Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

At my wits end... dunno what else to do.


  • This topic is locked This topic is locked
7 replies to this topic

#1 about_to_kill_my_pc

about_to_kill_my_pc

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 16 May 2009 - 10:01 PM

Hello there,

As I've said in the topic title, I'm at my wits end with this computer and don't know what to do. I've redone it countless times, (god knows how many) even bought a new hard drive just recently... and still, it's messed up. I've never experienced anything like this though. It takes forever to start up in the first place mainly staying at the windows loading page for about 20 minutes then finally turning on. Then it takes forever again to start the programs. Most recently, when I got onto Youtube it skips every 2 seconds, and now, it's screwing up my actual music on the computer speeding it up and slowing it down (like a program is running at the same time causing it to skip like that). I've deleted all my caches (the ones that will delete anyway) all my temporary internet files. I dunno what to do, your help would be much appreciated. Also, for a while there my computer would freeze up every once in a while, programs freezing, the mouse freezing, the whole deal.

EDIT: Also, I just remembered this. When I would sign on msn messenger sometimes it would close it out completely out of nowhere. I'd do the troubleshoot and then it says theres a problem with the keyports. So, then I try to disable my internet... freezes up, and when it finally disables. I go to connect it and all it says is connection failed. I have to reboot my computer just to restart msn. Hope this helps more.

Here is my HiJack This Log:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:26:53 PM, on 5/16/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\system32\igfxtray.exe
C:\WINDOWS\system32\hkcmd.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Documents and Settings\Ty\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\Lavasoft\Ad-Aware\Ad-Aware.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\Program Files\Common Files\Symantec Shared\Security Center\SymSCUI.exe
C:\Program Files\HPQ\shared\hpqwmi.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Documents and Settings\Ty\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ty\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ty\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ty\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Messenger\msmsgs.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...n&pf=laptop
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [SoundMAX] C:\Program Files\Analog Devices\SoundMAX\Smax4.exe /tray
O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\cpqset.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe /Start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
O4 - HKLM\..\Run: [Symantec NetDriver Monitor] C:\PROGRA~1\SYMNET~1\SNDMon.exe /Consumer
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Ty\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
O23 - Service: Symantec Password Validation (ccPwdSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccPwdSvc.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\shared\hpqwmi.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: ISSvc (ISSVC) - Symantec Corporation - C:\Program Files\Norton Internet Security\ISSVC.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Norton AntiVirus Auto-Protect Service (navapsvc) - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: SAVScan - Symantec Corporation - C:\Program Files\Norton Internet Security\Norton AntiVirus\SAVScan.exe
O23 - Service: ScriptBlocking Service (SBService) - Symantec Corporation - C:\PROGRA~1\COMMON~1\SYMANT~1\SCRIPT~1\SBServ.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
O23 - Service: SymWMI Service (SymWSC) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
O24 - Desktop Component 0: (no name) - http://www.pe.com/imagesdaily/2007/02-09/m...mogen_h_400.jpg

--
End of file - 10754 bytes

Off to back up and turn on my firewall!

Edited by about_to_kill_my_pc, 16 May 2009 - 10:04 PM.

Posted Image
as usual, i'm about to kill my pc...

BC AdBot (Login to Remove)

 


m

#2 about_to_kill_my_pc

about_to_kill_my_pc
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 18 May 2009 - 10:26 AM

Sorry for the bump, but it was 13 pages in and no reply.

:thumbup2:
===========

Hello

While we understand your frustration at having to wait, please note that Bleeping Computer deals with several hundred requests for assistance such as yours on a daily basis. As a result, our backlog is quite large as are other comparable sites that help others with malware issues. Although our HJT Team members work on hundreds of requests each day, they are all volunteers who work logs when they can and are able to do so. No one is paid by Bleeping Computer for their assistance to our members.

Further, our malware removal staff is comprised of team members with various levels of skill and expertise to deal with thousands of malware variants, some more complex than others. Although we try to take DDS/HJT logs in order (starting with the oldest), it is often the skill level of the particular helper and sometimes the operating system that dictates which logs get selected first. Some infections are more complicated than others and require a higher skill level to remove. Without that skill level attempted removal could result in disastrous results. In other instances, the helper may not be familiar with the operating system that you are using, since they use another. In either case, neither of us want someone to assist you who is not familiar with your issue and attempt to fix it.

We ask that once you have posted your log and are waiting, please DO NOT "bump" your thread or make further replies until it has been responded to by a member of the HJT Team. The reason we ask this or do not respond to your requests is because that would remove you from the active queue that Techs and Staff have access to. The malware staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response, there will be 1 reply. A team member, looking for a new log to work may assume another HJT Team member is already assisting you and not open the thread to respond.

That is why I have made an edit to your last post, instead of a reply. Please do not multiple post here, as that only pushes you further down the queue and causes confusion to the staff.

Please be patient. It may take a while to get a response but your log will be reviewed and answered as soon as possible.

Thank you for understanding.

Orange Blossom ~ forum moderator

Edited by Orange Blossom, 28 May 2009 - 10:40 PM.

Posted Image
as usual, i'm about to kill my pc...

#3 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:02:53 AM

Posted 30 May 2009 - 04:40 PM

Hi about_to_kill_my_pc,

Sorry for the delay the forums here at BC are always very busy and we do are best to keep up. Since
your log is quite old and alot could have changed, I would like to see a new log please. If you no
longer require any help could you let me no please, so this topic can be closed.

Posted Image
Download DDS and save it to your desktop from here or here.
Disable any script blocker, and then double click dds.scr to run the tool.
  • When done, DDS will open two (2) logs:
  • DDS.txt
  • Attach.txt
  • Save both reports to your desktop.
  • Then post back with DDS.txt.
  • Also please attach, Attach.txt in your next reply.
Thanks

unite.jpg


#4 about_to_kill_my_pc

about_to_kill_my_pc
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 02 June 2009 - 04:30 AM

Hello, thanks for replying!

I have recently redone my computer but I want to check things just to make sure everything is working correctly because I recently bought a new hard drive.

I will post the logs in the next post.
Posted Image
as usual, i'm about to kill my pc...

#5 about_to_kill_my_pc

about_to_kill_my_pc
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 02 June 2009 - 04:35 AM

DDS (Ver_09-05-14.01) - NTFSx86
Run by Ty Carson at 5:31:55.29 on Tue 06/02/2009
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.502.124 [GMT -4:00]

AV: Norton Internet Security *On-access scanning enabled* (Outdated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
C:\Program Files\Norton Internet Security\ISSVC.exe
C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\Adobe\Photoshop Elements 5.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Norton Internet Security\Norton AntiVirus\navapsvc.exe
C:\WINDOWS\system32\PSIService.exe
C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Apoint2K\Apoint.exe
C:\WINDOWS\system32\igfxtray.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe
C:\Program Files\Adobe\Photoshop Elements 5.0\apdproxy.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Documents and Settings\Ty Carson\Local Settings\Application Data\Google\Update\GoogleUpdate.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Apoint2K\Apntex.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Documents and Settings\Ty Carson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\HPQ\shared\hpqwmi.exe
C:\Documents and Settings\Ty Carson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ty Carson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ty Carson\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Ty Carson\My Documents\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.awesomestart.com/evanescence/
uSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
uInternet Connection Wizard,ShellNext = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL
BHO: CNavExtBho Class: {bdf3e430-b101-42ad-a544-fadc6b084872} - c:\program files\norton internet security\norton antivirus\NavShExt.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Norton AntiVirus: {42cdd1bf-3ffb-4238-8ad1-7859df00b1d6} - c:\program files\norton internet security\norton antivirus\NavShExt.dll
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [Google Update] "c:\documents and settings\ty carson\local settings\application data\google\update\GoogleUpdate.exe" /c
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
mRun: [SoundMAXPnP] c:\program files\analog devices\soundmax\SMax4PNP.exe
mRun: [SoundMAX] c:\program files\analog devices\soundmax\Smax4.exe /tray
mRun: [AGRSMMSG] AGRSMMSG.exe
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [URLLSTCK.exe] c:\program files\norton internet security\UrlLstCk.exe
mRun: [Apoint] c:\program files\apoint2k\Apoint.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Cpqset] c:\program files\hpq\default settings\cpqset.exe
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [iTunesHelper] c:\program files\itunes\iTunesHelper.exe
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [eabconfg.cpl] c:\program files\hpq\quick launch buttons\EabServr.exe /Start
mRun: [hpWirelessAssistant] c:\program files\hpq\hp wireless assistant\HP Wireless Assistant.exe
mRun: [Adobe Photo Downloader] "c:\program files\adobe\photoshop elements 5.0\apdproxy.exe"
mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-0015-0000-0002-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_02-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\progra~1\micros~2\office12\GR99D3~1.DLL
Notify: igfxcui - igfxsrvc.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office12\GRA8E1~1.DLL

============= SERVICES / DRIVERS ===============

R2 ccEvtMgr;Symantec Event Manager;c:\program files\common files\symantec shared\ccEvtMgr.exe [2004-8-28 197752]
R2 ccProxy;Symantec Network Proxy;c:\program files\common files\symantec shared\ccProxy.exe [2004-8-28 234616]
R2 ccSetMgr;Symantec Settings Manager;c:\program files\common files\symantec shared\ccSetMgr.exe [2004-8-28 164984]
R2 navapsvc;Norton AntiVirus Auto-Protect Service;c:\program files\norton internet security\norton antivirus\navapsvc.exe [2004-10-28 176768]
R2 SAVRTPEL;SAVRTPEL;c:\program files\norton internet security\norton antivirus\Savrtpel.sys [2004-7-24 49808]
R3 CEUSBAUD;Lexicon USB MIDI Driver1;c:\windows\system32\drivers\ceusbaud.sys [2009-5-19 17920]
R3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20041020.038\NAVENG.SYS [2009-5-18 68168]
R3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20041020.038\NAVEX15.SYS [2009-5-18 617288]
R3 SAVRT;SAVRT;c:\program files\norton internet security\norton antivirus\savrt.sys [2004-7-24 335504]
S2 SBService;ScriptBlocking Service;c:\progra~1\common~1\symant~1\script~1\SBServ.exe [2004-10-28 66688]
S3 ccPwdSvc;Symantec Password Validation;c:\program files\common files\symantec shared\ccPwdSvc.exe [2004-8-28 78968]
S3 SAVScan;SAVScan;c:\program files\norton internet security\norton antivirus\SAVScan.exe [2004-7-24 197864]

=============== Created Last 30 ================

2009-05-25 14:46 <DIR> --d----- c:\docume~1\tycars~1\applic~1\TweetDeckFast.F9107117265DB7542C1A806C8DB837742CE14C21.1
2009-05-25 14:46 <DIR> --d----- c:\program files\TweetDeck
2009-05-22 21:21 <DIR> --d----- c:\docume~1\alluse~1\applic~1\espionServerData
2009-05-22 16:15 5,632 a------- c:\windows\system32\ptpusb.dll
2009-05-22 16:15 15,104 ac------ c:\windows\system32\dllcache\usbscan.sys
2009-05-22 16:15 159,232 a------- c:\windows\system32\ptpusd.dll
2009-05-22 16:15 15,104 a------- c:\windows\system32\drivers\usbscan.sys
2009-05-21 18:52 73,728 a------- c:\windows\system32\javacpl.cpl
2009-05-21 18:25 410,984 a------- c:\windows\system32\deploytk.dll
2009-05-21 13:41 32,592 a------- c:\windows\system32\msonpmon.dll
2009-05-21 13:36 <DIR> --d----- c:\program files\Microsoft Visual Studio 8
2009-05-21 13:35 <DIR> --d----- c:\windows\SHELLNEW
2009-05-19 23:48 <DIR> --dsh--- c:\documents and settings\ty carson\IETldCache
2009-05-19 23:45 <DIR> --d----- c:\windows\ie8updates
2009-05-19 23:43 <DIR> -cd-h--- c:\windows\ie8
2009-05-19 23:40 102,400 -c------ c:\windows\system32\dllcache\iecompat.dll
2009-05-19 20:50 <DIR> --dsh--- c:\documents and settings\ty carson\PrivacIE
2009-05-19 20:48 <DIR> --d----- c:\windows\system32\LogFiles
2009-05-19 20:27 <DIR> --d----- c:\windows\system32\CatRoot_bak
2009-05-19 01:37 272,128 -c------ c:\windows\system32\dllcache\bthport.sys
2009-05-19 01:37 272,128 -------- c:\windows\system32\drivers\bthport.sys
2009-05-19 01:36 2,136,064 -c------ c:\windows\system32\dllcache\ntkrnlmp.exe
2009-05-19 01:36 2,180,480 -c------ c:\windows\system32\dllcache\ntoskrnl.exe
2009-05-19 01:36 2,015,744 -c------ c:\windows\system32\dllcache\ntkrpamp.exe
2009-05-19 01:36 2,057,728 -c------ c:\windows\system32\dllcache\ntkrnlpa.exe
2009-05-19 01:33 453,632 -c------ c:\windows\system32\dllcache\mrxsmb.sys
2009-05-19 01:26 <DIR> --d----- c:\windows\system32\PreInstall
2009-05-19 01:26 26,144 a------- c:\windows\system32\spupdsvc.exe
2009-05-19 01:06 <DIR> --d----- c:\program files\Corel
2009-05-19 01:06 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Corel
2009-05-19 00:26 17,920 a----r-- c:\windows\system32\drivers\ceusbaud.sys
2009-05-19 00:26 <DIR> --d----- c:\program files\Lexicon
2009-05-19 00:23 26,496 ac------ c:\windows\system32\dllcache\usbstor.sys
2009-05-19 00:23 <DIR> --d----- c:\docume~1\tycars~1\applic~1\Cakewalk
2009-05-19 00:16 118,784 a------- c:\windows\dsdxirmv.exe
2009-05-19 00:10 233,472 a------- c:\windows\system32\REX Shared Library.dll
2009-05-19 00:10 487,424 a------- c:\windows\system32\msvcp70.dll
2009-05-19 00:10 344,064 a------- c:\windows\system32\msvcr70.dll
2009-05-19 00:10 180,224 a------- c:\windows\system32\ReWire.dll
2009-05-19 00:10 <DIR> --d----- c:\program files\Cakewalk
2009-05-19 00:10 <DIR> --d----- C:\Cakewalk Projects
2009-05-18 23:27 21,504 ac------ c:\windows\system32\dllcache\hidserv.dll
2009-05-18 23:27 21,504 a------- c:\windows\system32\hidserv.dll
2009-05-18 23:27 12,160 ac------ c:\windows\system32\dllcache\mouhid.sys
2009-05-18 23:27 12,160 a------- c:\windows\system32\drivers\mouhid.sys
2009-05-18 23:27 14,848 ac------ c:\windows\system32\dllcache\kbdhid.sys
2009-05-18 23:27 14,848 a------- c:\windows\system32\drivers\kbdhid.sys
2009-05-18 23:27 9,600 ac------ c:\windows\system32\dllcache\hidusb.sys
2009-05-18 23:27 9,600 a------- c:\windows\system32\drivers\hidusb.sys
2009-05-18 23:26 59,264 ac------ c:\windows\system32\dllcache\usbaudio.sys
2009-05-18 23:26 59,264 a------- c:\windows\system32\drivers\USBAUDIO.sys
2009-05-18 23:26 31,616 ac------ c:\windows\system32\dllcache\usbccgp.sys
2009-05-18 23:26 31,616 a------- c:\windows\system32\drivers\usbccgp.sys
2009-05-18 23:18 <DIR> --d----- c:\windows\system32\SoftwareDistribution
2009-05-18 23:17 <DIR> --dsh--- c:\documents and settings\ty carson\UserData
2009-05-18 23:16 <DIR> --d----- c:\docume~1\alluse~1\applic~1\hpqwmi
2009-05-18 23:16 163,840 a----r-- c:\windows\system32\igfxres.dll
2009-05-18 23:11 <DIR> --d-h--- c:\windows\$hf_mig$
2009-05-18 23:08 221,184 a------- c:\windows\system32\wmpns.dll
2009-05-18 23:08 <DIR> --d----- c:\windows\RegisteredPackages
2009-05-18 23:07 81,920 a------- c:\windows\system32\WACntlPnl.cpl
2009-05-18 23:06 <DIR> --d----- c:\program files\common files\SureThing Shared
2009-05-18 23:05 <DIR> --d----- c:\program files\common files\TiVo Shared
2009-05-18 23:05 <DIR> --d----- c:\program files\Sonic
2009-05-18 23:03 <DIR> --d----- c:\program files\common files\Sonic Shared
2009-05-18 23:03 1,676 a--shr-- c:\windows\system32\drivers\103C_HP_NTBK_Pavilion dv4000 (EC329UA#ABA)_YN_0Pavi_Q2CE5360H6C_EU_46_I308C_SHP_V35.30_BF.16_T050727_WXH2_L409_M503_J250_7Intel_8Celeron M_91.6_#090518_N10EC8139_(EC329UA#ABA)_XMOBILE_CN10_Z8086266D_2_G80862592.MRK
2009-05-18 23:03 <DIR> --d----- C:\swsetup
2009-05-18 23:03 32,356 -------- c:\windows\system32\pusbfd1.sys
2009-05-18 23:03 26,629 -------- c:\windows\system32\pusbfd2.vxd
2009-05-18 23:01 425,984 a------- c:\windows\system32\hpqPres.dll
2009-05-18 23:01 225,280 a------- c:\windows\system32\cpqinfo.dll
2009-05-18 23:01 65,536 a------- c:\windows\system32\hpqactn.dll
2009-05-18 23:01 32,768 a------- c:\windows\system32\eabhbrn8.dll
2009-05-18 23:01 7,432 a------- c:\windows\system32\drivers\eabfiltr.sys
2009-05-18 23:01 5,220 a------- c:\windows\system32\drivers\EabUsb.sys
2009-05-18 23:00 109,568 -------- c:\windows\system32\pxinsi64.exe
2009-05-18 23:00 108,544 -------- c:\windows\system32\pxcpyi64.exe
2009-05-18 23:00 <DIR> --d----- c:\program files\muvee Technologies
2009-05-18 23:00 <DIR> --d----- c:\program files\common files\muvee Technologies
2009-05-18 22:59 15,669 a------- c:\windows\system32\oeminfo.ini
2009-05-18 22:59 <DIR> --d----- c:\program files\Zone.com
2009-05-18 22:58 86,016 a------- c:\windows\unvise32qt.exe
2009-05-18 22:58 <DIR> --d----- c:\windows\system32\QuickTime
2009-05-18 22:58 <DIR> --d----- c:\program files\iPod
2009-05-18 22:58 <DIR> --d----- c:\program files\iTunes
2009-05-18 22:58 <DIR> --d----- c:\windows\Downloaded Installations
2009-05-18 22:57 <DIR> --d----- c:\program files\Hp
2009-05-18 22:57 <DIR> --d----- c:\windows\Hewlett-Packard
2009-05-18 22:56 204,800 a------- c:\windows\system32\IVIresizeW7.dll
2009-05-18 22:56 200,704 a------- c:\windows\system32\IVIresizeA6.dll
2009-05-18 22:56 192,512 a------- c:\windows\system32\IVIresizeP6.dll
2009-05-18 22:56 192,512 a------- c:\windows\system32\IVIresizeM6.dll
2009-05-18 22:56 188,416 a------- c:\windows\system32\IVIresizePX.dll
2009-05-18 22:56 20,480 a------- c:\windows\system32\IVIresize.dll
2009-05-18 22:56 <DIR> --d----- c:\program files\InterVideo
2009-05-18 22:55 <DIR> --d----- c:\windows\system32\URTTemp
2009-05-18 22:54 22,198 a----r-- c:\windows\system32\OEMLogo.bmp
2009-05-18 22:54 13,942 a----r-- c:\windows\accessories.ico
2009-05-18 22:54 5,430 a----r-- c:\windows\AG-Rose.ico
2009-05-18 22:54 4,286 a----r-- c:\windows\hpmusic.ico
2009-05-18 22:54 6,912,056 a----r-- c:\windows\Blue Sonic.bmp
2009-05-18 22:54 6,912,056 a----r-- c:\windows\Crystal Rush.bmp
2009-05-18 22:54 6,912,056 a----r-- c:\windows\Fractal Blue.bmp
2009-05-18 22:54 <DIR> --d----- c:\program files\HPQ
2009-05-18 22:54 176,128 a------- c:\windows\system32\bcmwlu00.EXE
2009-05-18 22:54 69,632 a------- c:\windows\system32\bcmwlD2K.EXE
2009-05-18 22:54 371,712 -------- c:\windows\system32\drivers\BCMWL5.SYS
2009-05-18 22:53 <DIR> --d----- c:\program files\Apoint2K
2009-05-18 22:52 <DIR> --d----- c:\windows\tiinst
2009-05-18 22:49 <DIR> --d----- c:\program files\Norton Internet Security
2009-05-18 22:48 <DIR> --d----- c:\docume~1\tycars~1\applic~1\Symantec
2009-05-18 22:48 104,144 a------- c:\windows\system32\drivers\SYMEVENT.SYS
2009-05-18 22:48 83,168 a------- c:\windows\system32\S32EVNT1.DLL
2009-05-18 22:48 <DIR> --d----- c:\program files\Symantec
2009-05-18 22:48 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Symantec
2009-05-18 22:48 <DIR> --d----- c:\program files\common files\Symantec Shared
2009-05-18 22:47 <DIR> --d----- c:\windows\system32\ReinstallBackups
2009-05-18 22:47 69,760 a------- c:\windows\system32\drivers\Rtlnicxp.sys
2009-05-18 22:47 1,268,204 a----r-- c:\windows\system32\drivers\AGRSM.sys
2009-05-18 22:47 88,363 a----r-- c:\windows\AGRSMMSG.exe
2009-05-18 22:47 64,512 a----r-- c:\windows\agrsmdel.exe
2009-05-18 22:47 <DIR> --d----- c:\windows\Options
2009-05-18 22:45 1,285,632 a------- c:\windows\system32\SMMedia.dll
2009-05-18 22:45 765,952 a------- c:\windows\system\crlds3d.dll
2009-05-18 22:45 65,536 a------- c:\windows\system32\Audio3d.dll
2009-05-18 22:45 <DIR> --d----- c:\windows\VirtualEar
2009-05-18 22:45 991,232 a------- c:\windows\system32\virtear.dll
2009-05-18 22:45 259,648 a------- c:\windows\system32\drivers\smwdm.sys
2009-05-18 22:45 49,152 a------- c:\windows\system32\DSndUp.exe
2009-05-18 22:45 45,056 a------- c:\windows\system32\CleanUp.exe
2009-05-18 22:45 <DIR> --d----- c:\program files\Analog Devices
2009-05-18 22:44 <DIR> --d----- C:\SYSTEM.SAV
2009-05-18 22:39 <DIR> --d----- c:\documents and settings\Ty Carson
2009-05-18 22:34 <DIR> --ds---- c:\windows\system32\Microsoft
2009-05-18 22:34 8,192 a------- c:\windows\REGLOCS.OLD
2009-05-18 22:32 236,544 ac------ c:\windows\system32\dllcache\smi2smir.exe
2009-05-18 22:31 66,082 ac------ c:\windows\system32\dllcache\c_20297.nls
2009-05-18 22:30 <DIR> --dsh--- c:\documents and settings\all users\DRM
2009-05-18 22:30 488 a---hr-- c:\windows\system32\WindowsLogon.manifest
2009-05-18 22:30 488 a---hr-- c:\windows\system32\logonui.exe.manifest
2009-05-18 22:30 <DIR> --ds---- c:\windows\Downloaded Program Files
2009-05-18 22:30 <DIR> --d--r-- c:\windows\Offline Web Pages
2009-05-18 22:30 749 a---hr-- c:\windows\WindowsShell.Manifest
2009-05-18 22:30 749 a---hr-- c:\windows\system32\wuaucpl.cpl.manifest
2009-05-18 22:30 749 a---hr-- c:\windows\system32\sapi.cpl.manifest
2009-05-18 22:30 749 a---hr-- c:\windows\system32\nwc.cpl.manifest
2009-05-18 22:30 749 a---hr-- c:\windows\system32\ncpa.cpl.manifest
2009-05-18 22:30 749 a---hr-- c:\windows\system32\cdplayer.exe.manifest
2009-05-18 22:30 <DIR> --d-h--- c:\program files\WindowsUpdate
2009-05-18 22:28 <DIR> --d----- c:\program files\common files\MSSoap
2009-05-18 22:27 <DIR> --d----- c:\program files\Online Services
2009-05-18 22:27 <DIR> --d----- c:\program files\Messenger
2009-05-18 22:27 <DIR> --d----- c:\program files\MSN Gaming Zone
2009-05-18 22:26 <DIR> --d----- c:\program files\Windows NT
2009-05-18 15:19 <DIR> --d----- c:\program files\common files\ODBC
2009-05-18 15:19 <DIR> --d----- c:\program files\common files\SpeechEngines
2009-05-18 15:16 <DIR> --d--r-- c:\documents and settings\all users\Documents

==================== Find3M ====================

2009-05-19 01:13 20,640 -------- c:\windows\system32\drivers\pxhelp20.sys
2009-05-18 22:59 79,167 a------- c:\windows\pchealth\helpctr\offlinecache\index.dat
2009-05-18 22:28 21,640 a------- c:\windows\system32\emptyregdb.dat
2009-03-08 07:34 914,944 a------- c:\windows\system32\wininet.dll
2009-03-08 07:34 43,008 a------- c:\windows\system32\licmgr10.dll
2009-03-08 07:33 18,944 a------- c:\windows\system32\corpol.dll
2009-03-08 07:33 420,352 a------- c:\windows\system32\vbscript.dll
2009-03-08 07:32 72,704 a------- c:\windows\system32\admparse.dll
2009-03-08 07:32 71,680 a------- c:\windows\system32\iesetup.dll
2009-03-08 07:31 34,816 a------- c:\windows\system32\imgutil.dll
2009-03-08 07:31 48,128 a------- c:\windows\system32\mshtmler.dll
2009-03-08 07:31 45,568 a------- c:\windows\system32\mshta.exe
2009-03-08 07:22 156,160 a------- c:\windows\system32\msls31.dll
2009-03-06 10:44 283,648 a------- c:\windows\system32\pdh.dll

============= FINISH: 5:32:18.28 ===============

The Attach log is attached in a .zip folder as requested. (Sorry for so many of the files being attached, I accidentally clicked it three times and therefore it was uploaded three times. All of the files are the same - please only download once).

Thanks again!

Attached Files


Edited by about_to_kill_my_pc, 02 June 2009 - 04:37 AM.

Posted Image
as usual, i'm about to kill my pc...

#6 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:02:53 AM

Posted 02 June 2009 - 08:54 AM

Hi about_to_kill_my_pc,

I don't see anything nasty in your logs, are you having any symptoms that suggest you might be infected?


Please download Malwarebytes' Anti-Malware from Here

Note: If you already have Malwarebytes' Anti-Malware, just update then run it.
  • Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Full Scan", then click Scan (the scan may take some time to finish, so please be patient).
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy and Paste the entire report in your next reply .
Note: If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.

unite.jpg


#7 about_to_kill_my_pc

about_to_kill_my_pc
  • Topic Starter

  • Members
  • 18 posts
  • OFFLINE
  •  
  • Local time:09:53 PM

Posted 02 June 2009 - 03:20 PM

I don't think I am, but thanks for your help anyway!
Posted Image
as usual, i'm about to kill my pc...

#8 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:02:53 AM

Posted 02 June 2009 - 04:04 PM

Since this issue appears resolved ... this Topic is closed. Glad I could help.

If you need this topic reopened, please request this by sending me a PM
with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.

unite.jpg





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users