My processor is at 100%

View previous topic View next topic Go down

My processor is at 100%

Post by Stage1 on Sat Jun 05, 2010 2:09 pm

Hi,

After using my computer for a while, my processor maxis out at 100% and will stay that way until I turn it off and restart. But it doesn't do it graduallt. One seceond it hovers around 4-7% and then suddenly , there it goes to 100%. Let me think

Is this a virus or somehting elese?

Thanks

Stage1
Novice
Novice

Posts Posts : 10
Joined Joined : 2009-03-28
OS OS : XP
Points Points : 28178
# Likes # Likes : 0

View user profile

Back to top Go down

Re: My processor is at 100%

Post by Belahzur on Sat Jun 05, 2010 6:10 pm

Download [You must be registered and logged in to see this link.] by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245091
# Likes # Likes : 1

View user profile

Back to top Go down

Re: My processor is at 100%

Post by Stage1 on Mon Jun 07, 2010 12:01 pm

OTL Extras logfile created on: 6/7/2010 10:53:28 AM - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:Documents and SettingsMichaelDesktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

511.00 Mb Total Physical Memory | 208.00 Mb Available Physical Memory | 41.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 68.00% Paging File free
Paging file location(s): C:pagefile.sys 1000 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:WINDOWS | %ProgramFiles% = C:Program Files
Drive C: | 127.99 Gb Total Space | 111.86 Gb Free Space | 87.39% Space Free | Partition Type: NTFS
Drive D: | 175.96 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
Drive F: | 37.24 Gb Total Space | 25.57 Gb Free Space | 68.66% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MIKESOFFICE
Current User Name: Michael
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINESOFTWAREClasses]

[HKEY_CURRENT_USERSOFTWAREClasses]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINESOFTWAREClassesshell[command]command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:Program FilesMicrosoft OfficeOFFICE11msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%system32rundll32.exe %SystemRoot%system32shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoring]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringAhnlabAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringKasperskyAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringMcAfeeAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringMcAfeeFirewall]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringPandaAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringPandaFirewall]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringSophosAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringSymantecAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringSymantecFirewall]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringTinyFirewall]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringTrendAntiVirus]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringTrendFirewall]

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftSecurity CenterMonitoringZoneLabsFirewall]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirewallPolicyDomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirewallPolicyDomainProfileGloballyOpenPortsList]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirewallPolicyStandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirewallPolicyStandardProfileGloballyOpenPortsList]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirewallPolicyDomainProfileAuthorizedApplicationsList]

[HKEY_LOCAL_MACHINESYSTEMCurrentControlSetServicesSharedAccessParametersFirewallPolicyStandardProfileAuthorizedApplicationsList]
"C:Program FilesAVGAVG8avgupd.exe" = C:Program FilesAVGAVG8avgupd.exe:*:Enabled:avgupd.exe -- File not found
"C:Program FilesAVGAVG8avgemc.exe" = C:Program FilesAVGAVG8avgemc.exe:*:Enabled:avgemc.exe -- File not found
"C:Program FilesAVGAVG8avgnsx.exe" = C:Program FilesAVGAVG8avgnsx.exe:*:Enabled:avgnsx.exe -- File not found
"C:Program FilesMozilla Firefoxfirefox.exe" = C:Program FilesMozilla Firefoxfirefox.exe:*:Disabled:Firefox -- (Mozilla Corporation)
"C:Program FilesiTunesiTunes.exe" = C:Program FilesiTunesiTunes.exe:*:Enabled:iTunes -- (Apple Inc.)
"C:Program FilesAVGAVG9avgam.exe" = C:Program FilesAVGAVG9avgam.exe:*:Enabled:avgam.exe -- (AVG Technologies CZ, s.r.o.)
"C:Program FilesAVGAVG9avgdiagex.exe" = C:Program FilesAVGAVG9avgdiagex.exe:*:Enabled:avgdiagex.exe -- (AVG Technologies CZ, s.r.o.)
"C:Program FilesAVGAVG9avgemc.exe" = C:Program FilesAVGAVG9avgemc.exe:*:Enabled:avgemc.exe -- (AVG Technologies CZ, s.r.o.)
"C:Program FilesAVGAVG9avgupd.exe" = C:Program FilesAVGAVG9avgupd.exe:*:Enabled:avgupd.exe -- (AVG Technologies CZ, s.r.o.)
"C:Program FilesAVGAVG9avgnsx.exe" = C:Program FilesAVGAVG9avgnsx.exe:*:Enabled:avgnsx.exe -- (AVG Technologies CZ, s.r.o.)
"C:Program FilesAIMaim.exe" = C:Program FilesAIMaim.exe:*:Enabled:AIM -- (AOL Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINESOFTWAREMicrosoftWindowsCurrentVersionUninstall]
"{14151BDC-63C7-4DB0-B434-6F78016B1E47}_is1" = eCover Creator
"{18d51423-e738-4d38-956a-b0eba27fec07}" = Jiffy PDF Maker
"{190D0C6E-C8A7-4019-8FB5-FD041EC1F2D2}" = Mobile Broadband Drivers
"{216AB108-2AE1-4130-B3D5-20B2C4C80F8F}" = QuickTime
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java(TM) 6 Update 20
"{3248F0A8-6813-11D6-A77B-00B0D0160050}" = Java(TM) 6 Update 5
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5EFCBB42-36AB-4FF9-B90C-E78C7B9EE7B3}" = iTunes
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{809987B2-F964-11D4-A1A5-00104BD190B1}" = QuickBooks Pro 2002
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-7AD7-1033-7B44-A82000000003}" = Adobe Reader 8.2.2
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CAA5CA1E-B94E-406E-A55B-DA0571460B00}" = Word Wizard
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BB}" = WinZip 14.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D78653C3-A8FF-415F-92E6-D774E634FF2D}" = Dell ResourceCD
"{E6B87DC4-2B3D-4483-ADFF-E483BF718991}" = OpenOffice.org 3.1
"{F0A37341-D692-11D4-A984-009027EC0A9C}" = SoundMAX
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AI RoboForm" = AI RoboForm (All Users)
"AIM_7" = AIM 7
"AVG9Uninstall" = AVG 9.0
"Comment Hut Lite" = Comment Hut Lite 2009
"Core FTP LE 2.1" = Core FTP LE 2.1
"FileZilla Client" = FileZilla Client 3.3.2.1
"IDNMitigationAPIs" = Microsoft Internationalized Domain Names Mitigation APIs
"ie7" = Windows Internet Explorer 7
"ie8" = Windows Internet Explorer 8
"Jiffy PDF Maker" = Jiffy PDF Maker
"Lexmark X73" = Lexmark X73
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.6.3)" = Mozilla Firefox (3.6.3)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"NLSDownlevelMapping" = Microsoft National Language Support Downlevel APIs
"NoteTab Light 5_is1" = NoteTab Light 5 (Remove only)
"NVIDIA" = NVIDIA Windows 2000/XP Display Drivers
"PrimoPDF" = PrimoPDF -- by Nitro PDF Software
"PrimoPDF4.0.2.5" = PrimoPDF
"Security Task Manager" = Security Task Manager 1.7h
"SoftwareUpdUtility" = Download Updater (AOL LLC)
"Theophilos 3.0_is1" = Theophilos 3.0
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinGimp-2.0_is1" = GIMP 2.6.4
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USERSOFTWAREMicrosoftWindowsCurrentVersionUninstall]
"GoToMeeting" = GoToMeeting 4.5.0.456

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 10/26/2009 01:52:57 PM | Computer Name = MIKESOFFICE | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 10/26/2009 01:52:59 PM | Computer Name = MIKESOFFICE | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3523, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 11/17/2009 04:54:52 PM | Computer Name = MIKESOFFICE | Source = Application Error | ID = 1000
Description = Faulting application coreftp.exe, version 2.1.0.0, faulting module
ntdll.dll, version 5.1.2600.5755, fault address 0x00010cce.

Error - 11/17/2009 04:54:56 PM | Computer Name = MIKESOFFICE | Source = Application Error | ID = 1000
Description = Faulting application coreftp.exe, version 2.1.0.0, faulting module
ntdll.dll, version 5.1.2600.5755, fault address 0x00010cce.

Error - 11/27/2009 10:33:14 AM | Computer Name = MIKESOFFICE | Source = Microsoft Office 11 | ID = 1000
Description = Faulting application winword.exe, version 11.0.5604.0, stamp 3f314a2f,
faulting module ophc_ui.dll, version 1.2.7.0, stamp 42b77c20, debug? 0, fault address
0x000394ae.

Error - 12/2/2009 12:38:13 PM | Computer Name = MIKESOFFICE | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.1.3593, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

Error - 12/4/2009 01:40:40 PM | Computer Name = MIKESOFFICE | Source = Application Error | ID = 1000
Description = Faulting application coreftp.exe, version 2.1.0.0, faulting module
coreftp.exe, version 2.1.0.0, fault address 0x001449cd.

Error - 12/6/2009 06:40:41 PM | Computer Name = MIKESOFFICE | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 12/7/2009 02:48:26 PM | Computer Name = MIKESOFFICE | Source = Application Error | ID = 1000
Description = Faulting application kompozer.exe, version 0.0.0.0, faulting module
xpcom.dll, version 0.0.0.0, fault address 0x0003a619.

Error - 12/8/2009 05:50:06 PM | Computer Name = MIKESOFFICE | Source = Application Hang | ID = 1002
Description = Hanging application msimn.exe, version 6.0.2900.5512, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

[ System Events ]
Error - 6/2/2010 12:54:29 PM | Computer Name = MIKESOFFICE | Source = Srv | ID = 2000
Description = The server's call to a system service failed unexpectedly.

Error - 6/2/2010 12:54:29 PM | Computer Name = MIKESOFFICE | Source = Srv | ID = 2000
Description = The server's call to a system service failed unexpectedly.

Error - 6/2/2010 12:54:29 PM | Computer Name = MIKESOFFICE | Source = Srv | ID = 2000
Description = The server's call to a system service failed unexpectedly.

Error - 6/2/2010 01:27:47 PM | Computer Name = MIKESOFFICE | Source = Service Control Manager | ID = 7000
Description = The Lexmark X73 MFP Scanner service failed to start due to the following
error: %%1058

Error - 6/2/2010 02:39:20 PM | Computer Name = MIKESOFFICE | Source = Service Control Manager | ID = 7034
Description = The iPod Service service terminated unexpectedly. It has done this
1 time(s).

Error - 6/3/2010 09:24:33 AM | Computer Name = MIKESOFFICE | Source = Service Control Manager | ID = 7000
Description = The Lexmark X73 MFP Scanner service failed to start due to the following
error: %%1058

Error - 6/5/2010 01:46:05 PM | Computer Name = MIKESOFFICE | Source = Service Control Manager | ID = 7034
Description = The iPod Service service terminated unexpectedly. It has done this
1 time(s).

Error - 6/5/2010 02:44:04 PM | Computer Name = MIKESOFFICE | Source = Service Control Manager | ID = 7000
Description = The Lexmark X73 MFP Scanner service failed to start due to the following
error: %%1058

Error - 6/5/2010 02:45:02 PM | Computer Name = MIKESOFFICE | Source = Service Control Manager | ID = 7034
Description = The iPod Service service terminated unexpectedly. It has done this
1 time(s).

Error - 6/6/2010 02:50:02 PM | Computer Name = MIKESOFFICE | Source = Service Control Manager | ID = 7000
Description = The Lexmark X73 MFP Scanner service failed to start due to the following
error: %%1058


< End of report >

Stage1
Novice
Novice

Posts Posts : 10
Joined Joined : 2009-03-28
OS OS : XP
Points Points : 28178
# Likes # Likes : 0

View user profile

Back to top Go down

Re: My processor is at 100%

Post by Stage1 on Mon Jun 07, 2010 12:02 pm

OTL logfile created on: 6/7/2010 10:53:28 AM - Run 1
OTL by OldTimer - Version 3.2.5.3 Folder = C:Documents and SettingsMichaelDesktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

511.00 Mb Total Physical Memory | 208.00 Mb Available Physical Memory | 41.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 68.00% Paging File free
Paging file location(s): C:pagefile.sys 1000 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:WINDOWS | %ProgramFiles% = C:Program Files
Drive C: | 127.99 Gb Total Space | 111.86 Gb Free Space | 87.39% Space Free | Partition Type: NTFS
Drive D: | 175.96 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
Drive F: | 37.24 Gb Total Space | 25.57 Gb Free Space | 68.66% Space Free | Partition Type: NTFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MIKESOFFICE
Current User Name: Michael
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/06/07 10:52:32 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:Documents and SettingsMichaelDesktopOTL.exe
PRC - [2010/06/01 22:47:22 | 002,065,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgtray.exe
PRC - [2010/06/01 22:47:21 | 000,515,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgrsx.exe
PRC - [2010/06/01 22:47:20 | 000,620,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgnsx.exe
PRC - [2010/06/01 22:47:16 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgfws9.exe
PRC - [2010/06/01 22:47:14 | 000,722,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgcsrvx.exe
PRC - [2010/06/01 22:47:13 | 001,101,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgchsvx.exe
PRC - [2010/03/05 09:57:43 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgwdsvc.exe
PRC - [2010/03/05 09:57:27 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgemc.exe
PRC - [2010/03/05 09:57:19 | 000,836,888 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:Program FilesAVGAVG9avgam.exe
PRC - [2010/01/27 23:07:23 | 000,160,592 | ---- | M] (Siber Systems) -- C:Program FilesSiber SystemsAI RoboFormrobotaskbaricon.exe
PRC - [2009/11/18 15:00:00 | 000,495,432 | R--- | M] (WinZip Computing, S.L.) -- C:Program FilesWinZipWZQKPICK.EXE
PRC - [2008/04/13 19:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:WINDOWSexplorer.exe
PRC - [2005/02/22 03:24:32 | 000,315,392 | ---- | M] () -- C:QBOOKSWComponentsQBAgentqbdagent2002.exe
PRC - [2002/08/21 08:13:12 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32WISPTIS.EXE
PRC - [2001/10/08 18:21:28 | 000,053,248 | ---- | M] (Silitek Corp.) -- C:Program FilesLexmarkX73ACMonitor_X73.exe
PRC - [2001/07/11 14:08:38 | 000,053,248 | ---- | M] (Jetsoft Development Company) -- C:Program FilesLexmarkX73AcBtnMgr_X73.exe


========== Modules (SafeList) ==========

MOD - [2010/06/07 10:52:32 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:Documents and SettingsMichaelDesktopOTL.exe
MOD - [2008/04/13 19:10:20 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - [2010/06/01 22:47:16 | 002,331,544 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:Program FilesAVGAVG9avgfws9.exe -- (avgfws9)
SRV - [2010/03/05 09:57:43 | 000,308,064 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:Program FilesAVGAVG9avgwdsvc.exe -- (avg9wd)
SRV - [2010/03/05 09:57:27 | 000,916,760 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:Program FilesAVGAVG9avgemc.exe -- (avg9emc)
SRV - [2010/02/23 14:04:34 | 000,369,920 | ---- | M] () [On_Demand | Stopped] -- C:Program FilesAVGAVG9ToolbarToolbarBroker.exe -- (AVG Security Toolbar Service)
SRV - [2005/05/10 08:19:24 | 000,024,576 | ---- | M] (Oki Data Corporation) [On_Demand | Stopped] -- C:WINDOWSsystem32spooldriversw32x863OPHCLDCS.EXE -- (OKI OPHC DCS Loader)


========== Driver Services (SafeList) ==========

DRV - [2010/06/01 22:47:21 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:WINDOWSsystem32driversavgtdix.sys -- (AvgTdiX)
DRV - [2010/06/01 22:47:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:WINDOWSsystem32driversavgmfx86.sys -- (AvgMfx86)
DRV - [2010/03/05 09:57:26 | 000,216,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:WINDOWSsystem32driversavgldx86.sys -- (AvgLdx86)
DRV - [2010/03/05 09:57:21 | 000,052,872 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:WINDOWSSystem32Driversavgrkx86.sys -- (AvgRkx86)
DRV - [2009/10/26 20:23:03 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversavgfwdx.sys -- (Avgfwfd)
DRV - [2009/10/26 20:23:03 | 000,030,104 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversavgfwdx.sys -- (Avgfwdx)
DRV - [2007/04/19 13:09:42 | 000,194,048 | ---- | M] (Novatel Wireless Inc) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversNWADIenum.sys -- (NWADI)
DRV - [2007/04/19 13:09:42 | 000,099,200 | ---- | M] (Novatel Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversnwusbser.sys -- (NWUSBPort)
DRV - [2007/04/19 13:09:42 | 000,099,200 | ---- | M] (Novatel Wireless Inc.) [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversnwusbmdm.sys -- (NWUSBModem)
DRV - [2004/08/04 00:41:35 | 000,606,684 | ---- | M] (LT) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversltmdmnt.sys -- (ltmodem5)
DRV - [2003/07/28 18:19:00 | 001,341,339 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversnv4_mini.sys -- (nv)
DRV - [2001/08/17 08:57:38 | 000,016,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversMODEMCSA.sys -- (MODEMCSA)
DRV - [2001/08/17 07:50:26 | 000,731,648 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversnv4.sys -- (nv4)
DRV - [2001/08/17 07:20:04 | 000,096,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:WINDOWSsystem32driversac97intc.sys -- (ac97intc) Intel(r) 82801 Audio Driver Install Service (WDM)
DRV - [2001/08/17 07:11:42 | 000,029,696 | ---- | M] (CNet Technology, Inc. ) [Kernel | On_Demand | Running] -- C:WINDOWSsystem32driversDM9PCI5.SYS -- (DM9102) DAVICOM 9102(A)
DRV - [2001/06/28 14:26:16 | 000,018,024 | ---- | M] ( ) [Kernel | Auto | Stopped] -- C:WINDOWSsystem32driversLxarscan.sys -- (LXARScan)
DRV - [2001/05/14 21:15:40 | 000,010,368 | ---- | M] (Dell Computer Corporation) [Kernel | System | Running] -- C:WINDOWSSYSTEM32DRIVERSOMCI.SYS -- (OMCI)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Search Page = [You must be registered and logged in to see this link.]
IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU..URLSearchHook: {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:Program FilesAVGAVG9ToolbarIEToolbar.dll ()
IE - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {22119944-ED35-4ab1-910B-E619EA06A115}:6.9.98
FF - prefs.js..extensions.enabledItems: [You must be registered and logged in to see this link.]:1.0
FF - prefs.js..extensions.enabledItems: seostatus@rubyweb:1.5.7

FF - HKLMsoftwaremozillaFirefoxExtensions\{3f963a5b-e555-4543-90e2-c3908898db71}: C:Program FilesAVGAVG9Firefox [2010/06/02 07:42:03 | 000,000,000 | ---D | M]
FF - HKLMsoftwaremozillaFirefoxExtensions\{22119944-ED35-4ab1-910B-E619EA06A115}: C:Program FilesSiber SystemsAI RoboFormFirefox [2008/03/10 16:07:43 | 000,000,000 | ---D | M]
FF - HKLMsoftwaremozillaFirefoxExtensions\avg@igeared: C:Program FilesAVGAVG9ToolbarFirefoxavg@igeared [2010/04/27 20:34:27 | 000,000,000 | ---D | M]
FF - HKLMsoftwaremozillaMozilla Firefox 3.6.3extensions\Components: C:Program FilesMozilla Firefoxcomponents [2010/05/29 22:09:36 | 000,000,000 | ---D | M]
FF - HKLMsoftwaremozillaMozilla Firefox 3.6.3extensions\Plugins: C:Program FilesMozilla Firefoxplugins [2010/06/01 22:06:50 | 000,000,000 | ---D | M]

[2010/06/01 22:30:05 | 000,000,000 | ---D | M] -- C:Documents and SettingsMichaelApplication DataMozillaExtensions
[2010/06/07 06:31:04 | 000,000,000 | ---D | M] -- C:Documents and SettingsMichaelApplication DataMozillaFirefoxProfilesm7pbmj4m.defaultextensions
[2010/06/01 22:45:54 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:Documents and SettingsMichaelApplication DataMozillaFirefoxProfilesm7pbmj4m.defaultextensions{20a82645-c095-46ed-80e3-08825760534b}
[2010/06/01 22:30:05 | 000,000,000 | ---D | M] (No name found) -- C:Documents and SettingsMichaelApplication DataMozillaFirefoxProfilesm7pbmj4m.defaultextensions{c2f863cd-0429-48c7-bb54-db756a951760}
[2010/06/01 22:30:05 | 000,000,000 | ---D | M] (No name found) -- C:Documents and SettingsMichaelApplication DataMozillaFirefoxProfilesm7pbmj4m.defaultextensions{d57c9ff1-6389-48fc-b770-f78bd89b6e8a}
[2010/06/02 15:48:52 | 000,000,000 | ---D | M] -- C:Documents and SettingsMichaelApplication DataMozillaFirefoxProfilesm7pbmj4m.defaultextensionsseostatus@rubyweb
[2010/06/01 22:30:05 | 000,000,000 | ---D | M] -- C:Documents and SettingsMichaelApplication [You must be registered and logged in to see this link.]
[2010/06/07 06:31:04 | 000,000,000 | ---D | M] -- C:Program FilesMozilla Firefoxextensions
[2010/04/27 20:55:29 | 000,000,000 | ---D | M] (Java Console) -- C:Program FilesMozilla Firefoxextensions{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/04/27 20:55:05 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:Program FilesMozilla FirefoxpluginsnpdeployJava1.dll
[2008/03/16 19:01:00 | 000,000,925 | ---- | M] () -- C:Program FilesMozilla Firefoxsearchpluginsconduit.xml

O1 HOSTS File: ([2009/03/29 08:25:29 | 000,000,027 | ---- | M]) - C:WINDOWSsystem32driversetchosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesCommon FilesAdobeAcrobatActiveXAcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Trellian BHO Impl) - {24180B00-2EB6-11d7-BD6F-004854603DCE} - Reg Error: Value error. File not found
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:Program FilesAVGAVG9avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:Program FilesSiber SystemsAI RoboFormroboform.dll (Siber Systems Inc.)
O2 - BHO: (AVG Security Toolbar BHO) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:Program FilesAVGAVG9ToolbarIEToolbar.dll ()
O3 - HKLM..Toolbar: (&RoboForm) - {724d43a0-0d85-11d4-9908-00400523e39a} - C:Program FilesSiber SystemsAI RoboFormroboform.dll (Siber Systems Inc.)
O3 - HKLM..Toolbar: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:Program FilesAVGAVG9ToolbarIEToolbar.dll ()
O3 - HKCU..ToolbarWebBrowser: (Trellian &Toolbar) - {71AAABE5-1F0F-11D7-BD6F-004854603DCE} - Reg Error: Value error. File not found
O3 - HKCU..ToolbarWebBrowser: (&RoboForm) - {724D43A0-0D85-11D4-9908-00400523E39A} - C:Program FilesSiber SystemsAI RoboFormroboform.dll (Siber Systems Inc.)
O3 - HKCU..ToolbarWebBrowser: (AVG Security Toolbar) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:Program FilesAVGAVG9ToolbarIEToolbar.dll ()
O4 - HKLM..Run: [Adobe Reader Speed Launcher] C:Program FilesAdobeReader 8.0ReaderReader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..Run: [AVG9_TRAY] C:Program FilesAVGAVG9avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..Run: [Lexmark X73 Button Manager] C:Program FilesLexmarkX73AcBtnMgr_X73.exe (Jetsoft Development Company)
O4 - HKLM..Run: [Lexmark X73 Button Monitor] C:Program FilesLexmarkX73ACMonitor_X73.exe (Silitek Corp.)
O4 - HKLM..Run: [NvCplDaemon] C:WINDOWSSystem32NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..Run: [nwiz] C:WINDOWSSystem32nwiz.exe (NVIDIA Corporation)
O4 - HKLM..Run: [PrinTray] C:WINDOWSsystem32spooldriversw32x863printray.exe (Lexmark)
O4 - HKCU..Run: [NvMediaCenter] C:WINDOWSSystem32NVMCTRAY.DLL (NVIDIA Corporation)
O4 - HKCU..Run: [RoboForm] C:Program FilesSiber SystemsAI RoboFormRoboTaskBarIcon.exe (Siber Systems)
O4 - Startup: C:Documents and SettingsAll UsersStart MenuProgramsStartupQuickBooks 2002 Delivery Agent.lnk = C:QBOOKSWComponentsQBAgentqbdagent2002.exe ()
O4 - Startup: C:Documents and SettingsAll UsersStart MenuProgramsStartupWinZip Quick Pick.lnk = C:Program FilesWinZipWZQKPICK.EXE (WinZip Computing, S.L.)
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: HonorAutoRunSetting = 1
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveAutoRun = 67108863
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 323
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDrives = 0
O7 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 323
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveAutoRun = 67108863
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDrives = 0
O8 - Extra context menu item: Customize Menu - C:Program FilesSiber SystemsAI RoboFormRoboFormComCustomizeIEMenu.html ()
O8 - Extra context menu item: Fill Forms - C:Program FilesSiber SystemsAI RoboFormRoboFormComFillForms.html ()
O8 - Extra context menu item: RoboForm Toolbar - C:Program FilesSiber SystemsAI RoboFormRoboFormComShowToolbar.html ()
O8 - Extra context menu item: Save Forms - C:Program FilesSiber SystemsAI RoboFormRoboFormComSavePass.html ()
O9 - Extra Button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:Program FilesSiber SystemsAI RoboFormRoboFormComFillForms.html ()
O9 - Extra 'Tools' menuitem : Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - C:Program FilesSiber SystemsAI RoboFormRoboFormComFillForms.html ()
O9 - Extra Button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:Program FilesSiber SystemsAI RoboFormRoboFormComSavePass.html ()
O9 - Extra 'Tools' menuitem : Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - C:Program FilesSiber SystemsAI RoboFormRoboFormComSavePass.html ()
O9 - Extra Button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - C:Program FilesSiber SystemsAI RoboFormRoboFormComShowToolbar.html ()
O9 - Extra 'Tools' menuitem : RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - C:Program FilesSiber SystemsAI RoboFormRoboFormComShowToolbar.html ()
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} [You must be registered and logged in to see this link.] (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_20)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_20)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_20)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [You must be registered and logged in to see this link.] (Shockwave Flash Object)
O16 - DPF: Microsoft XML Parser for Java [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 97.64.168.12 97.64.179.251
O18 - ProtocolHandleravgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:Program FilesAVGAVG9ToolbarIEToolbar.dll ()
O18 - ProtocolHandlerlinkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:Program FilesAVGAVG9avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:WINDOWSexplorer.exe (Microsoft Corporation)
O20 - WinlogonNotifyavgrsstarter: DllName - avgrsstx.dll - C:WINDOWSSystem32avgrsstx.dll (AVG Technologies CZ, s.r.o.)
O24 - Desktop WallPaper: C:Documents and SettingsMichaelLocal SettingsApplication DataMicrosoftWallpaper1.bmp
O24 - Desktop BackupWallPaper: C:Documents and SettingsMichaelLocal SettingsApplication DataMicrosoftWallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008/03/10 12:26:27 | 000,000,000 | ---- | M] () - C:AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM..comfile [open] -- "%1" %*
O35 - HKLM..exefile [open] -- "%1" %*
O37 - HKLM...com [@ = ComFile] -- "%1" %*
O37 - HKLM...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2100/02/08 19:03:54 | 000,053,248 | ---- | C] (Silitek Corp.) -- C:Program FilesACMonitor_X73.exe
[2010/06/07 10:52:31 | 000,571,904 | ---- | C] (OldTimer Tools) -- C:Documents and SettingsMichaelDesktopOTL.exe
[2010/06/07 08:42:48 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopPLR Articles
[2010/06/06 21:02:30 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopiSeller
[2010/06/06 16:00:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopPets
[2010/06/05 11:54:53 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopReports
[2010/06/05 11:54:00 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopImages
[2010/06/05 10:22:36 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopAffiliate Article Writers
[2010/06/03 09:00:27 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopAoto Content Cash
[2010/06/02 20:46:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelMy DocumentsMy Pictures
[2010/06/02 20:43:45 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelMy DocumentsRoboform
[2010/06/02 16:30:09 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopHard Cash Hijack
[2010/06/02 15:44:06 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelMy DocumentsDownloads
[2010/06/02 13:03:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelMy DocumentsArticles
[2010/06/01 22:39:44 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelMy Documents
[2010/06/01 22:38:57 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelFavorites
[2010/06/01 22:38:20 | 000,000,000 | -HSD | C] -- C:Documents and SettingsMichaelCookies
[2010/06/01 22:31:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichael.gimp-2.6
[2010/06/01 22:31:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichael.gimp-2.4
[2010/06/01 22:31:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichael.gegl-0.0
[2010/06/01 22:31:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataAVG9
[2010/06/01 22:31:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataApple Computer
[2010/06/01 22:31:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataAdobe
[2010/06/01 22:31:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication Dataacccore
[2010/06/01 22:31:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichael.webrenderer
[2010/06/01 22:31:02 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichael.thumbnails
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataIdentities
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataIBP
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataHelp
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication Datagtk-2.0
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataGoogle
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataFileZilla
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataDocx2Rtf
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataCoreFTP
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataBlumentals
[2010/06/01 22:31:01 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataAVS4YOU
[2010/06/01 22:31:00 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataLiving Easy Software, LLC
[2010/06/01 22:31:00 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataKompoZer
[2010/06/01 22:30:09 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataMalwarebytes
[2010/06/01 22:30:09 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataMacromedia
[2010/06/01 22:30:05 | 000,000,000 | --SD | C] -- C:Documents and SettingsMichaelApplication DataMicrosoft
[2010/06/01 22:30:04 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataNwDocx
[2010/06/01 22:30:04 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataNoteTab Light
[2010/06/01 22:30:04 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataMozilla
[2010/06/01 22:30:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataSmith Micro
[2010/06/01 22:30:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataskypePM
[2010/06/01 22:30:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataPrimoPDF
[2010/06/01 22:30:03 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataOpenOffice.org
[2010/06/01 22:29:52 | 000,000,000 | RH-D | C] -- C:Documents and SettingsMichaelApplication Data
[2010/06/01 22:29:52 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataWinRAR
[2010/06/01 22:29:52 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataViralSubmitter
[2010/06/01 22:29:52 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataUniblue
[2010/06/01 22:29:52 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataTrellian
[2010/06/01 22:29:52 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelApplication DataSun
[2010/06/01 22:29:03 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopActive Websites
[2010/06/01 22:27:56 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopAffiliate Maverick
[2010/06/01 22:27:48 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopClickBank
[2010/06/01 22:27:48 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopAlex
[2010/06/01 22:27:46 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopCPA
[2010/06/01 22:27:35 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopIThemes WP
[2010/06/01 22:27:28 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopKompoZer 0.7.10
[2010/06/01 22:27:13 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopMr House Doctor
[2010/06/01 22:27:13 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopMiracle Bot
[2010/06/01 22:24:16 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopNew Briefcase
[2010/06/01 22:24:11 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopNew Site Creation at Work
[2010/06/01 22:24:10 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopOffice Documents
[2010/06/01 22:23:48 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopOpenOffice.org 3.1 (en-US) Installation Files
[2010/06/01 22:23:47 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopPiano
[2010/06/01 22:23:43 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopSite repair
[2010/06/01 22:17:32 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopSTUFF
[2010/06/01 22:17:30 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopSwipe
[2010/06/01 22:17:30 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopThe Launch Coach
[2010/06/01 22:17:26 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopTraffic Hub
[2010/06/01 22:17:21 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelDesktopworkin
[2010/06/01 22:17:21 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopWorking
[2010/06/01 22:17:17 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktopWP Plugins and Templates
[2010/06/01 22:17:17 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelDesktop
[2010/06/01 22:17:16 | 000,000,000 | -HSD | C] -- C:Documents and SettingsMichaelIETldCache
[2010/06/01 22:17:16 | 000,000,000 | -HSD | C] -- C:Documents and SettingsMichaelIECompatCache
[2010/06/01 22:17:16 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataAIM
[2010/06/01 22:17:16 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataAdobe
[2010/06/01 22:17:16 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataAd Master
[2010/06/01 22:17:15 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataApple
[2010/06/01 22:17:15 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataAOL
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataLiving_Easy_Software,_LLC
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataJpegSizer 6
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataIsolatedStorage
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataIdentities
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataHelp
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataGoogle
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataDeployment
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataDataComm64
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataAVG Security Toolbar
[2010/06/01 22:17:10 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataApple Computer
[2010/06/01 22:17:09 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataMicrosoft
[2010/06/01 22:17:08 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataWordpress Mage
[2010/06/01 22:17:08 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataWMTools Downloaded Files
[2010/06/01 22:17:08 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataWebPage
[2010/06/01 22:17:08 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataPaint.NET
[2010/06/01 22:17:08 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelLocal SettingsApplication DataMozilla
[2010/06/01 22:17:07 | 000,000,000 | -HSD | C] -- C:Documents and SettingsMichaelPrivacIE
[2010/06/01 22:17:07 | 000,000,000 | -H-D | C] -- C:Documents and SettingsMichaelPrintHood
[2010/06/01 22:17:07 | 000,000,000 | -H-D | C] -- C:Documents and SettingsMichaelLocal Settings
[2010/06/01 22:17:07 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelOkiData
[2010/06/01 22:16:44 | 000,000,000 | RH-D | C] -- C:Documents and SettingsMichaelSendTo
[2010/06/01 22:16:44 | 000,000,000 | RH-D | C] -- C:Documents and SettingsMichaelRecent
[2010/06/01 22:16:42 | 000,000,000 | R--D | C] -- C:Documents and SettingsMichaelStart Menu
[2010/06/01 22:16:42 | 000,000,000 | -HSD | C] -- C:Documents and SettingsMichaelUserData
[2010/06/01 22:16:42 | 000,000,000 | -H-D | C] -- C:Documents and SettingsMichaelTemplates
[2010/06/01 22:16:42 | 000,000,000 | ---D | C] -- C:Documents and SettingsMichaelWINDOWS
[2010/05/31 19:36:31 | 000,000,000 | ---D | C] -- C:Program FilesHard Cash Hijack Traffic Control
[2010/05/28 09:50:59 | 000,000,000 | ---D | C] -- C:Program FileseCover Creator
[2010/05/27 14:06:11 | 000,000,000 | ---D | C] -- C:Program FilesAdolix
[2010/05/27 14:05:48 | 000,903,314 | ---- | C] (Adolix ) -- C:Documents and SettingsMichaelDesktopeCoverEngineer_eCoverPack4.exe
[2001/05/30 22:57:08 | 000,018,024 | ---- | C] ( ) -- C:WINDOWSSystem32driversLxarscan.sys
[9 C:WINDOWSSystem32*.tmp files -> C:WINDOWSSystem32*.tmp -> ]
[5 C:WINDOWS*.tmp files -> C:WINDOWS*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/06/07 10:52:32 | 000,571,904 | ---- | M] (OldTimer Tools) -- C:Documents and SettingsMichaelDesktopOTL.exe
[2010/06/07 09:58:27 | 060,783,488 | ---- | M] () -- C:WINDOWSSystem32driversAvgincavi.avm
[2010/06/06 13:53:58 | 000,508,956 | ---- | M] () -- C:WINDOWSSystem32PerfStringBackup.INI
[2010/06/06 13:53:58 | 000,432,356 | ---- | M] () -- C:WINDOWSSystem32perfh009.dat
[2010/06/06 13:53:58 | 000,067,312 | ---- | M] () -- C:WINDOWSSystem32perfc009.dat
[2010/06/06 13:49:38 | 000,000,288 | ---- | M] () -- C:WINDOWSX73_DS.ini
[2010/06/06 13:49:35 | 000,000,006 | -H-- | M] () -- C:WINDOWStasksSA.DAT
[2010/06/06 13:49:31 | 000,002,048 | --S- | M] () -- C:WINDOWSbootstat.dat
[2010/06/06 13:49:29 | 535,904,256 | -HS- | M] () -- C:hiberfil.sys
[2010/06/06 08:21:18 | 013,553,664 | ---- | M] () -- C:Documents and SettingsMichaelntuser.dat
[2010/06/06 08:21:18 | 000,000,178 | -HS- | M] () -- C:Documents and SettingsMichaelntuser.ini
[2010/06/06 08:20:39 | 005,363,420 | -H-- | M] () -- C:Documents and SettingsMichaelLocal SettingsApplication DataIconCache.db
[2010/06/04 18:44:11 | 000,594,556 | ---- | M] () -- C:WINDOWSSystem32driversAvgiavifw.avm
[2010/06/01 22:47:21 | 000,242,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:WINDOWSSystem32driversavgtdix.sys
[2010/06/01 22:47:21 | 000,029,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:WINDOWSSystem32driversavgmfx86.sys
[2010/06/01 22:37:41 | 000,002,206 | ---- | M] () -- C:WINDOWSSystem32wpa.dbl
[2010/06/01 21:01:00 | 000,000,472 | ---- | M] () -- C:WINDOWStasksAd-Aware Update (Weekly).job
[2010/06/01 18:31:33 | 000,000,664 | ---- | M] () -- C:WINDOWSSystem32d3d9caps.dat
[2010/05/31 11:30:05 | 000,000,284 | ---- | M] () -- C:WINDOWStasksAppleSoftwareUpdate.job
[2010/05/28 09:51:03 | 000,000,697 | ---- | M] () -- C:Documents and SettingsAll UsersDesktopeCover Creator.lnk
[2010/05/27 14:05:49 | 000,903,314 | ---- | M] (Adolix ) -- C:Documents and SettingsMichaelDesktopeCoverEngineer_eCoverPack4.exe
[2010/05/27 12:44:30 | 000,017,476 | ---- | M] () -- C:WINDOWSSystem32OPC3200N.cah
[2010/05/26 03:00:31 | 000,001,374 | ---- | M] () -- C:WINDOWSimsins.BAK
[9 C:WINDOWSSystem32*.tmp files -> C:WINDOWSSystem32*.tmp -> ]
[5 C:WINDOWS*.tmp files -> C:WINDOWS*.tmp -> ]

========== Files Created - No Company Name ==========

[2100/02/23 17:35:34 | 000,000,768 | ---- | C] () -- C:Program Filesx73_lut.dat
[2100/02/23 16:35:34 | 000,000,768 | ---- | C] () -- C:WINDOWSx73_lut.dat
[2100/02/08 18:53:34 | 000,001,437 | ---- | C] () -- C:Program Filesgtx73.ini
[2100/02/08 17:53:34 | 000,001,441 | ---- | C] () -- C:WINDOWSGtX73.ini
[2010/06/01 22:37:41 | 000,024,576 | -H-- | C] () -- C:Documents and SettingsMichaelntuser.dat.LOG
[2010/06/01 18:31:33 | 000,000,664 | ---- | C] () -- C:WINDOWSSystem32d3d9caps.dat
[2010/05/30 16:22:16 | 013,553,664 | ---- | C] () -- C:Documents and SettingsMichaelntuser.dat
[2010/05/28 09:51:03 | 000,000,697 | ---- | C] () -- C:Documents and SettingsAll UsersDesktopeCover Creator.lnk
[2010/04/09 09:48:11 | 000,000,193 | ---- | C] () -- C:WINDOWSkeywordsetting.ini
[2010/01/30 12:20:37 | 000,000,020 | -H-- | C] () -- C:WINDOWSakebook.ini
[2010/01/30 12:20:37 | 000,000,004 | -H-- | C] () -- C:WINDOWSa3kebook.ini
[2010/01/30 12:20:36 | 000,000,072 | ---- | C] () -- C:WINDOWSANS2000.INI
[2009/07/30 20:58:42 | 000,000,314 | ---- | C] () -- C:WINDOWSprimopdf.ini
[2008/05/29 14:24:41 | 000,176,235 | ---- | C] () -- C:WINDOWSSystem32Primomonnt.dll
[2008/05/21 09:57:12 | 000,000,239 | ---- | C] () -- C:WINDOWSTrellian.ini
[2008/05/13 18:08:28 | 000,000,098 | ---- | C] () -- C:WINDOWSOPHC.ini
[2008/03/10 15:37:47 | 000,000,867 | ---- | C] () -- C:WINDOWSWININIT.INI
[2008/03/10 15:37:29 | 000,000,098 | ---- | C] () -- C:WINDOWSQBTIMER.INI
[2008/03/10 15:33:10 | 000,001,454 | ---- | C] () -- C:WINDOWSQfnOnl.ini
[2008/03/10 15:33:10 | 000,000,108 | ---- | C] () -- C:WINDOWSQBWCD.INI
[2008/03/10 15:33:00 | 000,000,362 | ---- | C] () -- C:WINDOWSQDQICK.INI
[2008/03/10 15:33:00 | 000,000,038 | ---- | C] () -- C:WINDOWSACCWIZ.INI
[2008/03/10 15:33:00 | 000,000,021 | ---- | C] () -- C:WINDOWSQFNOA.INI
[2008/03/10 11:56:04 | 000,000,376 | ---- | C] () -- C:WINDOWSODBC.INI
[2001/10/12 02:42:51 | 000,032,768 | ---- | C] () -- C:WINDOWSSystem32LXARICO.DLL
[2001/10/12 02:42:49 | 000,000,643 | ---- | C] () -- C:WINDOWSLEXSTAT.INI
[2001/06/27 13:29:20 | 000,001,094 | ---- | C] () -- C:WINDOWSLexmark_ICM.ini
[2000/12/05 17:56:34 | 000,114,688 | ---- | C] () -- C:WINDOWSlxarscan.dll
[2000/10/24 11:08:36 | 000,118,784 | ---- | C] () -- C:WINDOWSSystem32LFKODAK.DLL
[2000/10/24 11:08:33 | 000,338,944 | ---- | C] () -- C:WINDOWSSystem32lffpx7.dll
[2000/01/11 14:50:48 | 000,000,047 | ---- | C] () -- C:WINDOWSACMonitor_X73.ini
[2000/01/11 14:42:22 | 000,000,288 | ---- | C] () -- C:WINDOWSX73_DS.ini
[1999/04/20 06:15:00 | 000,022,016 | ---- | C] () -- C:WINDOWSunvise32.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 116 bytes -> C:Documents and SettingsAll UsersApplication DataTEMP:D1B5B4F1
@Alternate Data Stream - 110 bytes -> C:Documents and SettingsAll UsersApplication DataTEMP:DFC5A2B2
< End of report >

Stage1
Novice
Novice

Posts Posts : 10
Joined Joined : 2009-03-28
OS OS : XP
Points Points : 28178
# Likes # Likes : 0

View user profile

Back to top Go down

Re: My processor is at 100%

Post by Belahzur on Tue Jun 08, 2010 12:52 pm

Please download and run this tool.

Download Malwarebytes' Anti-Malware from [You must be registered and logged in to see this link.]

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245091
# Likes # Likes : 1

View user profile

Back to top Go down

Re: My processor is at 100%

Post by Stage1 on Tue Jun 08, 2010 9:49 pm

Here is the scan report. The processor is now running normal.

Thank You.

Malwarebytes' Anti-Malware 1.46
[You must be registered and logged in to see this link.]

Database version: 4182

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

6/8/2010 08:42:46 PM
mbam-log-2010-06-08 (20-42-46).txt

Scan type: Quick scan
Objects scanned: 137372
Time elapsed: 17 minute(s), 7 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CURRENT_USERSOFTWAREColdWare (Malware.Trace) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:WINDOWStemp84fb54fe-16f7-4248-b46d-3a19d8f63c7b.tmp (Trojan.Downloader) -> Quarantined and deleted successfully.

Stage1
Novice
Novice

Posts Posts : 10
Joined Joined : 2009-03-28
OS OS : XP
Points Points : 28178
# Likes # Likes : 0

View user profile

Back to top Go down

Re: My processor is at 100%

Post by Belahzur on Thu Jun 10, 2010 5:15 pm

Hello.

  • Download combofix from here
    [You must be registered and logged in to see this link.]
    [You must be registered and logged in to see this link.]

    1. If you are using Firefox, make sure that your download settings are as follows:

    * Tools->Options->Main tab
    * Set to "Always ask me where to Save the files".

    2. During the download, rename Combofix to Combo-Fix as follows:





    3. It is important you rename Combofix during the download, but not after.
    4. Please do not rename Combofix to other names, but only to the one indicated.
    5. Close any open browsers.
    6. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

  • We need to disable your local AV (Anti-virus) before running Combofix.
  • See [You must be registered and logged in to see this link.] for how to disable your AV.
  • Double click on ComboFix.exe.
  • Follow the prompts. NOTE:
  • ComboFix will check to see if the Microsoft Windows Recovery Console is installed.
    ***It's strongly recommended to have the Recovery Console installed before doing any malware removal.***

    **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will automatically proceed with its scan.


  • The Recovery Console provides a recovery/repair mode should a problem occur during a Combofix run.



  • Allow ComboFix to download the Recovery Console.
  • Accept the End-User License Agreement.
  • The Recovery Console will be installed.
  • You will then get this next prompt that asks if you want to continue the malware scan, select yes



  • Allow combofix to run
  • Post C:\combofix.txt back here.

    Note:
    Do not mouseclick combofix's window whilst it's running. That may cause it to stall.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34918
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : 7 Home Premium x64
Points Points : 245091
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum