Home > Hijackthis Log > HijackThis Log - 23rd January 2010

HijackThis Log - 23rd January 2010

This time only Flash Player was found to be older, though I had run the Flash installer the scanner had directed me to.What should I do next? Microsoft MVP Consumer Security 2008 2009 2010 2011 2012 2013 UNITE member since 2006 I don't help with logs thru PM so don't bother to post me one. The topics you are tracking can be found here.Please take note of some guidelines for this fix:Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the Please use "Reply to this topic" -button while replying. weblink

prompt appears.If you are prompted to Reboot during the cleanup, select Yes.The tool will delete itself once it finishes, if not delete it by yourself.Note: If you receive a warning from Report follows after line. ------------------------------------ The JavaRa removal process was started on Sun Jan 24 10:03:40 2010 Found and removed: SOFTWARE\Classes\Installer\Features\8A0F842331866D117AB7000B0D610000 Found and removed: SOFTWARE\Classes\Installer\Products\8A0F842331866D117AB7000B0D610000 Found and removed: SOFTWARE\Classes\Installer\UpgradeCodes\7A0F842331866D117AB7000B0D610000 Found and Alternatively, you can click the button at the top bar of this topic and Track this Topic. Status code returned is data DWORD 0.

bubbax1 24.01.2010 14:25 Any news please I have the same problem with DTA e KIS 2010 ThanksBub Adam 1972 24.01.2010 18:56 Not heard anything back from support,will have to wait till How much memory does the system have installed?Uninstall old Adobe Reader versions and get the latest one (9.3) here or get Foxit Reader here. This is a "lo-fi" version of our main content.

I was not able to run the gmer program, it shut windows down after running a while. Status code returned is data DWORD 0. Uncheck any checkboxes listed for your hard drives. 7. I choose to stop installing, and it seems that the result is that I have AdAware but not AdWatch.

Kvist domain: JacobVKvist-PC>>> PID: 5840 name: C:\Program Files\Logitech\SetPoint\SetPoint.exe owner: Jacob V. Back to top #12 Blade81 Blade81 Advanced Member Volunteer Security Advisor 6582 posts Posted 23 January 2010 - 03:27 PM Hi,Does the error message appear immediately or when you try to Kvist domain: JacobVKvist-PC>>> PID: 4052 name: C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe owner: Jacob V. Using this tool incorrectly could lead to serious problems with your operating system such as preventing it from ever starting again.

Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- End of file - 13329 bytes Back to top #5 Juliet Juliet Advanced Member Trusted Malware Techs 23,130 posts Gender:Female Posted 23 January 2010 - 06:29 HappySmoker 24.01.2010 19:10 Thanks for the info Adam.KIS is an excellent product and I've had few problem with it over the last 4 years of use...but I do think they need If you don't have an XP CD, go to Microsoft's web site, scroll down to Step 1 and download the appropriate XP Setup boot disks for your operating system.Follow the prompts Started by mzeal 2 Replies 391 Views Thursday 4 February 2010, 10:44:53 PM by Chrissy Bee ipod Docking Station Ideas Started by Geordiesned 16 Replies 3,518 Views Monday 1 February 2010,

I was surfing the web when all of a sudden my screen went blank and the computer did a system reset. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. Kvist domain: JacobVKvist-PC>>> PID: 4296 name: C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe owner: Jacob V. c:\windows\$hf_mig$\KB941644\SP2QFE\tcpip.sys [-] 2006-04-20 .

File not foundO15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/microsoftu...b?1262828646546 (WUWebControl Class)O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftu...b?1259727658555 (MUWebControl Class)O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab http://exomatik.net/hijackthis-log/hijackthis-log-6-28.php Microsoft MVP Consumer Security 2008 2009 2010 2011 2012 2013 UNITE member since 2006 I don't help with logs thru PM so don't bother to post me one. They may otherwise interfere with our tools. If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop.Combofix is back online so let's see if there's still anything kicking

PowerPoint Video Converter 2010-01-16 19:56:35 ----SD---- C:\WINDOWS\Downloaded Program Files 2010-01-16 19:56:33 ----RD---- C:\Program Files 2010-01-13 19:37:05 ----D---- C:\Documents and Settings\Administrator\Application Data\Image Zone Express 2010-01-13 19:11:41 ----D---- C:\WINDOWS\system32\drivers 2010-01-13 19:11:38 ----D---- C:\WINDOWS\system32\ReinstallBackups Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. The reason for this is so we know what is going on with the machine at any time. check over here Start here -> Malware Removal Forum.

loppen06 Back to top #8 Blade81 Blade81 Advanced Member Volunteer Security Advisor 6582 posts Posted 17 January 2010 - 05:45 PM It could be conflict with Symantec. button to save the scan results to your Desktop. richbuff 25.01.2010 03:37 QUOTEwhen I download pirated stuff, KIS is always good for scanning it.

Once it has finished, two logs will open: log.txt<-- this will be maximized and info.txt<-- this will be minimized.These reports are long, please post the contents of both logs (in separate

Please download DeFogger by jpshortstuff and save it to your desktop.Double click DeFoggerexe to run the tool.The application window will appear.Click the Disable button to disable your CD Emulation driversClick Yes So I think some issues remain. Back to top #17 loppen06 loppen06 Member Members 10 posts Posted 24 January 2010 - 07:16 PM Yes service pack 3 is installed. Record Number: 4364 Source Name: PerfDisk Time Written: 20100115204604.000000-360 Event Type: warning User: Computer Name: EVOPC-73D80F2DF Event Code: 20 Message: Record Number: 4363 Source Name: Google Update Time Written: 20100115200532.000000-360 Event

If you see a rootkit warning window, click OK.When the scan is finished, click the Save... Please use "Reply to this topic" -button while replying. Kvist domain: JacobVKvist-PC>>> PID: 5408 name: C:\Program Files\Analog Devices\Core\smax4pnp.exe owner: Jacob V. this content Using the site is easy and fun.

HappySmoker 27.01.2010 20:29 Just got a very quick reply. Any suggestions??? Adam 1972 29.01.2010 15:17 Someone added to the support ticket on the DTA site as follows:- I have KIS 9.0.0.736 a,b. scan completed successfully hidden files: 0 ************************************************************************** . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'lsass.exe'(624) c:\windows\system32\SpSubLSP.dll - - - - - -

Please re-enable javascript to access full functionality. I cant switch to running processes like i used to be able to. Of course, I need to click "End Now" to get it to close. This site, sUBs and myself will not be responsible for any damage caused to your machine by misusing or running ComboFix on your own.

You should have only one antivirus program installed.Have you defragged the hard drive lately? Provided removal instructions are meant to be used in the correspondent user's case only. The system clock is unsynchronized. Started by Dr.Spaceman 4 Replies 432 Views Friday 5 February 2010, 05:24:02 PM by Dave Unused ram to video card?

If you have problems create a thread in the forum, please.Don't post your log into other user's topic, create a new one. If one of them won't run then download and try to run the other one. I get this warning ONLY when I am installing AdAware. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Save ComboFix.exe to your Desktop * IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. Windows XP Started by WalkervilleMag 1 Replies 467 Views Sunday 6 December 2009, 12:56:19 PM by Willow Creating a VPN Started by Coco 2 Replies 455 Views Thursday 3 December 2009, Provided removal instructions are meant to be used in the correspondent user's case only. c:\documents and settings\Owner\Application Data\inst.exe c:\documents and settings\Owner\Application Data\SystemProc c:\documents and settings\Owner\Application Data\SystemProc\lsass.exe c:\documents and settings\Owner\My Documents\021802 registry.reg c:\program files\INSTALL.LOG c:\program files\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D} c:\program files\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\chrome.manifest c:\program files\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\chrome\content\timer.xul c:\program files\Mozilla Firefox\extensions\{8CE11043-9A15-4207-A565-0C94C42D590D}\install.rdf

nasdaq Favorite tools: [ SpywareBlaster ] [ Spybot ] [ AdAware ] [ HijackThis ] [ Housecall online virus scan ] [ Bitdefender online virus scan ] [ AVG antivirus ] If you have problems create a thread in the forum, please.Don't post your log into other user's topic, create a new one. not really...It's just a usual-blue-box type of thing that you get when windows has trouble shutting down a program when you shut down the computer (but have left other programs running).