Home > Hjt Log > HJT Log - Jeff

HJT Log - Jeff

If no warning.... Top Wafflemonger Newbie Posts: 2 Joined: Mon Jan 05, 2009 4:09 am Re: PoisonIvy Trojan Scare (with HJT log) Quote Postby Wafflemonger » Thu Feb 05, 2009 5:14 pm I work MFX_R33 said: Both online seaches crash before they can be completed. The speed of the program prohibited me from copying the report.

scanning hidden files ... Please start a New Thread if you're having a similar issue.View our Welcome Guide to learn how to use this site. Completion time: 2010-01-25 21:52:27 ComboFix-quarantined-files.txt 2010-01-26 03:52 ComboFix2.txt 2009-05-03 01:22 Pre-Run: 63,848,366,080 bytes free Post-Run: 63,841,161,216 bytes free - - End Of File - - 40070228658CFB6CE56B6C248D29BD15 Thanks, Jeff 01-27-201010:56 AM #10 HijackThis logs can take some time to research, so please be patient with me.

Reply at the above thread, in the future, please don't duplicate post, as you can see it is frustrating ~Candy~, Sep 6, 2003 #3 This thread has been Locked and Click here to join today! Please copy the fix to Word, or print it, because you won't always have internet access! Do not change any settings unless otherwise told to do so.

There are also some things that I want you do so I can work as good as possible: Please be patient. When you finish the READ ME, you should then be attaching the below logs: - runkeys.txt from GetRunKey - newfiles.txt from ShowNew - the log from the Ewido scan - a Skype also has a window to 'update' the program. http://forums.techguy.org/t162798/s.html One of the mod's should delete this post or something Topkat, Sep 6, 2003 #2 ~Candy~ Retired Administrator Joined: Jan 27, 2001 Messages: 103,706 Closing duplicate.

Here is my log file from HijackThis:Logfile of HijackThis v1.98.0Scan saved at 23:20:32, on 2004-07-13Platform: Windows XP SP1 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\System32\CTHELPER.EXEC:\PROGRA~1\NORTON~1\navapw32.exeC:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXEC:\Program Files\EPSON\Ink Monitor\InkMonitor.exeC:\WINDOWS\System32\taskswitch.exeC:\Program Files\MusicMatch\MusicMatch Jukebox\mmtask.exeC:\WINDOWS\System32\pqfkue.exeC:\WINDOWS\System32\ctfmon.exeC:\Program Files\InterVideo\MSIPVS\WinScheduler.exeC:\Program I don't see any signs of iTunes so I guess you have already been able to uninstall it yourself? Kind regards Back to top #57 #FNK-346811 #FNK-346811 Member Members 60 posts Posted 21 November 2011 - 12:39 PM ...ahhhh! Powered by vBulletin Version 4.2.0 Copyright © 2017 vBulletin Solutions, Inc.

See if OTL fix will run... Help us fight Enigma Software's lawsuit! (Click on the above link to learn more) Become a BleepingComputer fan: FacebookFollow us on Twitter! Hang with us on LockerDomeCircle BleepingComputer on Google+!How to detect vulnerable programs using Secunia Personal Software Inspector Simple and easy ways to keep your computer safe and secure on the Internet If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

I have not gone any further. The instructions here ask you to attach the Attach.txt. Double click OTM.exe to start the tool. Page 1 of 2 12 Last Jump to page: Results 1 to 10 of 14 Thread: HJT Log Worries!!

Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dllO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dllO2 - BHO: Spybot-S&D Chess - http://download.games.yahoo.com/games/clients/y/ct0_x.cab O16 - DPF: Yahoo! I know that you need your computer working as quickly as possible, and I will work hard to help see that happens. You can still call Adobe Acrobat from Start > All Programs So now please download and install the latest version of Adobe Reader: Visit this website: AdobeClick Get ADOBE ReaderChoose to

If there is no information available try and re-create the BSOD and try again with the tool to collect the information. Register now! A case like this could easily cost hundreds of thousands of dollars. Then click the Fix buttonR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://websearch.drsnsrch.com/sidesearch.cgi?id=R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://websearch.drsnsrch.com/sidesearch.cgi?id=R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://websearch.drsnsrch.com/sidesearch.cgi?id=R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://websearch.drsnsrch.com/sidesearch.cgi?id=R0 - HKLM\Software\Microsoft\Internet

Use a Firewall - Using a Firewall on your computer can be very important. Is reformatting my C drive my only option left? Lets uninstall and put a clean copy on and see how that goes.

HIjackthis log included... << < (2/3) > >> JLYC: --- Quote from: whocares on October 07, 2004, 04:26:47 PM ---format c: /flattening the system and setting it up PROPERLY would be

Register Help Remember Me? Trained by MalWare Removal Proud Member Of: Alliance of Security Analysis Professionals Unified Network of Instructors and Trained Eliminators 01-26-201010:55 AM #7 JBKX Member Join Date Dec 2004 Posts 38 Points Thanks. OTL.Txt and Extras.Txt.

Please try the request again. Top Jeffrey User Posts: 495 Joined: Sun Sep 03, 2006 2:39 pm Location: Guam, US Power: 99,999,999 Contact: Contact Jeffrey Website Re: PoisonIvy Trojan Scare (with HJT log) Quote Postby Jeffrey The scan wont take long. There are some different situations you can be in where a third-party firewall may or may not be a good addition to your system: If you are not using Windows XP

Please advise on the above. Thanks for your time Sorry its an awkward one Jeff Jeff18-06-12, 19:10I did not get as far as step 2, and thought it best to wait for further instruction. Although, I can still restart in normal mode and utilize all of the computer programs -- as long as Symantec has its way with the previous-stated Java file. Thanks, Jeff 01-25-201008:45 AM #6 JohnB151 Moderator Forum Moderator Join Date Mar 2009 Location The Netherlands Posts 951 Points 38 Hi Jeff, Just checked out the link and it seems to

HJT Log - Jeff Started by Jeff , Jul 13 2004 10:22 PM This topic is locked 4 replies to this topic #1 Jeff Jeff Members 8 posts OFFLINE Local Compagnon - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\WINDOWS\Downloaded Program Files\ycomp5_1_6_0.dllO3 - Toolbar: Barre d'outils MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Toolbar\01.01.1629.0\fr-ca\msntb.dllO3 - Toolbar: (no name) - {2CDE1A7D-A478-4291-BF31-E1B4C16F92EB} - (no file)O4 - HKLM\..\Run: [TCASUTIEXE] TCAUDIAG.EXE Jeff30-06-12, 14:56Hello again Kevin I must be doing something wrong? When I tried to move the virus to chest in safemode, avast still says that it can't process the file.

I also have this window that intermittently pops up and then goes away (so fast I can't do anything).Anyone here see anything? Join over 733,556 other people just like you! After switching of all security and trying again, i just got another BS. thriXXX WebLaunch Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Office InfoPath 2007 (KB976416) Update for Outlook 2007 Junk Email Filter

This site is completely free -- paid for by advertisers and donations. Back to top #3 Jeff Jeff Topic Starter Members 8 posts OFFLINE Local time:07:02 PM Posted 14 July 2004 - 07:06 AM I think it's working. Download Mirror #1 (http://jpshortstuff.247fixes.com/SystemLook.exe) Download Mirror #2 (http://images.malwareremoval.com/jpshortstuff/SystemLook.exe) Double-click SystemLook.exe to run it. Also came across some info regarding hal.dll files.

SFC seeks a disc. My logs: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:03:39 PM, on 1/17/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: button and specify where you would like to save this file. There is the appearance that there may be a kink or two remaining.

Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them in your reply The logs can be be excessive, if they exceed forum character