139 replies to this topic

[Neo]

Tomk, I may have gotten the little menace last night with my avast. I have 4 files that appear to be the same. ( In the virus chest ) Just thought u might like to know in case the combo fix cant find the file or something. Also I'm still connected to the kaspersky site. I went to bed last night with it still updating because with this phoneline connection it takes forever, it only got about a quarter of the way done b4 my puter was booted off line. At this point it seems I cannot resume downloading the update, either way it's going to b a while b4 I get that scan ran, but I will go ahead with the ComboFix and get back to u with a log newbe17

[Neo]

Tomk,
Combo Fix Log:


ComboFix 09-03-15.01 - Compaq_Owner 2009-03-17 12:25:13.8 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.222.44 [GMT -5:00]
Running from: c:\documents and settings\Compaq_Owner\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Compaq_Owner\Desktop\CFScript.txt
AV: avast! antivirus 4.8.1229 [VPS 090316-0] *On-access scanning disabled* (Updated)
* Created a new restore point
.

((((((((((((((((((((((((( Files Created from 2009-02-17 to 2009-03-17 )))))))))))))))))))))))))))))))
.

2009-03-15 16:10 . 2009-03-15 16:10 <DIR> d-------- C:\KAV
2009-03-15 09:41 . 2009-03-15 09:41 <DIR> d-------- c:\documents and settings\Compaq_Owner\DoctorWeb
2009-03-14 23:54 . 2009-03-16 01:32 <DIR> d--h----- c:\windows\$hf_mig$
2009-03-14 22:32 . 2009-03-14 22:32 410,984 --a------ c:\windows\system32\deploytk.dll
2009-03-14 16:12 . 2009-03-14 16:12 <DIR> d--h----- c:\windows\PIF
2009-03-13 23:50 . 2009-03-14 11:56 <DIR> d-------- C:\Lop SD
2009-03-13 18:21 . 2009-03-16 23:29 <DIR> d-------- c:\program files\Full Tilt Poker.Net
2009-03-13 00:59 . 2009-03-13 01:00 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-03-13 00:59 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-13 00:59 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-03-12 22:34 . 2009-03-12 22:34 <DIR> d-------- c:\windows\Sun
2009-03-12 02:36 . 2009-03-12 02:37 <DIR> d-------- C:\Rooter$
2009-03-09 17:12 . 2009-03-09 17:12 <DIR> d-------- c:\program files\Trend Micro
2009-03-05 19:00 . 2009-03-05 19:00 <DIR> d-------- c:\windows\Speeditup Free

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-16 11:04 8,704 --sha-w c:\program files\Thumbs.db
2009-03-15 03:32 --------- d-----w c:\program files\Java
2009-03-13 23:21 --------- d--h--w c:\program files\InstallShield Installation Information
2009-03-13 06:17 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-05 23:41 --------- d-----w c:\program files\CCleaner
2009-01-29 10:10 --------- d-----w c:\program files\Spybot - Search & Destroy
2006-09-04 23:02 11,682,968 ----a-w c:\program files\setupeng.exe
2006-09-03 20:37 11,746,992 ----a-w c:\program files\antivir_workstation_win7u_en_h.exe
2006-08-25 17:23 56,742 ----a-w c:\program files\vdl.dat
2006-08-25 15:30 452,719 ----a-w c:\program files\sarman.pdf
2005-02-16 17:06 218,112 ----a-w c:\program files\HijackThis.exe
.

((((((((((((((((((((((((((((( SnapShot@2009-03-12_13.07.20.61 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-10-21 01:02:28 163,328 ----a-w c:\windows\ERDNT\subs\ERDNT.EXE
- 2008-03-25 06:28:39 135,168 ----a-w c:\windows\system32\java.exe
+ 2009-03-15 03:32:19 144,792 ----a-w c:\windows\system32\java.exe
- 2008-03-25 06:28:43 135,168 ----a-w c:\windows\system32\javaw.exe
+ 2009-03-15 03:32:19 144,792 ----a-w c:\windows\system32\javaw.exe
- 2008-03-25 07:37:01 139,264 ----a-w c:\windows\system32\javaws.exe
+ 2009-03-15 03:32:19 148,888 ----a-w c:\windows\system32\javaws.exe
+ 2009-03-17 06:18:48 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_3f4.dat
+ 2009-03-17 06:19:12 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_744.dat
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2005-02-26 245760]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2005-08-08 180269]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-14 148888]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-28 221184]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4918:TCP"= 4918:TCP:qgjprs

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-06-13 78416]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-06-13 20560]
S3 PCD5SRVC;PCD5SRVC - PCDR Kernel Mode Service Helper Driver;c:\progra~1\PC-DOC~1\PCD5SRVC.pkms [2005-05-10 20224]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q405&bd=presario&pf=desktop&parm1=seconduser
TCP: {0064A5F4-20F9-40DD-8516-C7C7B21E6882} = 207.65.4.25 216.153.94.101
FF - ProfilePath - c:\documents and settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\evspears@hifo.net\
FF - prefs.js: browser.startup.homepage - hxxps://login.yahoo.com/config/login_verify2?.intl=us&.src=ym
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-17 12:26:57
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\PCD5SRVC]
"ImagePath"="\??\c:\progra~1\PC-DOC~1\PCD5SRVC.pkms"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(408)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2009-03-17 12:28:58
ComboFix-quarantined-files.txt 2009-03-17 17:28:53
ComboFix2.txt 2009-03-16 22:35:05
ComboFix3.txt 2009-03-16 18:51:31
ComboFix4.txt 2009-03-16 05:44:33
ComboFix5.txt 2009-03-17 17:24:16

Pre-Run: 66,273,398,784 bytes free
Post-Run: 66,279,186,432 bytes free

Current=5 Default=5 Failed=1 LastKnownGood=3 Sets=,1,2,3,4,5
109 --- E O F --- 2008-06-13 23:12:36


newbe17

[Tomk]

newbe17, Yeah. Nothing got collected so Avast must have already gotten it. It's not important right now so go ahead and run MSRT.

[Neo]

Tomk, MSRT didnt load onto my dektop into the log... Probably because I didn't read down far enough on ur post , I may have closed the log box b4 it appeared... Shall i do another Combo fix and let it pop up so i can do as you say? newbe17

[Tomk]

newbe17,

Click on start in the lower left of your screen
Click on Run
enter the following in the box
notepad c:\windows\debug\mrt.log
Click OK. Notepad should open with the log.
Copy and paste results here.

[Neo]

Tomk, notepad c:\windows\debug\mrt.log came back missing. I re-downloaded malwaremegabytes and guess what??? IT UPDATED!!! You da- man, I'm not worthy I'm currently running a full scan of my c drive with megabytes, do you want the log from it? newbe17

[Tomk]

newbe17, Please.

[Neo]

Tomk, here is the malwarebytes log, it has identified the same infection in the same folder. I know that is not the REAL infection, probably just a rough location, so if I ran another scan, it would probably show up again, right? Malwarebytes' Anti-Malware 1.34 Database version: 1859 Windows 5.1.2600 Service Pack 2 3/17/2009 2:58:58 PM mbam-log-2009-03-17 (14-58-58).txt Scan type: Full Scan (C:\|) Objects scanned: 91759 Time elapsed: 40 minute(s), 54 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\WINDOWS\hosts (Trojan.Agent) -> Delete on reboot. newbe17

[Tomk]

newbe17,

Let's do this instead:

COMBOFIX-Script

• Please open Notepad (Start -> Run -> type notepad in the Open field -> OK) and copy and paste the text present inside the code box below:
  
  

  File::
  C:\WINDOWS\hosts

• Save this as CFScript.txt and change the "Save as type" to "All Files" and place it on your desktop.
  
  
  
• Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before following the steps below. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
• Referring to the screenshot above, drag CFScript.txt into ComboFix.exe.
• ComboFix will now run a scan on your system. It may reboot your system when it finishes. This is normal.
• When finished, it shall produce a log for you. Copy and paste the contents of the log in your next reply.

CAUTION: Do not mouse-click ComboFix's window while it is running. That may cause it to stall.

Then, can you run Kaspersky online?

[Neo]

Tomk,
log time

ComboFix 09-03-15.01 - Compaq_Owner 2009-03-17 16:06:16.9 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.222.48 [GMT -5:00]
Running from: c:\documents and settings\Compaq_Owner\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Compaq_Owner\Desktop\CFScript.txt
AV: avast! antivirus 4.8.1229 [VPS 090316-0] *On-access scanning disabled* (Updated)
* Created a new restore point

FILE ::
c:\windows\hosts
.

((((((((((((((((((((((((( Files Created from 2009-02-17 to 2009-03-17 )))))))))))))))))))))))))))))))
.

2009-03-17 15:51 . 2009-03-17 16:01 <DIR> d-------- c:\windows\LastGood
2009-03-17 15:49 . 2009-03-17 15:49 <DIR> d---s---- c:\documents and settings\Compaq_Owner\UserData
2009-03-17 13:39 . 2009-03-17 13:39 <DIR> d-------- c:\program files\Malwarebytes' Anti-Malware
2009-03-17 13:39 . 2009-02-11 10:19 38,496 --a------ c:\windows\system32\drivers\mbamswissarmy.sys
2009-03-17 13:39 . 2009-02-11 10:19 15,504 --a------ c:\windows\system32\drivers\mbam.sys
2009-03-15 16:10 . 2009-03-15 16:10 <DIR> d-------- C:\KAV
2009-03-15 09:41 . 2009-03-15 09:41 <DIR> d-------- c:\documents and settings\Compaq_Owner\DoctorWeb
2009-03-14 23:54 . 2009-03-16 01:32 <DIR> d--h----- c:\windows\$hf_mig$
2009-03-14 22:32 . 2009-03-14 22:32 410,984 --a------ c:\windows\system32\deploytk.dll
2009-03-14 16:12 . 2009-03-14 16:12 <DIR> d--h----- c:\windows\PIF
2009-03-13 23:50 . 2009-03-14 11:56 <DIR> d-------- C:\Lop SD
2009-03-13 18:21 . 2009-03-16 23:29 <DIR> d-------- c:\program files\Full Tilt Poker.Net
2009-03-12 22:34 . 2009-03-12 22:34 <DIR> d-------- c:\windows\Sun
2009-03-12 02:36 . 2009-03-12 02:37 <DIR> d-------- C:\Rooter$
2009-03-09 17:12 . 2009-03-09 17:12 <DIR> d-------- c:\program files\Trend Micro
2009-03-05 19:00 . 2009-03-05 19:00 <DIR> d-------- c:\windows\Speeditup Free

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-03-17 19:33 8,704 --sha-w c:\program files\Thumbs.db
2009-03-15 03:32 --------- d-----w c:\program files\Java
2009-03-13 23:21 --------- d--h--w c:\program files\InstallShield Installation Information
2009-03-13 06:17 --------- d-----w c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-05 23:41 --------- d-----w c:\program files\CCleaner
2009-01-29 10:10 --------- d-----w c:\program files\Spybot - Search & Destroy
2006-09-04 23:02 11,682,968 ----a-w c:\program files\setupeng.exe
2006-09-03 20:37 11,746,992 ----a-w c:\program files\antivir_workstation_win7u_en_h.exe
2006-08-25 17:23 56,742 ----a-w c:\program files\vdl.dat
2006-08-25 15:30 452,719 ----a-w c:\program files\sarman.pdf
2005-02-16 17:06 218,112 ----a-w c:\program files\HijackThis.exe
.

((((((((((((((((((((((((((((( SnapShot@2009-03-12_13.07.20.61 )))))))))))))))))))))))))))))))))))))))))
.
+ 2005-10-21 01:02:28 163,328 ----a-w c:\windows\ERDNT\subs\ERDNT.EXE
+ 2007-07-31 00:19:20 92,504 ----a-w c:\windows\LastGood\system32\cdm.dll
+ 2007-07-31 00:19:36 549,720 ----a-w c:\windows\LastGood\system32\wuapi.dll
+ 2007-07-31 00:19:16 53,080 ----a-w c:\windows\LastGood\system32\wuauclt.exe
+ 2007-07-31 00:19:42 1,712,984 ----a-w c:\windows\LastGood\system32\wuaueng.dll
+ 2007-07-31 00:19:32 325,976 ----a-w c:\windows\LastGood\system32\wucltui.dll
+ 2007-07-31 00:18:40 33,624 ----a-w c:\windows\LastGood\system32\wups.dll
+ 2007-07-31 00:19:12 43,352 ----a-w c:\windows\LastGood\system32\wups2.dll
+ 2007-07-31 00:19:28 203,096 ----a-w c:\windows\LastGood\system32\wuweb.dll
- 2007-07-31 00:19:20 92,504 ----a-w c:\windows\system32\cdm.dll
+ 2008-10-16 19:09:44 92,696 ----a-w c:\windows\system32\cdm.dll
- 2007-07-31 00:19:20 92,504 ----a-w c:\windows\system32\dllcache\cdm.dll
+ 2008-10-16 19:09:44 92,696 ----a-w c:\windows\system32\dllcache\cdm.dll
- 2007-07-31 00:19:16 53,080 ----a-w c:\windows\system32\dllcache\wuauclt.exe
+ 2008-10-16 19:09:44 51,224 ----a-w c:\windows\system32\dllcache\wuauclt.exe
- 2007-07-31 00:19:42 1,712,984 ----a-w c:\windows\system32\dllcache\wuaueng.dll
+ 2008-10-16 19:13:40 1,809,944 ----a-w c:\windows\system32\dllcache\wuaueng.dll
- 2007-07-31 00:19:32 325,976 ----a-w c:\windows\system32\dllcache\wucltui.dll
+ 2008-10-16 19:12:22 323,608 ----a-w c:\windows\system32\dllcache\wucltui.dll
- 2007-07-31 00:19:28 203,096 ----a-w c:\windows\system32\dllcache\wuweb.dll
+ 2008-10-16 19:12:24 202,776 ----a-w c:\windows\system32\dllcache\wuweb.dll
- 2008-03-25 06:28:39 135,168 ----a-w c:\windows\system32\java.exe
+ 2009-03-15 03:32:19 144,792 ----a-w c:\windows\system32\java.exe
- 2008-03-25 06:28:43 135,168 ----a-w c:\windows\system32\javaw.exe
+ 2009-03-15 03:32:19 144,792 ----a-w c:\windows\system32\javaw.exe
- 2008-03-25 07:37:01 139,264 ----a-w c:\windows\system32\javaws.exe
+ 2009-03-15 03:32:19 148,888 ----a-w c:\windows\system32\javaws.exe
+ 2008-10-16 19:12:20 561,688 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wuapi.dll\7.2.6001.788\wuapi.dll
+ 2008-10-16 19:08:58 34,328 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll
+ 2008-10-16 19:09:44 43,544 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll
- 2007-07-31 00:19:16 53,080 ----a-w c:\windows\system32\wuauclt.exe
+ 2008-10-16 19:09:44 51,224 ----a-w c:\windows\system32\wuauclt.exe
- 2007-07-31 00:19:42 1,712,984 ----a-w c:\windows\system32\wuaueng.dll
+ 2008-10-16 19:13:40 1,809,944 ----a-w c:\windows\system32\wuaueng.dll
- 2007-07-31 00:19:32 325,976 ----a-w c:\windows\system32\wucltui.dll
+ 2008-10-16 19:12:22 323,608 ----a-w c:\windows\system32\wucltui.dll
- 2007-07-31 00:19:28 203,096 ----a-w c:\windows\system32\wuweb.dll
+ 2008-10-16 19:12:24 202,776 ----a-w c:\windows\system32\wuweb.dll
+ 2009-03-17 20:03:10 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_454.dat
+ 2009-03-17 20:03:24 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_728.dat
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2005-02-26 245760]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2005-08-08 180269]
"avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2008-07-19 78008]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-03-14 148888]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-07-28 221184]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"4918:TCP"= 4918:TCP:qgjprs

R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2008-06-13 78416]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2008-06-13 20560]
S3 PCD5SRVC;PCD5SRVC - PCDR Kernel Mode Service Helper Driver;c:\progra~1\PC-DOC~1\PCD5SRVC.pkms [2005-05-10 20224]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q405&bd=presario&pf=desktop&parm1=seconduser
TCP: {0064A5F4-20F9-40DD-8516-C7C7B21E6882} = 207.65.4.25 216.153.94.101
FF - ProfilePath - c:\documents and settings\Compaq_Owner\Application Data\Mozilla\Firefox\Profiles\evspears@hifo.net\
FF - prefs.js: browser.startup.homepage - hxxps://login.yahoo.com/config/login_verify2?.intl=us&.src=ym
.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-03-17 16:07:57
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************

[HKEY_LOCAL_MACHINE\System\ControlSet005\Services\PCD5SRVC]
"ImagePath"="\??\c:\progra~1\PC-DOC~1\PCD5SRVC.pkms"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(368)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\CLBCATQ.DLL
.
Completion time: 2009-03-17 16:10:10
ComboFix-quarantined-files.txt 2009-03-17 21:10:06
ComboFix2.txt 2009-03-17 17:29:01
ComboFix3.txt 2009-03-16 22:35:05
ComboFix4.txt 2009-03-16 18:51:31
ComboFix5.txt 2009-03-17 21:05:28

Pre-Run: 66,244,022,272 bytes free
Post-Run: 66,232,098,816 bytes free

Current=5 Default=5 Failed=1 LastKnownGood=3 Sets=,1,2,3,4,5
147 --- E O F --- 2008-06-13 23:12:36


newbe17

[Tomk]

newbe17, I'd like to see Kaspersky online if you can get it to run.

[Neo]

Tomk, I', at the kaspersky site retrieving an update... It's been running 15 minuts already and has only 2020 of 49909 mbs of memory transfered... this is gonna take a long time... Is it worth it? newbe17

[Neo]

Tomk, my provider is also a good friend of mine and he has high speed and he's only right down the road from me... It's possible he's not too busy to let me bring my pc by and hook up on his connection and do this.... what do u think? newbe17

[Neo]

Tomk, My provider told me to try a boot scan with avast and that would probably get it, said he's gonna b backed up over there for at least 2 weeks what do you think? newbe17

[Neo]

Tomk, I almost 4 got... When i clicked ok to run kaspersky, i got a box that said not able to open java applet or something to that effect... Could that b the reson it's taking so long to load? newbe17