\WINDOWS\SYSTEM32\wscript.exe
+ 2008-05-08 11:24:44 155,648 ----a-w C:\WINDOWS\SYSTEM32\wscript.exe
- 2008-04-14 00:12:10 90,112 ----a-w C:\WINDOWS\SYSTEM32\wshext.dll
+ 2008-05-09 10:53:40 90,112 ----a-w C:\WINDOWS\SYSTEM32\wshext.dll
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Green]
@="{95A27763-F62A-4114-9072-E81D87DE3B68}"
[HKEY_CLASSES_ROOT\CLSID\{95A27763-F62A-4114-9072-E81D87DE3B68}]
2008-06-13 23:19 527296 -ra------ C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Partial]
@="{E300CD91-100F-4E67-9AF3-1384A6124015}"
[HKEY_CLASSES_ROOT\CLSID\{E300CD91-100F-4E67-9AF3-1384A6124015}]
2008-06-13 23:19 527296 -ra------ C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\Carbonite.Yellow]
@="{5E529433-B50E-4bef-A63B-16A6B71B071A}"
[HKEY_CLASSES_ROOT\CLSID\{5E529433-B50E-4bef-A63B-16A6B71B071A}]
2008-06-13 23:19 527296 -ra------ C:\Program Files\Carbonite\Carbonite Backup\CarboniteNSE.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-13 15360]
"clipdiary"="C:\Program Files\Clipdiary\clipdiary.exe" [2007-05-22 208896]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792]
"Symantec Core LC"="C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe" [2008-02-01 1251720]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [2008-01-31 51048]
"Carbonite Backup"="C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe" [2008-06-13 600000]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Printing Migration"="C:\WINDOWS\system32\spool\migrate.dll" [2004-08-04 30208]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoViewOnDrive"= 0 (0x0)

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{51C55F9E-C308-4c95-89AB-8858D8AFD819}"= "C:\Program Files\ParetoLogic\Anti-Spyware\PASShlExt.dll" [2007-10-24 98304]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.VDOM"= vdowave.drv

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HPAiODevice(hp officejet g series) - 1.lnk]
path=C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HPAiODevice(hp officejet g series) - 1.lnk
backup=C:\WINDOWS\pss\HPAiODevice(hp officejet g series) - 1.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2008-01-11 22:16 39792 C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NSWosCheck]
--a------ 2007-09-18 08:22 25472 C:\Program Files\Norton SystemWorks\osCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\osCheck]
--a------ 2007-08-24 23:53 714608 C:\Program Files\Norton AntiVirus\osCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ParetoLogic Anti-Spyware]
--a------ 2007-10-24 13:59 2643312 C:\Program Files\ParetoLogic\Anti-Spyware\Pareto_AS.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"AIM"=C:\PROGRAM FILES\AIM\aim.exe -cnetwait.odl

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"hpsysdrv"=C:\WINDOWS\SYSTEM32\hpsysdrv.exe
"ICSDCLT"=C:\WINDOWS\SYSTEM32\RUNDLL32.EXE C:\WINDOWS\SYSTEM32\ICSDCLT.DLL,ICSClient
"MMTray"=
"VSOCheckTask"="C:\PROGRA~1\MCAFEE.COM\VSO\MCMNHDLR.EXE" /checktask
"MCAgentExe"=C:\PROGRA~1\MCAFEE.COM\AGENT\mcagent.exe
"MCUpdateExe"=C:\PROGRA~1\MCAFEE.COM\AGENT\MCUPDATE.EXE
"MCTskShd"=C:\PROGRA~1\MCAFEE.COM\AGENT\mctskshd.exe
"MPFExe"=C:\PROGRA~1\MCAFEE.COM\PERSON~1\MpfTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runservices-]
"*StateMgr"=C:\WINDOWS\System\Restore\StateMgr.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
"FirewallOverride"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\Mozilla Thunderbird\\thunderbird.exe"=
"C:\\Program Files\\Carbonite\\Carbonite Backup\\CarboniteService.exe"=
"C:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"C:\\Program Files\\ParetoLogic\\Anti-Spyware\\Pareto_AS.exe"=
"C:\\Program Files\\Common Files\\ATX\\2004\\URLHandler.exe"=
"C:\\Program Files\\Common Files\\Symantec Shared\\NPC\\npcLUStb.exe"=
"C:\\Program Files\\Adobe\\Acrobat 5.0\\Distillr\\acrodist.exe"=
"C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\WINDOWS\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"2799:UDP"= 2799:UDP:Altova License Metering Port (UDP)
"2799:TCP"= 2799:TCP:Altova License Metering Port (TCP)

R2 LiveUpdate Notice;LiveUpdate Notice;C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2008-01-31 149864]
R3 FA312;NETGEAR FA330/FA312/FA311 Fast Ethernet Adapter Driver;C:\WINDOWS\system32\DRIVERS\FA312nd5.sys [2001-08-17 16074]
S3 COH_Mon;COH_Mon;C:\WINDOWS\system32\Drivers\COH_Mon.sys [2008-07-30 23888]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\PerUser_LinkBar_URLs]
C:\WINDOWS\COMMAND\sulfnbk.exe /L

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
"C:\PROGRA~1\OUTLOO~1\setup50.exe" /APP:OE /CALLER:IE50 /user /install

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
"C:\PROGRA~1\OUTLOO~1\setup50.exe" /APP:OE /CALLER:IE50 /user /install
"C:\PROGRA~1\OUTLOO~1\setup50.exe" /APP:OE /CALLER:IE50 /user /install

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
"C:\PROGRA~1\OUTLOO~1\setup50.exe" /APP:WAB /CALLER:WIN9X /user /install

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{7790769C-0471-11d2-AF11-00C04FA35D02}]
"C:\PROGRA~1\OUTLOO~1\setup50.exe" /APP:WAB /CALLER:WIN9X /user /install
"C:\PROGRA~1\OUTLOO~1\setup50.exe" /APP:WAB /CALLER:IE50 /user /install

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9EF0045A-CDD9-438e-95E6-02B9AFEC8E11}]
C:\WINDOWS\SYSTEM32\updcrl.exe -e -u C:\WINDOWS\SYSTEM\verisignpub1.crl
.
Contents of the 'Scheduled Tasks' folder
.
.
------- Supplementary Scan -------
.
FireFox -: Profile - C:\Documents and Settings\Philip Nemeth\Application Data\Mozilla\Firefox\Profiles\p6bfpmhm.default\
FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.dogpile.com/
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npdrmv2.dll
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npdsplay.dll
FF -: plugin - C:\Program Files\Mozilla Firefox\plugins\npwmsdrm.dll
.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-09-04 09:25:49
Windows 5.1.2600 Service Pack 3 FAT NTAPI

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-09-04 9:28:19
ComboFix-quarantined-files.txt 2008-09-04 13:28:10
ComboFix4.txt 2008-07-05 20:36:10
ComboFix3.txt 2008-08-17 13:25:38
ComboFix2.txt 2008-08-23 17:05:58

Pre-Run: 16,273,555,456 bytes free
Post-Run: 17,527,341,056 bytes free

239 --- E O F --- 2008-08-24 21:32:53

BC AdBot (Login to Remove)

 


#2 rigel

rigel

    FD-BC


  • Members
  • 12,944 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:South Carolina - USA
  • Local time:01:54 AM

Posted 04 September 2008 - 09:46 AM

ComboFix logs should not to be posted outside the HijackThis forums and then only when requested by a HJT Team member. It is an extremely powerful tool which should only be used when instructed to do so by someone who has been properly trained. ComboFix is intended by its creator to be "used under the guidance and supervision of an expert", NOT for private use. Please read Combofix's Disclaimer. Using this tool incorrectly could lead to disastrous problems with your operating system such as preventing it from ever starting again.

Please create a new topic explaining the nature of your problem in the Am I infected? What do I do? forum. Describe pop-ups and system tray or desktop icons that have appeared. Explain what is "going wrong" with your computer. Note any tools you have used and their respective results.

If needed, we will direct you to our HJT Preparation Guide.

Thank you for using BleepingComputer as your malware removal source.

This topic is now closed.
The BC Staff

"In a world where you can be anything, be yourself." ~ unknown

"Fall in love with someone who deserves your heart. Not someone who plays with it. Will Smith





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users