Home > Hjt Log > Hjt Log - Whistler

Hjt Log - Whistler

z-Gemma 2 star pc loads duplicate photos from... » Site Navigation » Forum> User CP> FAQ> Support.Me> Steam Error 118> 10.0.0.2> Trusteer Endpoint Protection All times are GMT -7. I thought once you bought your Win CD you could reinstall as much as you needed. Gebruikers die verbonden zijn met een server waarop WSUS (Windows Server Upd... jonderekm Inactive Malware Help Topics 5 01-17-2005 07:10 PM Posting Rules You may not post new threads You may not post replies You may not post attachments You may not edit

I followed directions there as well as advice from... Thanks Viccy... ****************************** P4 3.0 Gig HT Win XP Home SP 2 1.5 Gig DDR RAM 865PE chipset 800MHz FSB DDR 400 GA-8IPE1000-G MB Gexcube Radeon 9600 XT Extreme LG GSA-4120-B spcs.sys The system cannot find the file specified. ! .text USBPORT.SYS!DllUnload B95E28AC 5 Bytes JMP 898C01D8 init C:\WINDOWS\system32\drivers\senfilt.sys entry point in "init" section [0xB9314F80] ? Whistler Bootkit (English) HJT Analyst, iets voor jou ? ► mei (1) ► april (1) ► maart (5) Mijn lijst met blogs Malware Advisor XP USERS-WAKE UP! 2 jaar geleden EvelineGirl's

A case like this could easily cost hundreds of thousands of dollars. Nieuwer bericht Ouder bericht Homepage Abonneren op: Reacties plaatsen (Atom) About Me Emphyrio Mechelen, Belgium Mijn volledige profiel weergeven Vrijblijvende Bijdrage Zoeken in deze blog Wordt geladen... Please bare in mind that followin... Gmer Log GMER 1.0.15.15641 - http://www.gmer.net Rootkit scan 2011-08-11 21:30:08 Windows 5.1.2600 Service Pack 3 Harddisk1\DR1 -> \Device\Ide\IdeDeviceP1T0L0-17 WDC_WD400BD-75JMA0 rev.05.01C05 Running: gmer.exe; Driver: C:\DOCUME~1\DANIEL~1\LOCALS~1\Temp\ffkyyaog.sys ---- System - GMER 1.0.15 ---- SSDT

Gray Whistler Windows XP Support 1 10-14-2006 05:01 AM Java Bytever B virus..HELP..HJT log attached Hello- I would appreciate any help with this. All of a sudden, Windows doesn't recognize the drive. i ran it and it found the code, so i ran the "fix" element of the executable and it looks to have removed it, although anything that was on the physical Sign In All Activity Home Privacy Policy Contact Us Back to Top Malwarebytes Community Software by Invision Power Services, Inc. × Existing user?

Jul 27, 2010 #6 blahdu TS Rookie Topic Starter thanks for your response, here are all three logs, windows script hosting was disabled in the registry, i enabled it and dds NETSVCS VEREIST REPARATIES - huidige waarden worden getoond 2. I found that the PATA cable/interface going to the second drive was turned off. Database Statistics Bad Entries: 190,982 Unnecessary: 119,579 Good Entries: 147,839

From Twitter Follow Us Get in touch [email protected] Contact Form HiJackThisCo RSS Twitter Facebook LinkedIn © 2011 Activity Labs.

seeing as there isn't a dual booter like GRUB on this machine, i figured that there wasn't much harm in trying it, as it was on another malware forum. Use Combofix only in collaboration with a Qualified Helper . Sorry you've had to wait so long, but we've been real busy.Scan with Hijack This and put a checkmark next to the following entries:O4 - Startup: PowerReg Scheduler V3.exeO4 - Startup: Note: Do not mouseclick combofix's window while it's running.

You may also... Then, I turned the computer on after a bad shutdown (being dumb, I turned the power off while the computer was in sleep mode). Please note: You may have to disable any script protection running if the scan fails to run. Join over 733,556 other people just like you!

thanks in advance, -alex Attached Files: hijackthis.log File size: 5.3 KB Views: 1 Jul 27, 2010 #1 Bobbye Helper on the Fringe Posts: 16,335 +36 Alex, we don't 'screen' O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O4 - Global Startup: NETGEAR WG111v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG111v3\WG111v3.exe O8 - Extra context menu item: &AOL Toolbar search - TechSpot Account Sign up for free, it takes 30 seconds. Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\[emailprotected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\[emailprotected] 0x00 0x00 0x00 0x00 ...

Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\00000001 (not active ControlSet) Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[emailprotected] 0x20 0x01 0x00 0x00 ... Indien je Vista hebt, alles uitvoeren als administrator........ Sign Up All Content All Content Advanced Search Browse Forums Guidelines Staff Online Users Members More Activity All Activity My Activity Streams Unread Content Content I Started Search More Malwarebytes.com Malwarebytes Back to top #9 whistler whistler Topic Starter Members 7 posts OFFLINE Local time:10:54 AM Posted 28 November 2005 - 06:50 AM I've never used the floppy on this machine...

Antivirus: AntiVir Desktop, Updated: Yes, On-Demand Scanner: Enabled Note: My Avira Antivir scanner was disabled for DDS and Gmer, but enabled when I ran this information tool just now. O3 - Toolbar: (no name) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file) O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing) O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner Open Cleanup!

anything that you guys can suggest is greatly appreciated.

I noticed yesterday my computer running agonizingly slow and erratic. Boo/Whistler.A Boot Sector Virus on my secondary hard drive. Loading... If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members.

Elapsed time 00:19:237:42 PM: Traces Found: 17:43 PM: Removal process initiated7:43 PM: Quarantining All Traces: statcounter cookie7:43 PM: Removal process completed. Using the site is easy and fun. I don't know if the virus is under control or if time is ticking, but I feel I need to settle this before buying another hard drive. Member of ASAP and UNITEProud Graduate of the WTT Classroom Back to top #3 kody18884 kody18884 Member Members 11 posts Posted 05 December 2011 - 09:27 AM i can connect to

Pager] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe O4 - Global Startup: HDDlife Pro.lnk = ? My computer info and logs are up ahead: Computer Info Tech Support Guy System Info Utility version 1.0.0.1 OS Version: Microsoft Windows XP Home Edition, Service Pack 3, 32 bit Processor: Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\14919EA49A8F3B4AA3CF1058D9A64CEC\[emailprotected] 0x08 0x5C 0x01 0xD6 ... Sign In Sign Up Browse Back Browse Forums Guidelines Staff Online Users Members Activity Back Activity All Activity My Activity Streams Unread Content Content I Started Search Malwarebytes.com Back Malwarebytes.com Malwarebytes

not sure what changed, but ie is still displaying everything fine. It's still possible the drive just crapped out, but I just now went into my boot windows setup out of curiosity. However, having to install everything from scratch would be a huge pain.