Home > General > Regcmdcons


I'll do this tonight and post the results!~Steve Navigation [0] Message Index [#] Next page [*] Previous page Go to full version Found the following (that weren't there after the 1st system restore(??)) and that appear to indicate malware of some sort: TkBellEXE, lgfxTray, FUFAXRCN, DPLTarget\P0000000000000000.After doing some research, all of these do Browse for where the Attach.zip file is. scan completed successfully hidden files: 0 **************************************************************************.Completion time: 2008-01-13 13:37:24 - machine was rebooted [Compaq_Owner]ComboFix-quarantined-files.txt 2008-01-13 18:37:20 oldman: Open Spybot and make sure teatimer is disabled, we will re-enable afterwards.

Pager"="C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" [2008-01-13 12:09 4662776]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-01-13 12:09 68856]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2008-01-13 12:09 313472]

"FFTI"="C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\090rc6lm.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe" [ ][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]"SiSPower"="SiSPower.dll" [2005-01-04 18:54 49152 C:\WINDOWS\system32\SiSPower.dll]"HPBootOp"="C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp I've been told that I shouldn't be doing that (I've now added a password to it). Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.A report will be created in your root directory, (usually C:\ folder) in the form of Click "Format" and be certain that Word Wrap is not enabled.Copy and paste all the text in the quote box below into Notepad.

A non-administrator account's inherent lack of power makes it MUCH more secure against viruses and spyware than using an administrator account. Go ahead and click on this button, and you'll be prompted to select a file. I do not have a Windows XP cd as it came installed on the pc. BLEEPINGCOMPUTER NEEDS YOUR HELP!

I'll also try the options for getting my various programs to run before I try reinstalling them again. You can also try the steps located here. I have always worked on this PC as user "Compaq Owner" which is an administrator. Sign Up All Content All Content Advanced Search Browse Forums Guidelines Staff Online Users Members More Activity All Activity My Activity Streams Unread Content Content I Started Search More Malwarebytes.com Malwarebytes

Once you've typed your message, you can then click on the Add Reply button to post your reply, and it will include the attached file with your post.aswMBRPlease download aswMBR to Obviously, I don't quite understand the different users and the need to have them. Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quietO4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exeO4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9O4 - HKCU\..\RunOnce: [FFTI] C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\090rc6lm.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\ffti.exe /VERYSILENT /SUPPRESSMSGBOXES /NORESTART /DestPath="C:\Documents and Settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles/090rc6lm.default\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}"O4 - Lua Visa allmän profil Hitta fler inlägg av Lua Hitta alla inlägg av Lua i detta ämne 2008-09-13, 22:47 #2 merlin2 Medlem Reg: May 2004 Inlägg: 2606 ladda ner "spybot

Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Windowsvc.com Access denied." It provides options to retry, exit setup and a 3rd option for advanced users -- I've been choosing "exit setup" and the pc seems to work fine. I'll run the aswMBR and send the log.No, you shouldn't have to unplug the USB cable for every restart. Local time:12:31 AM Posted 04 October 2012 - 07:01 PM Barbaraeh,Regarding the issue with the ntdetect.com file -- there are no memory sticks/cards, USB flash drives, cameras, phones, etc.

attached the computer upon bootup. Got it setup and installed, it printed a couple of files just fine and I shut the PC down for the night. If we have ever helped you in the past, please consider helping us. Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.

The new printer is attached using a USB cable however...is that an issue? Using the site is easy and fun. However, my Corel PhotoPaint will open under the 2nd user but not under "Compaq Owner". Register now!

CONTRIBUTE TO OUR LEGAL DEFENSE All unused funds will be donated to the Electronic Frontier Foundation (EFF). I did run SFC /scannow and got no indication of any problems with the Windows files. 3. To do so do the followingOpen SpybotClick modeclick Advanced modeif you get a warning answer "yes"click toolsclick residentuncheck resident "teatimer" and SDHelper if installedclick allow changerebootOpen HJT, run a system scan Local time:12:31 AM Posted 11 October 2012 - 01:41 PM Yes, that's what I'm looking for.

Vore evigt tacksam om någon kunnig kan ta en koll på den. The key idea is to only use your Administrator account when you actually need Administrator-level powers, such as when adding new hardware & software. Using your mouse left button, drag the new file CFscript.txt and drop it on the ComboFix.exe icon as shown at the bottom of this post.--- Quote ---File::C:\WINDOWS\system32\svcd\svchost.exe C:\winefni.exeC:\winvvys.exeC:\WINDOWS\system32\url3C:\WINDOWS\system32\url2C:\WINDOWS\system32\url1C:\WINDOWS\system32\CIDC:\WINDOWS\system32\SvcNmC:\WINDOWS\system32\drivers\core.cache.dskC:\WINDOWS\system32\drivers\intelidee.sysC:\Documents and Settings\Compaq_Owner\Application Data\internaldb41.datC:\Program

uStart Page = hxxp://www.att.net/ uSearch Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q105&bd=presario&pf=desktop uDefault_Page_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q105&bd=presario&pf=desktop uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q105&bd=presario&pf=desktop uSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q105&bd=presario&pf=desktop mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q105&bd=presario&pf=desktop BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll BHO:

When the install process for each of these programs asks which account you'd like them to access, you should be able to select an "all account" option (or something similar to All rights reserved. | Windows Startup & Service Database Jump to content Home Existing user? Had to do a 2nd system restore last week and have just gotten through reinstalling programs, etc. R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\n360\0308030.006\SymEFA.sys [2012-10-2 310320] R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\n360\0308030.006\BHDrvx86.sys [2012-10-2 259632] R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\n360\0308030.006\cchpx86.sys [2012-10-2 467592] R1 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\ipsdefs\20121002.001\IDSXpx86.sys [2012-10-3 373728] R2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0

Attached Files MBR.zip 546bytes 1 downloads Back to top #14 jntkwx jntkwx Malware Response Team 4,339 posts OFFLINE Gender:Male Location:New England, U.S.A. Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Also your computer may seem very slow and unusable. Lösenord Gå till sidan...

aswMBR version Copyright© 2011 AVAST Software Run date: 2012-10-04 16:37:15 ----------------------------- 16:37:15.593 OS Version: Windows 5.1.2600 Service Pack 2 16:37:15.593 Number of processors: 1 586 0xA00 16:37:15.593 ComputerName: YOUR-1A4D29F243 UserName: If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options. Flashback.se Flashback Forum drabbades av driftstörningar (9 okt) Undergroundtidningen Oz grundare död (8 sep) Bokmässa för yttrandefrihet inskränker yttrandefriheten (21 aug) Döms för hets mot samer (4 jul) Vinnarna i Flashback I did run SFC /scannow and got no indication of any problems with the Windows files.This error has been known to occur when a memory stick is in a card reader

Click the Start Scan button. I did setup another user but I can't get many of my programs to open when in that user. Then, attach the MBR.zip file to your next reply Regards,JasonSimple and easy ways to keep your computer safe and secure on the InternetIf I am helping you and have not returned Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:55:05, on 2007-12-14 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Citat: Running processes: C:\WINDOWS\System32\smss.exe

or read our Welcome Guide to learn how to use this site. Flashback.se Flashback Forum drabbades av driftstörningar (9 okt) Undergroundtidningen Oz grundare död (8 sep) Bokmässa för yttrandefrihet inskränker yttrandefriheten (21 aug) Döms för hets mot samer (4 jul) Vinnarna i Flashback Now that there's a new account, these settings haven't been changed. Eftersom jag har en hel del värdekoder och papper/viktiga lösenord på datorn blev jag grymt paranoid.

from the computer when it is booting up. I can't imagine having to unplug the printer everytime I turn on the PC. Local time:12:31 AM Posted 03 January 2013 - 05:08 PM Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast!

Site Changelog Community Forum Software by IP.Board Sign In Use Facebook Use Twitter Need an account? Please copy and paste the contents of that file here. To learn more and to read the lawsuit, click here. However, as you've found out, when creating a new user, you don't always have access to some programs.