1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Inactive Aunties Extremely Slooooow Machine

Discussion in 'Malware and Virus Removal Archive' started by Blue Star, 2010/07/05.

Thread Status:
Not open for further replies.
  1. 2010/07/05
    Blue Star

    Blue Star Well-Known Member Thread Starter

    Joined:
    2010/03/25
    Messages:
    454
    Likes Received:
    2
    [Inactive] Aunties Extremely Slooooow Machine

    DS Log


    DDS (Ver_10-03-17.01) - NTFSx86
    Run by Owner at 14:56:11.83 on Mon 07/05/2010
    Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_19
    Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.247.124 [GMT -4:00]

    AV: avast! Antivirus *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}

    ============== Running Processes ===============

    C:\WINDOWS\system32\svchost -k DcomLaunch
    svchost.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    svchost.exe
    svchost.exe
    C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    C:\WINDOWS\system32\spoolsv.exe
    svchost.exe
    C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\Program Files\Common Files\Motive\McciCMService.exe
    C:\Program Files\Softex\OmniPass\Omniserv.exe
    C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\Softex\OmniPass\OPXPApp.exe
    C:\WINDOWS\Explorer.EXE
    C:\windows\system\hpsysdrv.exe
    C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Documents and Settings\Owner\Desktop\dds.scr

    ============== Pseudo HJT Report ===============

    uStart Page = hxxp://www.yahoo.com/
    uDefault_Search_URL = hxxp://srch-qus8.hpwis.com/
    mSearch Bar = hxxp://srch-qus8.hpwis.com/
    uInternet Settings,ProxyOverride = localhost
    uSearchAssistant =
    BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
    BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files\hp\smart web printing\hpswp_printenhancer.dll
    BHO: HP Print Clips: {053f9267-dc04-4294-a72c-58f732d338c0} - c:\program files\hp\smart web printing\hpswp_framework.dll
    BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 5.0\reader\activex\AcroIEHelper.ocx
    BHO: {243b17de-77c7-46bf-b94b-0b5f309a0e64} - c:\program files\microsoft money\system\mnyside.dll
    BHO: WOT Helper: {c920e44a-7f78-4e64-bdd7-a57026e7feb7} - c:\program files\wot\WOT.dll
    BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn0\YTSingleInstance.dll
    TB: WOT: {71576546-354d-41c9-aae8-31f2ec22bf0d} - c:\program files\wot\WOT.dll
    TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
    TB: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - No File
    TB: {D7E97865-918F-41E4-9CD0-25AB1C574CE8} - No File
    EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
    uRun: [NVIEW] rundll32.exe nview.dll,nViewLoadHook
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
    uRun: [Acme.PCHButton] c:\progra~1\instan~1\presario\xphnars3en\plugin\bin\PCHButton.exe
    mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
    mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
    mRun: [avast5] c:\progra~1\alwils~1\avast5\avastUI.exe /nogui
    mRun: [AlcxMonitor] ALCXMNTR.EXE
    mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    IE: {58ECB495-38F0-49cb-A538-10282ABF65E7} - {E763472E-A716-4CD9-89BD-DBDA6122F741} - c:\program files\hp\smart web printing\hpswp_extensions.dll
    IE: {700259D7-1666-479a-93B1-3250410481E8} - {A93C41D8-01F8-4F8B-B14C-DE20B117E636} - c:\program files\hp\smart web printing\hpswp_extensions.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
    IE: {E023F504-0C5A-4750-A1E7-A9046DEA8A21} - {DD6687B5-CB43-4211-BFC9-2942CCBDCB3E} - c:\program files\microsoft money\system\mnyside.dll
    Trusted Zone: securesite.com
    DPF: DirectAnimation Java Classes - file://c:\windows\java\classes\dajava.cab
    DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
    DPF: {321FB770-1FBE-4BFE-BDC1-6F622D4FA499} - hxxps://setup.bellsouth.net/wizlet/PWReset/static/controls/WebflowActiveXInstaller_6-1-2.cab
    DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1272037067906
    DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1272037382218
    DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_19-windows-i586.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
    Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - c:\program files\wot\WOT.dll
    Notify: igfxcui - igfxsrvc.dll
    Notify: OPXPGina - c:\program files\softex\omnipass\opxpgina.dll
    mASetup: {A509B1FF-37FF-4bFF-8CFF-4F3A747040FF} - c:\windows\system32\rundll32.exe c:\windows\system32\advpack.dll,launchinfsectionex c:\program files\internet explorer\clrtour.inf,DefaultInstall.ResetTour,,12

    ============= SERVICES / DRIVERS ===============


    =============== Created Last 30 ================

    2010-07-04 05:01:49 3255 ----a-w- c:\windows\system32\wbem\Outlook_01cb1b3601fdbd02.mof
    2010-07-02 00:08:15 38848 ----a-w- c:\windows\avastSS.scr
    2010-06-30 22:03:51 28040 ----a-w- c:\windows\system32\mdimon.dll
    2010-06-30 22:00:49 0 d-----w- c:\program files\Microsoft ActiveSync
    2010-06-18 09:12:59 54156 ---ha-w- c:\windows\QTFont.qfn
    2010-06-18 09:12:59 1409 ----a-w- c:\windows\QTFont.for
    2010-06-09 04:58:51 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll

    ==================== Find3M ====================

    2010-05-06 10:41:53 916480 ----a-w- c:\windows\system32\wininet.dll
    2010-05-02 05:22:50 1851264 ----a-w- c:\windows\system32\win32k.sys
    2010-04-26 19:58:12 256512 ----a-w- c:\windows\PEV.exe
    2010-04-20 05:30:08 285696 ----a-w- c:\windows\system32\atmfd.dll
    2010-04-11 23:27:39 411368 ----a-w- c:\windows\system32\deploytk.dll
    2002-06-27 15:58:48 41389 -c--a-w- c:\program files\lxaxsdrv.cat
    2002-05-16 02:28:32 5740 -c--a-w- c:\program files\lxaxsdrv.ini
    2002-05-15 06:57:56 9068 -c--a-w- c:\program files\lxaxspsz.gpd
    2002-04-02 02:30:42 8494 -c--a-w- c:\program files\lxaxsdrv.inf
    2002-03-15 10:36:56 4179 -c--a-w- c:\program files\lxaxsdrv.gpd
    2008-08-05 19:23:17 32768 -csha-w- c:\windows\system32\config\systemprofile\local settings\application data\microsoft\feeds cache\index.dat
    2008-08-05 01:29:08 49152 -csha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008080420080805\index.dat
    2008-08-05 19:22:53 32768 -csha-w- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\mshist012008080520080806\index.dat

    ============= FINISH: 14:58:23.53 ===============




    Attach Log


    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT

    DDS (Ver_10-03-17.01)

    Microsoft Windows XP Home Edition
    Boot Device: \Device\HarddiskVolume2
    Install Date: 8/8/2008 6:20:54 PM
    System Uptime: 7/5/2010 2:20:32 PM (0 hours ago)

    Motherboard: TriGem Computer Inc. | | Glendale motherboard
    Processor: Intel(R) Celeron(R) CPU 2.50GHz | WMT478/NWD | 2491/mhz

    ==== Disk Partitions =========================

    A: is Removable
    C: is FIXED (NTFS) - 70 GiB total, 55.223 GiB free.
    D: is FIXED (FAT32) - 5 GiB total, 1.302 GiB free.
    E: is CDROM ()

    ==== Disabled Device Manager Items =============

    ==== System Restore Points ===================

    RP196: 12/10/2010 10:54:59 AM - System Checkpoint
    RP197: 12/10/2010 4:33:31 PM - Software Distribution Service 3.0
    RP198: 6/11/2010 5:08:41 PM - System Checkpoint
    RP199: 6/12/2010 5:23:37 PM - System Checkpoint
    RP200: 6/12/2010 11:06:49 PM - Software Distribution Service 3.0
    RP201: 6/13/2010 11:16:29 PM - System Checkpoint
    RP202: 6/14/2010 12:35:12 AM - Software Distribution Service 3.0
    RP203: 6/15/2010 1:02:19 PM - System Checkpoint
    RP204: 6/16/2010 3:00:38 AM - Software Distribution Service 3.0
    RP205: 6/16/2010 3:10:57 AM - Software Distribution Service 3.0
    RP206: 6/16/2010 11:34:20 PM - Software Distribution Service 3.0
    RP207: 6/17/2010 6:23:28 PM - Software Distribution Service 3.0
    RP208: 6/18/2010 3:02:02 AM - Software Distribution Service 3.0
    RP209: 6/18/2010 3:25:46 AM - Software Distribution Service 3.0
    RP210: 6/19/2010 3:00:50 AM - Software Distribution Service 3.0
    RP211: 6/20/2010 9:49:53 AM - Software Distribution Service 3.0
    RP212: 6/21/2010 3:00:47 AM - Software Distribution Service 3.0
    RP213: 6/16/2010 4:33:20 PM - System Checkpoint
    RP214: 6/20/2010 11:18:28 AM - System Checkpoint
    RP215: 6/21/2010 12:16:32 PM - System Checkpoint
    RP216: 6/22/2010 3:00:23 AM - Software Distribution Service 3.0
    RP217: 6/23/2010 2:48:53 PM - Software Distribution Service 3.0
    RP218: 6/23/2010 3:10:34 PM - Software Distribution Service 3.0
    RP219: 6/25/2010 8:52:28 PM - System Checkpoint
    RP220: 6/25/2010 9:46:50 PM - Software Distribution Service 3.0
    RP221: 6/26/2010 3:00:36 AM - Software Distribution Service 3.0
    RP222: 6/26/2010 11:33:19 PM - Software Distribution Service 3.0
    RP223: 6/28/2010 3:00:42 AM - Software Distribution Service 3.0
    RP224: 6/29/2010 3:00:33 AM - Software Distribution Service 3.0
    RP225: 6/30/2010 1:04:48 AM - Software Distribution Service 3.0
    RP226: 6/30/2010 5:58:25 PM - Installed Microsoft Office Standard Edition 2003
    RP227: 7/1/2010 3:00:58 AM - Software Distribution Service 3.0
    RP228: 7/2/2010 3:01:29 AM - Software Distribution Service 3.0
    RP229: 7/2/2010 5:48:10 AM - Software Distribution Service 3.0
    RP230: 7/3/2010 3:01:04 AM - Software Distribution Service 3.0
    RP231: 7/4/2010 3:00:53 AM - Software Distribution Service 3.0
    RP232: 7/4/2010 6:08:31 PM - Software Distribution Service 3.0

    ==== Installed Programs ======================


    Adobe Acrobat 5.0
    Adobe Flash Player 10 ActiveX
    ATT-PRT22
    ATT-RemoteControl
    avast! Free Antivirus
    BufferChm
    Compaq Connections
    CustomerResearchQFolder
    D1400
    D1400_Help
    DeviceDiscovery
    DeviceManagementQFolder
    dj_sf_ProductContext
    dj_sf_software
    dj_sf_software_req
    ErrorFix
    ESET Online Scanner v3
    eSupportQFolder
    HijackThis 2.0.2
    Hotfix for Windows XP (KB952287)
    Hotfix for Windows XP (KB979306)
    Hotfix for Windows XP (KB981793)
    HP Customer Participation Program 9.0
    HP Deskjet Printer Driver Software 9.0
    HP Deskjet printer preloaded drivers
    HP Imaging Device Functions 9.0
    HP Photosmart Essential 2.01
    HP Photosmart Essential2.01
    HP Product Assistant
    HP Smart Web Printing
    HP Solution Center 9.0
    HP Update
    HPProductAssistant
    HpSdpAppCoreApp
    HPSSupply
    Instant Support
    Intel(R) Extreme Graphics Driver
    IntelliMover Data Transfer Demo
    InterVideo WinDVD Player
    Java Auto Updater
    Java(TM) 6 Update 19
    LiveReg (Symantec Corporation)
    LiveUpdate 1.80 (Symantec Corporation)
    Malwarebytes' Anti-Malware
    MarketResearch
    Microsoft .NET Framework (English) v1.0.3705
    Microsoft Money 2003
    Microsoft Money 2003 System Pack
    Microsoft Office Standard Edition 2003
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Works 7.0
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    NVIDIA Windows 2000/XP Display Drivers
    OmniPass
    PanoStandAlone
    PC-Doctor for Windows
    PSSWCORE
    Python 2.2 combined Win32 extensions
    Quicken 2003 New User Edition
    RealOne Player
    RecordNow
    S3Display
    S3Gamma2
    S3Info2
    S3Overlay
    Security Update for Step By Step Interactive Training (KB898458)
    Security Update for Step By Step Interactive Training (KB923723)
    Security Update for Windows Internet Explorer 8 (KB971961)
    Security Update for Windows Internet Explorer 8 (KB981332)
    Security Update for Windows Internet Explorer 8 (KB982381)
    Security Update for Windows Media Player (KB911564)
    Security Update for Windows Media Player (KB952069)
    Security Update for Windows Media Player (KB954155)
    Security Update for Windows Media Player (KB968816)
    Security Update for Windows Media Player (KB973540)
    Security Update for Windows Media Player (KB978695)
    Security Update for Windows Media Player (KB979402)
    Security Update for Windows Media Player 11 (KB954154)
    Security Update for Windows Media Player 9 (KB917734)
    Security Update for Windows XP (KB923561)
    Security Update for Windows XP (KB946648)
    Security Update for Windows XP (KB950760)
    Security Update for Windows XP (KB950762)
    Security Update for Windows XP (KB950974)
    Security Update for Windows XP (KB951066)
    Security Update for Windows XP (KB951376-v2)
    Security Update for Windows XP (KB951376)
    Security Update for Windows XP (KB951748)
    Security Update for Windows XP (KB952004)
    Security Update for Windows XP (KB952954)
    Security Update for Windows XP (KB955069)
    Security Update for Windows XP (KB956572)
    Security Update for Windows XP (KB956744)
    Security Update for Windows XP (KB956802)
    Security Update for Windows XP (KB956803)
    Security Update for Windows XP (KB956844)
    Security Update for Windows XP (KB958644)
    Security Update for Windows XP (KB958869)
    Security Update for Windows XP (KB959426)
    Security Update for Windows XP (KB960225)
    Security Update for Windows XP (KB960803)
    Security Update for Windows XP (KB960859)
    Security Update for Windows XP (KB961501)
    Security Update for Windows XP (KB969059)
    Security Update for Windows XP (KB969947)
    Security Update for Windows XP (KB970238)
    Security Update for Windows XP (KB970430)
    Security Update for Windows XP (KB971468)
    Security Update for Windows XP (KB971657)
    Security Update for Windows XP (KB972270)
    Security Update for Windows XP (KB973354)
    Security Update for Windows XP (KB973507)
    Security Update for Windows XP (KB973869)
    Security Update for Windows XP (KB973904)
    Security Update for Windows XP (KB974112)
    Security Update for Windows XP (KB974318)
    Security Update for Windows XP (KB974392)
    Security Update for Windows XP (KB974571)
    Security Update for Windows XP (KB975025)
    Security Update for Windows XP (KB975467)
    Security Update for Windows XP (KB975560)
    Security Update for Windows XP (KB975561)
    Security Update for Windows XP (KB975562)
    Security Update for Windows XP (KB975713)
    Security Update for Windows XP (KB977816)
    Security Update for Windows XP (KB977914)
    Security Update for Windows XP (KB978037)
    Security Update for Windows XP (KB978262)
    Security Update for Windows XP (KB978338)
    Security Update for Windows XP (KB978542)
    Security Update for Windows XP (KB978601)
    Security Update for Windows XP (KB978706)
    Security Update for Windows XP (KB979309)
    Security Update for Windows XP (KB979482)
    Security Update for Windows XP (KB979559)
    Security Update for Windows XP (KB979683)
    Security Update for Windows XP (KB980195)
    Security Update for Windows XP (KB980218)
    Security Update for Windows XP (KB980232)
    Simple Installer - Multilanguage Version
    Singlesnet
    SolutionCenter
    Status
    Toolbox
    TrayApp
    UnloadSupport
    Update for Windows Internet Explorer 8 (KB976662)
    Update for Windows Internet Explorer 8 (KB980182)
    Update for Windows Internet Explorer 8 (KB980302)
    Update for Windows XP (KB951978)
    Update for Windows XP (KB955759)
    Update for Windows XP (KB967715)
    Update for Windows XP (KB968389)
    Update for Windows XP (KB971737)
    Update for Windows XP (KB973687)
    Update for Windows XP (KB973815)
    VideoToolkit01
    Viewpoint Media Player
    WebFldrs XP
    WebReg
    Windows Genuine Advantage Validation Tool (KB892130)
    Windows Internet Explorer 8
    Windows XP Service Pack 3
    WOT for Internet Explorer
    Yahoo! Software Update
    Yahoo! Toolbar

    ==== Event Viewer Messages From Past Week ========

    7/1/2010 8:08:46 PM, error: Service Control Manager [7006] - The ScRegSetValueExW call failed for FailureActions with the following error: Access is denied.
    7/1/2010 3:26:19 AM, error: Windows Update Agent [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Microsoft .NET Framework 1.0 Service Pack 3, English Version.
    6/30/2010 8:29:24 AM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.
    6/29/2010 4:10:10 PM, error: Print [6161] - The document http://busycooks.about.com/od/groundbeefrecipes/r/mwmeatloaf.ht owned by Owner failed to print on printer HP Deskjet D1400 series. Data type: NT EMF 1.008. Size of the spool file in bytes: 77984. Number of bytes printed: 0. Total number of pages in the document: 1. Number of pages printed: 0. Client machine: \\YOUR-SZ6X6SEFXO. Win32 error code returned by the print processor: 0 (0x0).
    6/28/2010 5:00:59 AM, error: i8042prt [41] - An error occurred while enabling the mouse to transmit information. The device has been reset in an attempt to make the device functional.

    ==== End Of File ===========================


    Thank you so much!!!
     
    Blue Star,
    #1
  2. 2010/07/05
    Blue Star

    Blue Star Well-Known Member Thread Starter

    Joined:
    2010/03/25
    Messages:
    454
    Likes Received:
    2
    Will return w/in 24 hours.... sorry for the delay!
     
    Blue Star,
    #2


  3. to hide this advert.

  4. 2010/07/05
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    STEP 1. Download Malwarebytes' Anti-Malware: http://www.malwarebytes.org/mbam.php to your desktop.
    (Malwarebytes is free to use as a manual scanner. Payment is only required if you wish to have it run and update automatically which is not necessary for our purposes)

    * Double-click mbam-setup.exe and follow the prompts to install the program.
    * At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
    * If an update is found, it will download and install the latest version.
    * Once the program has loaded, select Perform Quick Scan, then click Scan.
    * When the scan is complete, click OK, then Show Results to view the results.
    * Be sure that everything is checked, and click Remove Selected.
    * When completed, a log will open in Notepad.
    * Post the log back here.

    The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
    Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

    RESTART COMPUTER!

    STEP 2. Download GMER: http://www.gmer.net/files.php, by clicking on Download EXE button.
    Alternative downloads:
    - http://majorgeeks.com/GMER_d5198.html
    - http://www.softpedia.com/get/Interne...ers/GMER.shtml
    Double click on downloaded .exe file, select Rootkit tab and click the Scan button.
    Do NOT use the computer while GMER is running!
    When scan is completed, click Save button, and save the results as gmer.log
    Warning ! Please, do not select the "Show all" checkbox during the scan.
    Post the log to your next reply.

    IMPORTANT! If for some reason GMER refuses to run, try again.
    If it still fails, try to UN-check "Devices" in right pane.
    If still no joy, try to run it from Safe Mode.

    RESTART COMPUTER


    DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
     
    broni,
    #3
Thread Status:
Not open for further replies.

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...