W
wbyeats
In C:\Documents and Settings\John\Local Settings\Temp
I keep getting files called PCULog1.txt. The more I get the higher the
number goes. The culprit seems to be in the registry key kisted below.
I must have some kind of logging turned on but don't know what. I know
the file name is also generated by a type of trojan but the effects of
that seem to be pretty obvious and I haven't experienced any of that.
I did search both Microsoft and Trend-Micro but found nothing. Anyone?
***************** New Log **************************
Start time: 10/14/2007 1:50:45 PM
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
Settings
User Agent=Mozilla/4.0 (compatible; MSIE 7.0; Win32)
IE5_UA_Backup_Flag=5.0
NoNetAutodial=0
MigrateProxy=1
EmailName=IEUser@
AutoConfigProxy=wininet.dll
MimeExclusionListForCache=multipart/mixed multipart/x-mixed-replace
multipart/x-byteranges
EnableHttp1_1=1
PrivacyAdvanced=0
EnableNegotiate=1
ProxyEnable=0
GlobalUserOffline=0
EnableAutodial=1
SyncMode5=4
UrlEncoding=0
SecureProtocols=ffffffa0
PrivDiscUiShown=1
DisableCachingOfSSLPages=0
WarnonZoneCrossing=0
CertificateRevocation=0
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet
Settings
MinorVersion=0
CodeBaseSearchPath=CODEBASE;<http://activex.microsoft.com/objects/ocget.dll>;<http://codecs.microsoft.com/isapi/ocget.dll>
UrlEncoding=0x00000000
ActiveXCache=C:\WINDOWS\Downloaded Program Files
EnablePunycode=1
WarnOnIntranet=1
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Internet
Settings\ProxySettingsPerUser
10/14/2007 1:50:45 PM VA elapsed time: 0.000 seconds
I keep getting files called PCULog1.txt. The more I get the higher the
number goes. The culprit seems to be in the registry key kisted below.
I must have some kind of logging turned on but don't know what. I know
the file name is also generated by a type of trojan but the effects of
that seem to be pretty obvious and I haven't experienced any of that.
I did search both Microsoft and Trend-Micro but found nothing. Anyone?
***************** New Log **************************
Start time: 10/14/2007 1:50:45 PM
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet
Settings
User Agent=Mozilla/4.0 (compatible; MSIE 7.0; Win32)
IE5_UA_Backup_Flag=5.0
NoNetAutodial=0
MigrateProxy=1
EmailName=IEUser@
AutoConfigProxy=wininet.dll
MimeExclusionListForCache=multipart/mixed multipart/x-mixed-replace
multipart/x-byteranges
EnableHttp1_1=1
PrivacyAdvanced=0
EnableNegotiate=1
ProxyEnable=0
GlobalUserOffline=0
EnableAutodial=1
SyncMode5=4
UrlEncoding=0
SecureProtocols=ffffffa0
PrivDiscUiShown=1
DisableCachingOfSSLPages=0
WarnonZoneCrossing=0
CertificateRevocation=0
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet
Settings
MinorVersion=0
CodeBaseSearchPath=CODEBASE;<http://activex.microsoft.com/objects/ocget.dll>;<http://codecs.microsoft.com/isapi/ocget.dll>
UrlEncoding=0x00000000
ActiveXCache=C:\WINDOWS\Downloaded Program Files
EnablePunycode=1
WarnOnIntranet=1
HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\Internet
Settings\ProxySettingsPerUser
10/14/2007 1:50:45 PM VA elapsed time: 0.000 seconds