Home > Hijackthis Log > Hijackthis Log - No Idea What's Wrong Here But Something Is For Sure

Hijackthis Log - No Idea What's Wrong Here But Something Is For Sure

Delete the following file:C:\windows\system32\lphc35dj0e1an.exeThen delete the following folder and all files in it:C:\program files\rhc75dj0e1anBut on my computer, lphc35dj0e1an and rhc75dj0e1an is different for mine. Start With... I also thought I did post my log on that forum but after you mentioned it again I realized I registered and I did not get the e-mail to complete the Preview post Submit post Cancel post You are reporting the following post: Thinstaller spyware This post has been flagged and will be reviewed by our staff. weblink

I am "Googling" my brains out at this point.I just ran another HJT log and I am going to start from there. The next thing i new there was about $75.00 taken out of my account for this Virus protection, the only thing is that it didn't work. I have a keylogger on my system and am looking for advice on how to remove it. The path is correct to the executable files, and these programs were not changed any time recently.

BleepingComputer is being sued by Enigma Software because of a negative post of SpyHunter. It is running extremely slow, beyond slow. Since they were for the same thing.

The computer seems to be working the same as always. If you are using C:\ - it is C:\System Volume Information then there should be a _restore{xxxxcharacters herexxx} in that directory. Any reason as to why the dns connections are important enough to post this? I am not all that computer savvy, and I was able to follow his instructions and get rid of this nightmare virus.

Thanks again JohnD...you have been a great help. And as I said before, none of these programs should be sending anything (except ipconfig, I suppose)" Disabled the SSDP and the Computer Browser services are disabled the UPnP in the Not sure what I am looking for atm, so far nothing unusual. I Love It!

I have a netgear dgn 2200 and i never ever had a problem since i bought it (a year and a half ago). Glad to be rid of that malicious nuisance.eddy Flag Permalink This was helpful (0) Collapse - You should.. now my computer is working fine and I did not have to do all the things that were listed in an eariler posting. Flag Permalink This was helpful (0) Collapse - You're already infected by pemausff / September 15, 2008 12:06 PM PDT In reply to: Had the same thing happen to me today...

by Grif Thomas Forum moderator / March 21, 2008 2:18 PM PDT In reply to: I had the same thing come up tonight ...I suggest downloading the free program below, then HiJackThis log included! « Reply #1 on: Jul 28, 2010, 08:12 PM » did the torrent have an .exe file in it that you clicked possibly? These were the ports opened in the upnp page on the router: YES TCP 3150 3150 192.168.X.X YES TCP 1232 1232 192.168.X.X YES TCP 1833 1833 192.168.X.X YES UDP 6881 6881 whatever one of them doesn't pick up the others should..

Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quietO4 - HKCU\..\Run: [Aim6] "C:\Program Files\AIM6\aim6.exe" /d locale=en-US ee://aol/imAppO4 - HKUS\S-1-5-18\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'SYSTEM')O4 - HKUS\.DEFAULT\..\Run: [MySpaceIM] C:\Program Files\MySpace\IM\MySpaceIM.exe (User 'Default user')O8 - Extra context menu have a peek at these guys Usually remove from control panel. Set ZA antispyware to "Deep inspection scan" under the advanced options on ZA antivirus/antispyware tab (detection); 3. Now it is my turn.

I suspect this is some sort of screen saver made to look like a BSOD. With a built-in pop-up stopper and no support for ActiveX, it is definitely a safer browser. It will be interesting to see if that helps protect your system. check over here My best guess is that this executable is calling a dll file that is calling the internet.

Public networks should always be used with the trusted zone security slider in the ZA set to the high level, not the medium. So I disabled uPnP, and after a re-boot I haven't seen any of those 239.255.255.250 outgoing requests. It's normally much higher, but I've been copying and pasting now, instead of entering text directly.

Frustrating as all hell when you've got a million other things to do!I've been looking into getting a Mac for sometime now; I need a money infusion big time!

This range was formerly called "Class D." The sender sends a single datagram (from the sender's unicast address) to the multicast address, and the intermediary routers take care of making copies Do you post a new thread, or add to previous posts by replying? I Googled it, and that's how I ended up here. Thanks for all the help, I think things are fine now.

It is something called a "multicast" which means that my PC is sending to a special IP address that forwards to whoever is 'registered' to receive it. Make sure all application windows are closed. why? this content It is different than the XP Antivirus 2008 most sites refer to.First you need to stop the program from loading on startup.

I find it very cool, as it virtualises the OS and prevents ALL changes to the files in the OS and the registry, by creating a virtual barrier, a virtual sandbox, Since it looks like you dont have the toolbar, I suggest you get rid of this line: ---> O4 - HKLM\..\Run: "C:\Program Files\MSN Apps\Updater\01.02.0002.1001\en-us\msnappau.exe" - - - - - - - According to all these softwares im clean. Keeping my fingers crossed!!!