Home > Hijackthis Log > Hijackthis Log - Antimalware Doctor Redirects?

Hijackthis Log - Antimalware Doctor Redirects?

The Windows product key installed on this computer is a Volume License Key (VLK) that has been blocked. Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn4\yt.dllO4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\system32\igfxtray.exeO4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exeO4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exeO4 - HKLM\..\Run: [PDVDDXSrv] "C:\Program Files\CyberLink\PowerDVD DX\PDVDDXSrv.exe"O4 - HKLM\..\Run: [ECenter] C:\Dell\E-Center\EULALauncher.exeO4 - HKLM\..\Run: [dscactivate] A VLK is typically licensed to organizations that want to use multiple copies of Windows. When done, DDS will open two (2) logs: DDS.txt Attach.txtSave both reports to your desktop. have a peek here

Sign in to follow this Followers 1 Go To Topic Listing Resolved Malware Removal Logs Recently Browsing 0 members No registered users viewing this page. About CNET Privacy Policy Ad Choice Terms of Use Mobile User Agreement Help Center One account. The URL just looked strange to me so I thought I would ask here. I did use the free version and would gladly pay for the full version if i knew it would work.

Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exeO23 - Service: avast! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exeO4 - Global Startup: AutoCAD Startup Accelerator.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart16.exeO4 - Global Startup: Bluetooth.lnk = ?O4 - Global Startup: Kodak EasyShare software.lnk = C:\Program Files\Kodak\Kodak EasyShare I can still access my mail the only thing is I can't change to another email address like I could on the old hotmail screen without logging out. C:\System Volume Information\_restore{CA336B29-2A69-408B-B0EC-03391545751E}\RP80\A0120301.exe (Worm.KoobFace) -> Quarantined and deleted successfully.

Jul 29, 2010 #25 (You must log in or sign up to reply here.) Show Ignored Content Page 1 of 2 1 2 Next > Topic Status: Not open for further IE Suggest - {5A263CF7-56A6-4D68-A8CF-345BE45BC911} - C:\Program Files\Yahoo!\SearchSuggest\YSearchSuggest.dllO2 - BHO: Yahoo! There are now popups when I don't even click on a link. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool.

On the first scan a vipre popup appeared asking me if I wanted to allow the action. This tool is not a toy and not for everyday use.Close all browser windows and refering to the picture above, drag CFScript into ComboFix.exeThen post the resultant log.Your Java is out Those programs just ... The redirect problem seems fixed since the first combofix scan.

I have attached the combo fix log as requested. I ran zone alarm, spybot, malwarebytes' antimalware, cc cleaner all in safe mode as well as normally. DDS (Ver_10-03-17.01) - NTFSx86 Run by Joe Augustino at 8:56:12.29 on Fri 06/11/2010 Internet Explorer: 8.0.6001.18702 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.3317.2607 [GMT -4:00] ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch I tried twice.

The only way I was able to post this was to save this to a text file and put it on a usb stick and send it from another computer. Share this post Link to post Share on other sites screen317    Research Team Moderators 19,453 posts Location: CT ID: 2   Posted December 29, 2010 Hi and welcome to Malwarebytes.Please Then drag the CFScript.txt into ComboFix.exe as depicted in the animation below. Bob -I ran hijackthis and here are the log files.

Origin.bl108w.blu108.mail.live.com is hosted on a server in United States. navigate here Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Jump Please re-enable javascript to access full functionality. I continue to run those antimalware/virus detection programs, but just about every time I run one of those, some new problem will pop up.

If you accept cookies from this site, you will only be shown this dialog once!You can press escape or click on the X to close this box. Back to top #5 JetSkier JetSkier Advanced Member Members 36 posts Posted 11 June 2010 - 02:02 PM Here they are ... The only thing I can think of is the virus I had did this or combofix deleted something important by mistake (this happened while combofix was running) I will post the Check This Out Click here to fight backIf I have helped you fix your PC then please donate.

C:\System Volume Information\_restore{CA336B29-2A69-408B-B0EC-03391545751E}\RP80\A0120294.dll (Adware.BHO) -> Quarantined and deleted successfully. I haven't attempted to correct the problem, I will wait for your reply. The page will refresh.Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop.Close any programs you may have running - especially your web

Any suggestions??

Share this post Link to post Share on other sites This topic is now closed to further replies. C:\System Volume Information\_restore{CA336B29-2A69-408B-B0EC-03391545751E}\RP79\A0118122.dll (Trojan.Hiloti.Gen) -> Quarantined and deleted successfully. It deleted some system restore files that were infected. NOTE 2.

The biggest problem right now seems to be the Windows Validation issue. Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. Started by Steve Schalko , Oct 12 2010 05:30 PM This topic is locked 2 replies to this topic #1 Steve Schalko Steve Schalko Members 2 posts OFFLINE Local time:06:01 http://softsystechnologies.com/hijackthis-log/hijackthis-log-help-google-redirects.html Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe--End of file - 15672 bytes Back to top #2 Blade81 Blade81 Advanced Member Volunteer Security Advisor 6582 posts Posted 10 June 2010 - 08:04 PM Hi,Download DDS

I was unable to save the scan results. It will show a black screen with some data on it. I have one problem, when surfing google, i'm getting redirected to other sites. I have a valid copy of windows that came with my PC from the manufacturer (HP) Just thought I would include that in case it was a problem caused by malware.