Home > Hijack This > HiJack This Log.thanks For Looking

HiJack This Log.thanks For Looking

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Rotue -> Adware.InternetOptimizer : Cleaned with backup (quarantined). HKLM\SOFTWARE\Classes\TopSearch.TSLink -> Adware.Altnet : Cleaned with backup (quarantined). Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Any advice on what to do about this would be greatly appreciated. his comment is here

Newer Than: Search this thread only Search this forum only Display results as threads Useful Searches Recent Posts More... And the O16 - DPF: {88D969C0-F192-11D4-A65F-0040963251E5} (XML DOM Document 4.0) - file://C:\TempEI4\EI40_\msxml4.cab ...seems weird. If you use this mirror, please extract the zip file to your desktop.Disconnect from the Internet and close all running programs.Temporarily disable any real-time active protection so your security programs will OTListIt.Txt and Extras.Txt.

Join over 733,556 other people just like you! Thanks!! Please reboot your computer into Safe Mode. In order to find out what entries are nasty and what are installed by the user, you need some background information.A logfile is not so easy to analyze.

Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O16 - DPF: v2cab To boot into Safe Mode, please restart your computer. HKLM\SOFTWARE\Avenue Media\Internet Optimizer\WSE\cf2 -> Adware.InternetOptimizer : Cleaned with backup (quarantined). C:\Program Files\Altnet\My Altnet Shares\Bullguard Protection -> Adware.Altnet : Cleaned with backup (quarantined).

I've done as you requested and here is the reports:-------------------------------------------------------------------------------------------------------------------------------1:OTListIt logfile created on: 21/01/2009 12:38:36 PM - Run OTListIt2 by OldTimer - Version Folder = C:\Users\Sean\DesktopWindows Vista Ultimate Edition Service Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exeO23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXEO23 - Service: If you want the Ctrl Alt F12 or similar keypresses to access Intel's customised graphics properties, you need it, otherwise not. So, I was able to install, run and save the hijackthis log to post on here.

about rootkit activity and are asked to fully scan your system...click NO.Now click the Scan button. Please note that your topic was not intentionally overlooked. Thank you. C:\Program Files\Internet Optimizer\update\actalert.exe -> Adware.InternetOptimizer : Cleaned with backup (quarantined).

If I have helped you then please consider donating to continue the fight against malware Back to top #3 schrauber schrauber Mr.Mechanic Malware Response Team 24,794 posts OFFLINE Gender:Male Location:Munich,Germany Can be disabled via Control Panel -> Display Properties. Click the Apply all actions button. What's that? ...and, of course, if anything else looks wrongweird, let me know.

Back to top #3 fireman4it fireman4it Bleepin' Fireman Malware Response Team 13,403 posts OFFLINE Gender:Male Location:Bement, ILL Local time:04:42 PM Posted 30 July 2009 - 04:04 PM Hello and welcome this content Can be disabled via Control Panel -> Display Properties. There may be legitimate files found This log should be examined by a trained analyst * * * PRE-RUN - Filepaths extracted from the Registry * * * * * * Click here to Register a free account now!

You know, where Yoda lives. egular.cab O16 - DPF: {B9191F79-5613-4C76-AA2A-398534BB8999} (YAddBook Class) - http://us.dl1.yimg.com/download.yahoo.c ... I don't know where the 08 entry and the three 09 entries came from... weblink Password Site Map Posting Help Register Rules Today's Posts Search Site Map Home Forum Rules Members List Contact Us Community Links Pictures & Albums Members List Search Forums Show Threads

Cheeseball81, Apr 27, 2006 #2 bloomcounty Thread Starter Joined: Jun 4, 2005 Messages: 112 Cheeseball81 said: The 04 is installed by the Intel 810 and 815 chipset graphic drivers. Internet reconnecting,packet.... HKLM\SOFTWARE\Classes\BookedSpace.Extension.5 -> Adware.BookedSpace : Error during cleaning.

Thank you!

My computer appears to be running fine -- but some of this stuff is unfamiliar. Style Default Style Contact Us Help Home Top RSS Terms and Rules Copyright © TechGuy, Inc. Started by quick2k2ecotec, Jun 26 2006 10:36 AM This topic is locked 20 replies to this topic #1 quick2k2ecotec quick2k2ecotec Member Full Member 18 posts Posted 26 June 2006 - 10:36 Even for an advanced computer user.

The 02 entry I don't know where it came from (perhaps an Adobe Acrobat update?). http://www.myspace.com/speedbumpthecelt 07-10-2004, 10:00 PM #3 JoshuasWS6 Registered Member Join Date: Jul 2004 Location: Albuquerque Posts: 2 OS: WIN2K PRO Thanks! « search for... EDIT: And Fuck you too Windupdates.com! check over here Quote Postby Soontir C'boath » 2004-09-26 03:51pm Logfile of HijackThis v1.98.2 Scan saved at 3:47:16 PM, on 9/26/2004 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe

Contact: Contact Soontir C'boath Website WLM AOL Need someone to look at this hijackthis log. C:\WINDOWS\cfg32s.dll -> Adware.BookedSpace : Cleaned with backup (quarantined). C:\WINDOWS\ixehndcg.exe -> Adware.BookedSpace : Cleaned with backup (quarantined). I can't believe I stumbled across such an awesome website.I went through the intro, ran Malwarebytes and removed 3 infections.

More info here: http://msdn.microsoft.com/library/d...html/e9da2722-7879-4e48-869c-7f16714e2824.asp Your log looks fine. Unfortunately there's little to no improvement. The O4 - HKLM\..\Run: [HotKeysCmds] ...etc. -- what is that? C:\Program Files\Common Files\Down.exe -> Adware.Agent : Cleaned with backup (quarantined).