Hijack This Log: Am I Paranoid?
I expect it gives you some peace of mind. After doing so, if a reputable person with HJT log experience (not me) comments that ALL your HJT logs are clean, then you can point your ISP to this thread to Hill said: Anyways, I've been getting, about everyother day, emails saying message undeliverable. Therefore, TCPView would not indicate any questionable activity. his comment is here
ZoneAlarm Pro has a master setting that allows you to "block Internet servers ". Mozilla (the same organization that used to maintain Netscape) currently offers Firefox for web browsing and Thunderbird for e-mail. Usually if there is a rogue rundll32.exe, then there is often an unusual rundll32 entry in the HKLM\..\Run section of the log. And other accounts must also be scanned for nasties and then HJT log files run for analysis.
I suppose it is never too late. Home users, ensure your internet security now with Port Explorer!Click to expand... If you're not sure about whether to grant permission or not, it's always safest to deny now, investigate, and then enable it later if necessary. I'm getting paranoid with this so can someone help me out? « Last Edit: June 22, 2010, 03:23:52 AM by beathex » Logged Chiron Global Moderator Comodo's Hero Posts: 11951 Re:
I am also waiting for PCTOOLS reply. Keep in mind, malware might use legitimate processes as slaves for its dirty work so don't be too quick to "kill" processes. Thank you. Do I need to run Hijack logs for all accounts?Click to expand...
log OK. I recommend contacting Comodo Live Support. In order to find out what entries are nasty and what are installed by the user, you need some background information.A logfile is not so easy to analyze. Logged Please Improve CIS By Voting On These WishesHow To Install Comodo Firewal beathex Newbie Posts: 19 Re: POP UPS from SD « Reply #2 on: June 02, 2010, 11:36:36 AM
If this is all CCS found and they turn out to be safe then I don't believe you are infected. I have been reading on the link you gave and this looks like it will take a lot of time plus I'm a beginner with this. I was able to log back on and finish the message but it really made me paranoid. If you are not sure which version applies to your system, download both of them and try to run them.
Please type your message and try again. 1 Reply Latest reply on Feb 13, 2011 8:08 AM by Peter M Paranoia question... this content If you right-click on that pale yellow section, you will be presented with an option to Copy the contents to your clipboard. Best regards. News: Home Help Search Login Register The Comodo Forum > Learn about Computer Security and Interact with Security Experts > Virus/Malware Removal Assistance > Multiple rundll32.exe with hijackthis log Print Pages:
Message Edited by Oldsod on 04-20-2008 11:26 PM Best regards. Those seem like Sony files, not malware. Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. weblink Teach me to fish and I can eat for a lifetime. --- mailman, #9 2006/09/01 TeMerc Geek Member Alumni Joined: 2006/05/13 Messages: 3,226 Likes Received: 3 Trophy Points: 608 Location: PHX.
Regarding those entries that you highlighted, Those are definitely 'bad' entries. Good luck! ...and please keep us posted. Re: Paranoia question...
This is 9-1…2.
Same with browser. If I don't reply back to you in 2 days, feel free tosend me a PM. "You're lying… just like you were lying to me before. Will post log when its done. Malware Removal helpers are often stretched with the sheer amount of work and we would appreciate that no "double-work" is carried out.
I'll probably get TCPViewClick to expand... I have them gone to Control Panel --> Administrative Functions --> Event viewer And found that the 4 programs tried loading on 04/13/2008 but were unable to because "service was an I downloaded Port Explorer. check over here I've been there.
Back to top Back to Virus, Trojan, Spyware, and Malware Removal Logs 0 user(s) are reading this topic 0 members, 0 guests, 0 anonymous users Reply to quoted postsClear BleepingComputer.com Logfile of Trend Micro HijackThis v2.0.5 Scan saved at 3:28:10 PM, on 10/1/2016 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v11.0 (11.00.14393.0000) FIREFOX: 48.0.1 (x86 en-US) Boot mode: Normal Do I need to run Hijack logs for all accounts? Heath, I also thought of another idea. (Using TCPView might not be necessary...although it almost certainly won't hurt.) Idea: In your ZoneAlarm Pro Program Control > Programs tab, scroll through your
Is it part of skype?I have read and tried the guide and I was wondering if it's ok that I post a hijack log here? I would also guess there are such exploits being used that haven't been detected yet simply because so many malicious people focus on exploiting popular applications/operating systems. Oldsod. Sysinternals has even been acquired by Microsoft.
Learn More. More... or High so ZAPro will intercept programs seeking server rights. I would be happy to focus on the many others who are waiting in line for assistance.
Logged Print Pages:  Go Up The Comodo Forum > Learn about Computer Security and Interact with Security Experts > Virus/Malware Removal Assistance > Multiple rundll32.exe with hijackthis log Free Teach me to fish and I can eat for a lifetime. --- mailman, #5 2006/08/30 TeMerc Geek Member Alumni Joined: 2006/05/13 Messages: 3,226 Likes Received: 3 Trophy Points: 608 Location: PHX. Removing malware can be unpredictable and this step can save a lot of heartaches if things don't go as planned. Logged redfox23 Newbie Posts: 18 Re: please check hijackthis log « Reply #2 on: September 27, 2012, 02:39:05 AM » AdwCleaner Log « Last Edit: October 02, 2012, 08:02:50 AM by
I've been the worst daughter in the world… you should hate me." "But I don't, Nyx. Give me a fish and I can eat for a day. My name isSirawitand I'm here to help you. All rights reserved Powered by SMF 2.0.7 | SMF © 2001-2006, Lewis Media XHTML RSS WAP2 Seo4Smf 2.0 © SmfMod.Com Smf Destek
I noticed it pops up sometimes when skype was running so I have contacted skype and looks like it's their IP for peer to peer connection. The files associated with them are gone, so by disabling it I think that should be enough. So I best leave this to Guru Chiaz. I just uninstalled and reinstalled malwarebytes and its scanning right now.