Sorry for posting in english, but this is the only group I've found
that's referred to this problem recently. I don't know if this problem
has been solved yet, because I can't read french! hehe.
A few days ago, I got this problem of my home page (using IE 5.01)
being constantly changed to LuckySearch, or something, after I
rebooted.
I tracked down the problem to a file called tapicfg.exe in the
windows\system folder, with a 'run' entry in the registry. The give
away that this file was probably not a windows file, even though it
had the same date/time as Win98se files (I'm using Win98se), was that
it was in lower case :-) and therefore a 'long file name'.
This didn't solve the problem after all, as the tapicfg.exe was being
replaced on reboot. So next I found all the files on my system that
were also 57344 bytes (and there were quite a few!), and using 'fc' I
compared them to tapicfg.exe. Finally I found this file...
this file is identical to tapicfg.exe, except the name, and is NOT
anything to do with MSINFO. It was not being run from the registry,
but from WIN.INI. It changed an entry in WIN.INI...
hpfsched is something to do with my printer, a HP 610C. Obviously the
info32.exe is replacing the tapicfg.exe, and also executing the
hpfsched.exe printer program.
Hopefully thats all there is to it! In summary, remove these two
files...
also edit your WIN.INI file to correct the 'run=' line as appropriate,
and use msconfig.exe to delete the 'tapicfg.exe' run entry, or remove
it from the registry using RegEdit.
A few days ago, I got this problem of my home page (using IE 5.01)
You should change your browser and switch to an IE6 up to date.
This didn't solve the problem after all, as the tapicfg.exe was being replaced on reboot.
Of course, it was in memory. You can try after booting in "safe mode" (F8 key just before the windows startup screen).
You can send a copy here: so we will have a name for this malware.
this file is identical to tapicfg.exe, except the name, and is NOT anything to do with MSINFO. It was not being run from the registry, but from WIN.INI. It changed an entry in WIN.INI...
A few days ago, I got this problem of my home page (using IE 5.01)
You should change your browser and switch to an IE6 up to date.
This didn't solve the problem after all, as the tapicfg.exe was
being replaced on reboot.
Of course, it was in memory. You can try after booting in "safe
mode" (F8 key just before the windows startup screen).
You can send a copy here: submit-virus@avp.ch so we will have a name
for this malware.
this file is identical to tapicfg.exe, except the name, and is NOT
anything to do with MSINFO. It was not being run from the
registry, but from WIN.INI. It changed an entry in WIN.INI...
A few days ago, I got this problem of my home page (using IE 5.01)
You should change your browser and switch to an IE6 up to date.
This didn't solve the problem after all, as the tapicfg.exe was being replaced on reboot.
Of course, it was in memory. You can try after booting in "safe mode" (F8 key just before the windows startup screen).
You can send a copy here: so we will have a name for this malware.
this file is identical to tapicfg.exe, except the name, and is NOT anything to do with MSINFO. It was not being run from the registry, but from WIN.INI. It changed an entry in WIN.INI...
Sorry for posting in english, but this is the only group I've found that's referred to this problem recently. I don't know if this problem
Welcome. Here we have a Macdo, sitdown and wait, on va vous servir. :-)
(désolé pour AMcD j'ai pas pu m'empecher:-))
Ewa \(siostra Ani\) N.
Dans la news:, Psionic3a a écrit:
Hi there.
Sorry for posting in english, but this is the only group I've found that's referred to this problem recently. I don't know if this problem has been solved yet, because I can't read french! hehe.
OK
A few days ago, I got this problem of my home page (using IE 5.01) being constantly changed to LuckySearch, or something, after I rebooted.
Why do you use IE 5.01 ?
Ewcia
-- Niesz !
Dans la news:6r6jpv8u9ggfvsch6940k0l474cppvrmhu@4ax.com,
Psionic3a <psionic3a@NOTHANXhotmail.com> a écrit:
Hi there.
Sorry for posting in english, but this is the only group I've found
that's referred to this problem recently. I don't know if this problem
has been solved yet, because I can't read french! hehe.
OK
A few days ago, I got this problem of my home page (using IE 5.01)
being constantly changed to LuckySearch, or something, after I
rebooted.
Sorry for posting in english, but this is the only group I've found that's referred to this problem recently. I don't know if this problem has been solved yet, because I can't read french! hehe.
OK
A few days ago, I got this problem of my home page (using IE 5.01) being constantly changed to LuckySearch, or something, after I rebooted.
Why do you use IE 5.01 ?
Ewcia
-- Niesz !
djehuti
salut "Ewa (siostra Ani) N." a écrit dans le message news: 3f99ade0$0$27599$
Why do you use IE 5.01 ?
why not ?
si mes souvenirs sont bons... cette version ne souffre même pas de la faille MIME/IFrame (et il me semble avoir vu que M$ la supportait encore un peu)
le "nouveau" n'est pas forcément moins pire :-)
@tchao
salut
"Ewa (siostra Ani) N." <niesz@yahoo.com> a écrit dans le message news:
3f99ade0$0$27599$626a54ce@news.free.fr
Why do you use IE 5.01 ?
why not ?
si mes souvenirs sont bons... cette version ne souffre même pas de la faille
MIME/IFrame
(et il me semble avoir vu que M$ la supportait encore un peu)
salut "Ewa (siostra Ani) N." a écrit dans le message news: 3f99ade0$0$27599$
Why do you use IE 5.01 ?
why not ?
si mes souvenirs sont bons... cette version ne souffre même pas de la faille MIME/IFrame (et il me semble avoir vu que M$ la supportait encore un peu)
le "nouveau" n'est pas forcément moins pire :-)
@tchao
AMcD
Psionic3a wrote:
Hi there.
Hi too.
Sorry for posting in english, but this is the only group I've found that's referred to this problem recently. I don't know if this problem has been solved yet, because I can't read french! hehe.
Maybe it's better not to know to read it :-). Not very much stuff interesting these days over there...
A few days ago, I got this problem of my home page (using IE 5.01) being constantly changed to LuckySearch, or something, after I rebooted.
As another one said to you: you should update to IE6. More safe...
I tracked down the problem to a file called tapicfg.exe in the windowssystem folder, with a 'run' entry in the registry. The give away that this file was probably not a windows file, even though it had the same date/time as Win98se files (I'm using Win98se), was that it was in lower case :-) and therefore a 'long file name'.
This didn't solve the problem after all, as the tapicfg.exe was being replaced on reboot.
You need to kill the process either otherwise it's useless, it copies itself again and again into the registry.
So next I found all the files on my system that were also 57344 bytes (and there were quite a few!), and using 'fc' I compared them to tapicfg.exe. Finally I found this file...
hpfsched is something to do with my printer, a HP 610C.
Yes. It's a TSR from HP. If I remenber well, it has something to do with cartridge management.
Obviously the info32.exe is replacing the tapicfg.exe, and also executing the hpfsched.exe printer program.
That's it dude. Actually info32 is just a pathetic trojan. If you need more information why don't you just click these link?
- http://vil.nai.com/vil/content/v_98594.htm
CYA
-- AMcD
http://arnold.mcdonald.free.fr/
Psionic3a wrote:
Hi there.
Hi too.
Sorry for posting in english, but this is the only group I've found
that's referred to this problem recently. I don't know if this problem
has been solved yet, because I can't read french! hehe.
Maybe it's better not to know to read it :-). Not very much stuff
interesting these days over there...
A few days ago, I got this problem of my home page (using IE 5.01)
being constantly changed to LuckySearch, or something, after I
rebooted.
As another one said to you: you should update to IE6. More safe...
I tracked down the problem to a file called tapicfg.exe in the
windowssystem folder, with a 'run' entry in the registry. The give
away that this file was probably not a windows file, even though it
had the same date/time as Win98se files (I'm using Win98se), was that
it was in lower case :-) and therefore a 'long file name'.
This didn't solve the problem after all, as the tapicfg.exe was being
replaced on reboot.
You need to kill the process either otherwise it's useless, it copies itself
again and again into the registry.
So next I found all the files on my system that
were also 57344 bytes (and there were quite a few!), and using 'fc' I
compared them to tapicfg.exe. Finally I found this file...
Sorry for posting in english, but this is the only group I've found that's referred to this problem recently. I don't know if this problem has been solved yet, because I can't read french! hehe.
Maybe it's better not to know to read it :-). Not very much stuff interesting these days over there...
A few days ago, I got this problem of my home page (using IE 5.01) being constantly changed to LuckySearch, or something, after I rebooted.
As another one said to you: you should update to IE6. More safe...
I tracked down the problem to a file called tapicfg.exe in the windowssystem folder, with a 'run' entry in the registry. The give away that this file was probably not a windows file, even though it had the same date/time as Win98se files (I'm using Win98se), was that it was in lower case :-) and therefore a 'long file name'.
This didn't solve the problem after all, as the tapicfg.exe was being replaced on reboot.
You need to kill the process either otherwise it's useless, it copies itself again and again into the registry.
So next I found all the files on my system that were also 57344 bytes (and there were quite a few!), and using 'fc' I compared them to tapicfg.exe. Finally I found this file...
sur les news:3f99afb1$0$27020$, djehuti signalait:
salut "Ewa (siostra Ani) N." a écrit dans le message news: 3f99ade0$0$27599$
Why do you use IE 5.01 ?
why not ?
si mes souvenirs sont bons... cette version ne souffre même pas de la faille MIME/IFrame (et il me semble avoir vu que M$ la supportait encore un peu)
le "nouveau" n'est pas forcément moins pire :-)
@tchao
Hello,
Ce n'est qu'à partir de la v 5.5SP2 que la faille MIME peut être corrigée, de mémoire. -- JacK
AMcD
Chambord wrote:
Here we have a Macdo, sitdown and wait, on va vous servir. :-)
Mc, pas Mac scrogneugneu !
Cette atteinte, cette aggression caractérisée envers ma personne est tout simplement inqualifiable ! Il est clair que sous couvert d'anonymat tu ne cherches qu'à me dénigrer. J'estime avoir le droit de traiter tes propos de diffamatoires. Tu n'es certes que le sommet de l'iceberg de toute une meute veule et servile vendue à une puissance étrangère, mais je ne m'y trompe pas ! Je vois clair dans tes allusions calomnieuses. Tu cherches à porter atteinte à ma réputation. Et, par là, à faire passer l'éducation nationale française dont je suis issu pour négligeable vis-à-vis de celle dispensée dans les pays des sbires dont tu es à la solde.
Voir des traîtres à la nation de ton accabit me dégoûte. Tu es directement responsable, de par tes actes, du chomâge de milliers de personnes que tes critiques infondées rabaissent aux yeux de l'opinion publique friande de racontars de gufusses de ton espèce. Si tu ne cesses pas ce harcèlement, tu devras rendre compte de ton attitude méprisable devant la loi. Sache pour autant que je ne te laisserai pas insulter ma personne, mes compétences et mon savoir de manière aussi gratuite. Je rendrai coup pour coup. Vous n'êtes, après tout, qu'une petite poignée de renégats ! Quantité somme toute négligeable comparée à l'océan d'esprits libres dont je me targue de faire partie.
À mes yeux, tu n'es qu'un veinal vendu tout entier à une société de l'Est dont je préfère taire le nom. Mais qu'elle sache que les tentatives d'une de ses taupes pour arroser les intervenants de ce NG à coup d'hectolitres de Leffe n'ont pas trompé mon esprit alerte et avisé. Je continuerai mon combat pour que le public soit toujours informé de vos projets bassement mercantiles. Et ce ne sont pas quelques veules adorateurs du veau d'or lâchement planqués au pays de l'Oncle Sam qui interrompront ma lutte. Le public a le droit et doit savoir !
:o)
(désolé pour AMcD j'ai pas pu m'empecher:-))
Ben moi non plus. On s'y croirait non ?
-- AMcD
http://arnold.mcdonald.free.fr/
Chambord wrote:
Here we have a Macdo, sitdown and wait, on va vous servir. :-)
Mc, pas Mac scrogneugneu !
Cette atteinte, cette aggression caractérisée envers ma personne est tout
simplement inqualifiable ! Il est clair que sous couvert d'anonymat tu ne
cherches qu'à me dénigrer. J'estime avoir le droit de traiter tes propos de
diffamatoires. Tu n'es certes que le sommet de l'iceberg de toute une meute
veule et servile vendue à une puissance étrangère, mais je ne m'y trompe pas
! Je vois clair dans tes allusions calomnieuses. Tu cherches à porter
atteinte à ma réputation. Et, par là, à faire passer l'éducation nationale
française dont je suis issu pour négligeable vis-à-vis de celle dispensée
dans les pays des sbires dont tu es à la solde.
Voir des traîtres à la nation de ton accabit me dégoûte. Tu es directement
responsable, de par tes actes, du chomâge de milliers de personnes que tes
critiques infondées rabaissent aux yeux de l'opinion publique friande de
racontars de gufusses de ton espèce. Si tu ne cesses pas ce harcèlement, tu
devras rendre compte de ton attitude méprisable devant la loi. Sache pour
autant que je ne te laisserai pas insulter ma personne, mes compétences et
mon savoir de manière aussi gratuite. Je rendrai coup pour coup. Vous
n'êtes, après tout, qu'une petite poignée de renégats ! Quantité somme toute
négligeable comparée à l'océan d'esprits libres dont je me targue de faire
partie.
À mes yeux, tu n'es qu'un veinal vendu tout entier à une société de l'Est
dont je préfère taire le nom. Mais qu'elle sache que les tentatives d'une de
ses taupes pour arroser les intervenants de ce NG à coup d'hectolitres de
Leffe n'ont pas trompé mon esprit alerte et avisé. Je continuerai mon combat
pour que le public soit toujours informé de vos projets bassement
mercantiles. Et ce ne sont pas quelques veules adorateurs du veau d'or
lâchement planqués au pays de l'Oncle Sam qui interrompront ma lutte. Le
public a le droit et doit savoir !
Here we have a Macdo, sitdown and wait, on va vous servir. :-)
Mc, pas Mac scrogneugneu !
Cette atteinte, cette aggression caractérisée envers ma personne est tout simplement inqualifiable ! Il est clair que sous couvert d'anonymat tu ne cherches qu'à me dénigrer. J'estime avoir le droit de traiter tes propos de diffamatoires. Tu n'es certes que le sommet de l'iceberg de toute une meute veule et servile vendue à une puissance étrangère, mais je ne m'y trompe pas ! Je vois clair dans tes allusions calomnieuses. Tu cherches à porter atteinte à ma réputation. Et, par là, à faire passer l'éducation nationale française dont je suis issu pour négligeable vis-à-vis de celle dispensée dans les pays des sbires dont tu es à la solde.
Voir des traîtres à la nation de ton accabit me dégoûte. Tu es directement responsable, de par tes actes, du chomâge de milliers de personnes que tes critiques infondées rabaissent aux yeux de l'opinion publique friande de racontars de gufusses de ton espèce. Si tu ne cesses pas ce harcèlement, tu devras rendre compte de ton attitude méprisable devant la loi. Sache pour autant que je ne te laisserai pas insulter ma personne, mes compétences et mon savoir de manière aussi gratuite. Je rendrai coup pour coup. Vous n'êtes, après tout, qu'une petite poignée de renégats ! Quantité somme toute négligeable comparée à l'océan d'esprits libres dont je me targue de faire partie.
À mes yeux, tu n'es qu'un veinal vendu tout entier à une société de l'Est dont je préfère taire le nom. Mais qu'elle sache que les tentatives d'une de ses taupes pour arroser les intervenants de ce NG à coup d'hectolitres de Leffe n'ont pas trompé mon esprit alerte et avisé. Je continuerai mon combat pour que le public soit toujours informé de vos projets bassement mercantiles. Et ce ne sont pas quelques veules adorateurs du veau d'or lâchement planqués au pays de l'Oncle Sam qui interrompront ma lutte. Le public a le droit et doit savoir !
:o)
(désolé pour AMcD j'ai pas pu m'empecher:-))
Ben moi non plus. On s'y croirait non ?
-- AMcD
http://arnold.mcdonald.free.fr/
djehuti
salut "JacK" a écrit dans le message news: bncceh$vdasv$
si mes souvenirs sont bons... cette version ne souffre même pas de la faille MIME/IFrame (et il me semble avoir vu que M$ la supportait encore un peu)
le "nouveau" n'est pas forcément moins pire :-)
@tchao
Hello,
Ce n'est qu'à partir de la v 5.5SP2 que la faille MIME peut être corrigée, de mémoire.
stop, n'en jeter plus... j'me rends
c'est juste parce que j'avais fait un test en ligne depuis un IE 5.01 (de base / w98se) et que c'était négatif (m'enfin, comme j'ai pas de protocole...)
j'ai un IE 5.5 (jamais installé directement de SP) patché de tous les côtés... et je ne saurais dire quelle est sa "version" exacte :-(
mais bon, amha, si il y a moyen de patcher/configurer correctement une version "stable"... c'est pas obligatoire de passer à la dernière version (pleine de failles passées, présentes et à venir) sauf à vouloir bénéficier des nouvelles technologies M$ :-?
désolé si tout cela semble aller à l'encontre des conseils donnés habituellement (ie "mets d'abord à jour ton IE tout troué")
@tchao
salut
"JacK" <not4usp@wanadoo.fr> a écrit dans le message news:
bncceh$vdasv$1@ID-204425.news.uni-berlin.de
si mes souvenirs sont bons... cette version ne souffre même pas de la
faille MIME/IFrame
(et il me semble avoir vu que M$ la supportait encore un peu)
le "nouveau" n'est pas forcément moins pire :-)
@tchao
Hello,
Ce n'est qu'à partir de la v 5.5SP2 que la faille MIME peut être
corrigée, de mémoire.
stop, n'en jeter plus... j'me rends
c'est juste parce que j'avais fait un test en ligne depuis un IE 5.01 (de
base / w98se) et que c'était négatif (m'enfin, comme j'ai pas de
protocole...)
j'ai un IE 5.5 (jamais installé directement de SP) patché de tous les
côtés... et je ne saurais dire quelle est sa "version" exacte :-(
mais bon, amha, si il y a moyen de patcher/configurer correctement une
version "stable"... c'est pas obligatoire de passer à la dernière version
(pleine de failles passées, présentes et à venir)
sauf à vouloir bénéficier des nouvelles technologies M$ :-?
désolé si tout cela semble aller à l'encontre des conseils donnés
habituellement (ie "mets d'abord à jour ton IE tout troué")
salut "JacK" a écrit dans le message news: bncceh$vdasv$
si mes souvenirs sont bons... cette version ne souffre même pas de la faille MIME/IFrame (et il me semble avoir vu que M$ la supportait encore un peu)
le "nouveau" n'est pas forcément moins pire :-)
@tchao
Hello,
Ce n'est qu'à partir de la v 5.5SP2 que la faille MIME peut être corrigée, de mémoire.
stop, n'en jeter plus... j'me rends
c'est juste parce que j'avais fait un test en ligne depuis un IE 5.01 (de base / w98se) et que c'était négatif (m'enfin, comme j'ai pas de protocole...)
j'ai un IE 5.5 (jamais installé directement de SP) patché de tous les côtés... et je ne saurais dire quelle est sa "version" exacte :-(
mais bon, amha, si il y a moyen de patcher/configurer correctement une version "stable"... c'est pas obligatoire de passer à la dernière version (pleine de failles passées, présentes et à venir) sauf à vouloir bénéficier des nouvelles technologies M$ :-?
désolé si tout cela semble aller à l'encontre des conseils donnés habituellement (ie "mets d'abord à jour ton IE tout troué")
@tchao
Psionic3a
On Sat, 25 Oct 2003 01:07:29 +0200, "AMcD" wrote:
A few days ago, I got this problem of my home page (using IE 5.01) being constantly changed to LuckySearch, or something, after I rebooted.
As another one said to you: you should update to IE6. More safe...
Well maybe IE6 is 'safer' but probably not for long. I have a very slow comp (by today's standards), and I've tried IE5.5 but found it generally slower than IE5.01.
How does IE6 compare to IE5.5? Is it similar speed and reponsiveness? Is IE6 stable now? I read the first release was very buggy. Also are there any problems to do with IE6 not having java or whatever?
Maybe I should just stop using IE and try Mozilla (Firebird?) or Opera?
I tracked down the problem to a file called tapicfg.exe in the windowssystem folder, with a 'run' entry in the registry. The give away that this file was probably not a windows file, even though it had the same date/time as Win98se files (I'm using Win98se), was that it was in lower case :-) and therefore a 'long file name'.
I'm certain 'tapicfg.exe' is not anything to do with windows or IE, because I have a simple version of the linux 'locate' command (wrote it myself using C++, you wouldn't be impressed by it though :-) ), and it makes a database file of all the files on my system. Basically, tapicfg.exe was not in this database which was updated a few days ago.
This didn't solve the problem after all, as the tapicfg.exe was being replaced on reboot.
You need to kill the process either otherwise it's useless, it copies itself again and again into the registry.
Maybe. I forgot to check all the 'hidden' processes that were running while I was sorting this out. It seems to have gone now, and it's not in memory now.
Obviously the info32.exe is replacing the tapicfg.exe, and also executing the hpfsched.exe printer program.
That's it dude. Actually info32 is just a pathetic trojan. If you need more information why don't you just click these link?
- http://vil.nai.com/vil/content/v_98594.htm
CYA
OK thanx everyone for replying :o)
I'll try to post the tapicfg.exe file to that email address that someone else suggested.
Also, I've downloaded HijackThis and i'll check it out soon.
That's all for now.
-- Psionic3a
On Sat, 25 Oct 2003 01:07:29 +0200, "AMcD" <arnold.mcdonald@free.fr>
wrote:
A few days ago, I got this problem of my home page (using IE 5.01)
being constantly changed to LuckySearch, or something, after I
rebooted.
As another one said to you: you should update to IE6. More safe...
Well maybe IE6 is 'safer' but probably not for long. I have a very
slow comp (by today's standards), and I've tried IE5.5 but found it
generally slower than IE5.01.
How does IE6 compare to IE5.5? Is it similar speed and reponsiveness?
Is IE6 stable now? I read the first release was very buggy. Also are
there any problems to do with IE6 not having java or whatever?
Maybe I should just stop using IE and try Mozilla (Firebird?) or
Opera?
I tracked down the problem to a file called tapicfg.exe in the
windowssystem folder, with a 'run' entry in the registry. The give
away that this file was probably not a windows file, even though it
had the same date/time as Win98se files (I'm using Win98se), was that
it was in lower case :-) and therefore a 'long file name'.
I'm certain 'tapicfg.exe' is not anything to do with windows or IE,
because I have a simple version of the linux 'locate' command (wrote
it myself using C++, you wouldn't be impressed by it though :-) ), and
it makes a database file of all the files on my system. Basically,
tapicfg.exe was not in this database which was updated a few days ago.
This didn't solve the problem after all, as the tapicfg.exe was being
replaced on reboot.
You need to kill the process either otherwise it's useless, it copies itself
again and again into the registry.
Maybe. I forgot to check all the 'hidden' processes that were running
while I was sorting this out. It seems to have gone now, and it's not
in memory now.
Obviously the
info32.exe is replacing the tapicfg.exe, and also executing the
hpfsched.exe printer program.
That's it dude.
Actually info32 is just a pathetic trojan. If you need more information why
don't you just click these link?
- http://vil.nai.com/vil/content/v_98594.htm
CYA
OK thanx everyone for replying :o)
I'll try to post the tapicfg.exe file to that email address that
someone else suggested.
Also, I've downloaded HijackThis and i'll check it out soon.
A few days ago, I got this problem of my home page (using IE 5.01) being constantly changed to LuckySearch, or something, after I rebooted.
As another one said to you: you should update to IE6. More safe...
Well maybe IE6 is 'safer' but probably not for long. I have a very slow comp (by today's standards), and I've tried IE5.5 but found it generally slower than IE5.01.
How does IE6 compare to IE5.5? Is it similar speed and reponsiveness? Is IE6 stable now? I read the first release was very buggy. Also are there any problems to do with IE6 not having java or whatever?
Maybe I should just stop using IE and try Mozilla (Firebird?) or Opera?
I tracked down the problem to a file called tapicfg.exe in the windowssystem folder, with a 'run' entry in the registry. The give away that this file was probably not a windows file, even though it had the same date/time as Win98se files (I'm using Win98se), was that it was in lower case :-) and therefore a 'long file name'.
I'm certain 'tapicfg.exe' is not anything to do with windows or IE, because I have a simple version of the linux 'locate' command (wrote it myself using C++, you wouldn't be impressed by it though :-) ), and it makes a database file of all the files on my system. Basically, tapicfg.exe was not in this database which was updated a few days ago.
This didn't solve the problem after all, as the tapicfg.exe was being replaced on reboot.
You need to kill the process either otherwise it's useless, it copies itself again and again into the registry.
Maybe. I forgot to check all the 'hidden' processes that were running while I was sorting this out. It seems to have gone now, and it's not in memory now.
Obviously the info32.exe is replacing the tapicfg.exe, and also executing the hpfsched.exe printer program.
That's it dude. Actually info32 is just a pathetic trojan. If you need more information why don't you just click these link?
- http://vil.nai.com/vil/content/v_98594.htm
CYA
OK thanx everyone for replying :o)
I'll try to post the tapicfg.exe file to that email address that someone else suggested.
Also, I've downloaded HijackThis and i'll check it out soon.
