I have a colleague who is being attacked by some process,
across multiple browsers that is trying to download
shell32.dll (which contains icons and more shell customizations).
I cleaned it out once, i had thought, but like the cat, it came back.
This user won't upgrade her Java because her
favorite chatroom advises against it,
or she can't fully participate because of problems
with the latest java update.
She has permitted me to teamview in with her and I hope to
capture and log more details.
I will run combo-fix again and make certain the firewalls are up
and lets see if i get more reports.
Edited by boopme, 18 July 2012 - 03:09 PM.