Home > Hijack This > Hijack This Log File Of Friend's Computer.

Hijack This Log File Of Friend's Computer.

The first, can someone have a look at this logfile from HijackThis - it's from a friend's computer that's been running a bit sluggish, and I want to know if there's Back to top #8 LSlick LSlick Advanced Member Members 39 posts Posted 09 July 2008 - 07:07 PM KASPERSKY ONLINE SCANNER REPORT Tuesday, July 08, 2008 4:54:45 PM Operating System: Microsoft HijackThis Log [Friend's Computer]: Please help Diagnose Started by BMacNinja , Oct 21 2009 09:43 AM This topic is locked 2 replies to this topic #1 BMacNinja BMacNinja Members 2 posts Click here to join today! weblink

To learn more and to read the lawsuit, click here. With the help of this automatic analyzer you are able to get some additional support. Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Several functions may not work.

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} When finished, it shall produce a log for you (C:\ComboFix.txt). Let me know if you still require my assistance. The scan will take a while so be patient and let it run.

That may cause it to stallCombofix should never take more that 20 minutes including the reboot if malware is detected.If it does, open Task Manager then Processes tab (press ctrl, alt Download combofix from any of these links and save it to Desktop:Link 1Link 2Link 3 **Note: It is important that it is saved directly to your desktop**2. You found the friendliest gaming & tech geeks around. Provided removal instructions are meant to be used in the correspondent user's case only.

Click here to Register a free account now! Here's the hijackthis log: Logfile of HijackThis v1.98.2 Scan saved at 8:12:27 PM, on 9/30/2004 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe Save the file to your desktop. Now that we're in the middle of Legion, with Nighthold here and our raid team making excellent progress, it's time to ta… primesuspect Beepin n' Boopin Detroit, MI 15 Jan Icrontic

No need for code. Double click combofix.exe & follow the prompts.3. You will be prompted to reboot. sjpritch25, Jun 10, 2008 #3 449 Thread Starter Joined: Mar 12, 2008 Messages: 25 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:57:45 PM, on 6/8/2008 Platform: Windows XP SP2

Reboot Please go here for Wintools removal instructions. Site Changelog Community Forum Software by IP.Board Sign In Use Facebook Use Twitter Need an account? I downloaded ewido and here is the log file: ewido anti-spyware - Scan Report + Created at: 3:15:49 PM 8/8/2006 + Scan result: HKLM\SOFTWARE\BTIEIN -> Adware.WebSearch : Error during cleaning. Results 1 to 4 of 4 Thread: Please assist with HijackThis log from friend's computer!

Service & Support HijackThis.de Supportforum Deutsch | English Forospyware.com (Spanish) www.forospyware.com Malwarecrypt.com www.malwarecrypt.com Computerhilfen www.computerhilfen.com Log file Show the visitors ratings © 2004 - 2017 http://exomatik.net/hijack-this/hijack-this-log-file-help-me-out.php Staff Online Now valis Moderator cwwozniak Trusted Advisor Macboatmaster Trusted Advisor Advertisement Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware Removal > Home Forums If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. It took a few tries but I finally got it removed.

Please go HERE to run Panda's ActiveScanOnce you are on the Panda site click the Scan your PC buttonA new window will open...click the Check Now buttonEnter your CountryEnter your State/ProvinceEnter As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged A case like this could easily cost hundreds of thousands of dollars. http://exomatik.net/hijack-this/hijack-this-log-from-a-friend-s-laptop.php Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)Close browsers and other windows.

Join over 733,556 other people just like you! or read our Welcome Guide to learn how to use this site. Cheers Lizard Logfile of HijackThis v1.99.1 Scan saved at 5:19:44 p.m., on 30/03/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe

HKLM\SOFTWARE\BTIEIN\BTIEIN -> Adware.WebSearch : Error during cleaning.

Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: PD91Agent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe O23 - Service: PD91Engine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk2008\PD91Engine.exe I cannot tell if those two items are tied together. scanning hidden autostart entries ...scanning hidden files ... Please thank your helpers and there will always be help here when you need it!======================================================== Back to top Back to Virus, Trojan, Spyware, and Malware Removal Logs 0 user(s) are reading

Thanks *Edit* corrected spelling mistake in "BTIEIN" 0 notavirusfan Aug 2006 edited Aug 2006 I was able to remove the BTIEIN from the registry. O3 - Toolbar: DVDAUDIO - {2E46CBF9-34E1-13E3-4031-E36B6D450FEB} - C:\PROGRA~1\AXISDR~1\Vga64.dll O4 - HKLM\..\Run: [Rundll32_7] rundll32.exe C:\WINDOWS\System32\msiefr40.dll,DllRunServer (BrowserAid Spyware) O4 - HKLM\..\Run: [Fouronce] C:\PROGRA~1\TRANSS~1\Soft Obj Store.exe O4 - HKCU\..\RunOnce: [Diagnose Uninstall] C:\WINDOWS\System32\bcmrmv.exe -R [STEP Well it's really you are helping me who I am helping my friend. this content Icrontic › All Discussions › Spyware & Virus Removal Talk to Us Twitter @icrontic Facebook Page IRC Channel Steam Group The 5¢ Tour About Us Our Epic History Team Fortress 2

I was able to enable Task manager and set homepage to "About Blank" using Spybot. To start viewing messages, select the forum that you want to visit from the selection below. But still, I referred him here so I would appreciate it if someone can help the problem.Logfile of Trend Micro HijackThis v2.0.2Scan saved at 9:06:02 PM, on 7/5/2008Platform: Windows XP SP2 scan completed successfullyhidden files: 0**************************************************************************.------------------------ Other Running Processes ------------------------.C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exeC:\Program Files\Bonjour\mDNSResponder.exeC:\WINDOWS\system32\nvsvc32.exeC:\WINDOWS\system32\HPZipm12.exeC:\Program Files\Microsoft ActiveSync\rapimgr.exeC:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exeC:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exeC:\Program Files\Zune\ZuneNss.exeC:\Program Files\Canon\CAL\CALMAIN.exe.**************************************************************************.Completion time: 2008-07-08 12:29:35 - machine was rebootedComboFix-quarantined-files.txt

CONTRIBUTE TO OUR LEGAL DEFENSE All unused funds will be donated to the Electronic Frontier Foundation (EFF). scanning hidden autostart entries ...scanning hidden files ... **************************************************************************.Completion time: 2008-07-08 13:19:41ComboFix-quarantined-files.txt 2008-07-08 17:18:38ComboFix2.txt 2008-07-08 16:29:36Pre-Run: 46,625,644,544 bytes freePost-Run: 46,613,598,208 bytes free143 --- E O F --- 2008-07-03 23:00:28 Back to Logfile of HijackThis v1.99.1 Scan saved at 4:06:47 PM, on 8/7/2006 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe Help would be greatly appreciated.

Feedback Doctor's Lounge « Previous Thread | Next Thread » Thread Information Users Browsing this Thread There are currently 1 users browsing this thread. (0 members and 1 guests) Posting Permissions Several functions may not work. Active topics Unanswered topics Blizzpub »Technical Support »Hijackthis log of friend's computer. The program will launch and start to download the latest definition files.