Home > Hjt Log > HJT Log - Tegan

HJT Log - Tegan

BLEEPINGCOMPUTER NEEDS YOUR HELP! Notes: 1.Do not mouse-click Combofix's window while it is running. please find attached the combofix file, and here is the contents of the HJT log: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:54:48, on 16/04/2009 Platform: Windows XP SP2 Please Started by Teegs , Mar 05 2009 03:08 PM This topic is locked 2 replies to this topic #1 Teegs Teegs New Member Authentic Member 16 posts Posted 05 March

Once the program has loaded, select "Perform Quick Scan", then click Scan. Make sure to update before running. Many of the finds have likely been quarantined. We The DAO Index Search Members Calendar Help The DAO Forums are live!

They may otherwise interfere with our tools. We only require a report from it. * Do NOT be alarmed by what you see in the report. just restarted my laptop, and everything seems to be in working order... Did we mention that it's free.

Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Try What the Tech -- It's free! If you need help working with these tools, here are some helpful tutorials.Spybot TutorialAdaware Tutorial **********************************************************************Please use one of these free online scans. Here's how it works.

In order to find out what entries are nasty and what are installed by the user, you need some background information.A logfile is not so easy to analyze. Please do a scan with Kaspersky Online Scanner or from here http://www.kaspersky.com/virusscanner Note: If you are using Windows Vista, open your browser by right-clicking on its icon and select 'Run as Join 91116 other members! Virus cleanup?

Free malware removal help and training has remained a constant. No hidden catch. Please check back later. If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Please include the C:\ComboFix.txt in your next reply. I can get to programs using the Task Manager. Anybody can ask, anybody can answer. Try What the Tech -- It's free!

Have tried the F8 and boot with last safe config, as well as safe mode. uStart Page = hxxp://www.google.com/ uInternet Settings,ProxyServer = proxyss.wits.ac.za:80 uInternet Settings,ProxyOverride = uSearchURL,(Default) = hxxp://www.google.com/search?q=%s LSP: imon.dll FF - ProfilePath - c:\documents and settings\Tegan\Application Data\Mozilla\Firefox\Profiles\5of98r9v.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT1371996&SearchSource=3&q= When finished, it shall produce a log for you. Login Register Login at We The DAO -DAO Fourms Welcome to We the DAO, please login to continue.

as i closed down before the restart, a program was closing called "dummywindowless"...? i ran combo anyways, if the nod32 is a problem please can you advise me on how i can turn it off without the icon? The Administrator has specified the reason as to why below.These forums are currently closed for maintenance. Now click "Apply to all folders" Click "Apply" then "OK" then go to C:\windows\temp and select EVERYTHING and delete it all and then do the same for C:\temp if it exists

Advertisement Gus Goober Thread Starter Joined: Apr 12, 2005 Messages: 62 Could someone please look over this log. Hello There, Guest! MalwareRemoval.com provides free support for people with infected computers.

Hijack this log: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 7:39:17 AM, on 6/03/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16791) Boot mode: Normal Running

Follow Us Facebook Twitter Help Community Forum Software by IP.BoardLicensed to: What the Tech Copyright © 2003- Geeks to Go, Inc. Cluster headaches forced retirement of Tom in 2007, and the site was renamed "What the Tech". Now copy/paste the entire content of the codebox below into the Notepad window: Registry:: [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{9508a648-f670-11dd-853d-00c09fbc3418}] [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e699d044-2fc2-11db-8457-00c09fbc3418}] 3. However, we do not guarantee that they are accurate and they are to be used at your own risk.

It's 100% free. When the scan is complete, click OK, then Show Results to view the results. To learn more and to read the lawsuit, click here. Register to remove all ads.

The first file name will appear in the window and if the file exists it will appear in blue under that window then select standard file kill, press the red X I haven't changed or downloaded anything that I am aware of, but infection is possible through my university network, or from infected USB disks. Our help, and the tools we use are always 100% free. O4 - Global Startup: ExifLauncher2.lnk = C:\Program Files\FinePixViewer\QuickDCF2.exe O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu

WE'RE SURE THAT YOU'LL LOVE US! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Common\ycomp5,0,8,0.dll O3 - Toolbar: (no name) - {C5183ABC-EB6E-4E05-B8C9-500A16B6CF94} - (no file) O3 - Toolbar: Web assistant - {0B53EAC3-8D69-4b9e-9B19-A37C9A5676A7} - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll O3 - Toolbar: Also uncheck "Hide protected operating system files" and untick "hide extensions for known file types" .