Home > Hijackthis Log > HijackThis Log Of Sister's Computer - Internet Antivirus Pro

HijackThis Log Of Sister's Computer - Internet Antivirus Pro

ActorSeeksJob Registered User 29-Apr-2009 15:17 #4 its not legitDownload OTListIt2 to your desktop.Double click on the icon to run it. Trend MicroCheck Router Result See below the list of all Brand Models under . No, create an account now. I run a triple-boot Ubuntu/Win 7/Mac OS X setup atm. have a peek here

HiJackThis log included! « Reply #6 on: Aug 03, 2010, 01:43 AM » I like Ubuntu, but not really for daily use as an OS... But java 1.6.0_06 did not impact the connection attempts either. Here are my questions ... But that isn't happening, which leads me to believe that what is causing this is not normal activity, but a bug or infection of some sort.

Safari is actually a lot like Netscape used to be. Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Make sure to click "Hide Microsoft Services" so you don't turn off anything you're not supposed to. All will be involved in the ICMP's Echo Request (type8) outgoing and Echo reply (type0) incoming.

I have left and come back to my computer after 2-3 hours, only to find that these executables have been trying to connect to the sites mentioned. That is doable, but it appears that you have more than one AV scanner running. I'll let you know if the BD service stoppages make a difference. So to lighten the load and increase security and reduce address issues, they switch the ports around internally.

SUBMIT CANCEL Applies To: Antivirus+ Security - 2015;Antivirus+ Security - 2016;Antivirus+ Security - 2017;Internet Security - 2015;Internet Security - 2016;Internet Security - 2017;Maximum Security - 2015;Maximum Security - 2016;Maximum Security - How do I download and use Trend Micro HijackThis? I keep it updated as a backup. and type "msconfig" and shut off non-essential start-up processes and services (Looks like you have a lot running).

I appreciate the help. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site. I thought I deleted that muther! Type: Changed module explorer.exe made an outgoing connection to Destination DNS crl.verisign.net This must mean something, like new certificates or something?

So just trying to single out google is only a drop in the bucket of all known trackers/counters. Print this and boot to safe mode (Start tapping F8 at the first black screen after power up) Fix these with HJT R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://websearch.drsnsrch.com/sidesearch.cgi?id= R1 - HiJackThis log included! « Reply #4 on: Jul 29, 2010, 11:51 AM » Run a system restore by booting into safe mode. The other backbone or internet servers relay their reply back to that particular port and then the internal servers of your internet provider relay it back to the usual http/https ports

Co., Ltd.) -- C:\WINNT\System32\drivers\ewdcsc.sys[2009/04/26 11:10:48 | 00,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_498.dat[2009/04/25 20:04:06 | 00,016,384 | ---- | C] () -- C:\WINNT\System32\Perflib_Perfdata_5d8.dat[2009/04/25 17:03:47 | 00,016,384 | ---- | C] http://softsystechnologies.com/hijackthis-log/hijackthis-log-antivirus-sites-blocked.html Thanks in advance. I understand your explanation about the team effort of all Window processes working together when a connection is attempted, but what has caught my eye here is that these repeated attempts Log Viewer said that all Destination DNS was a Loopback.

BleepingComputer is being sued by Enigma Software because of a negative post of SpyHunter. There are two kinds of software that should not have more than one running. Logged -Mitch Dolphin (I work for Cyrus now)"Hey everybody, there's a shitcloud comin'! Check This Out I am "Googling" my brains out at this point.I just ran another HJT log and I am going to start from there.

The Browser is correctly identified as Internet Explorer (and the version) in the "Your Browser: in the aboutyou.com It is possible to change the browser user agent and identification, but it Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #2 Orange Blossom Orange Blossom OBleepin Investigator Moderator 35,728 posts OFFLINE Gender:Not Telling Location:Bloomington, IN Local That, however, did not impact the constant connection attempts I am seeing.

Type "activity.txt" on the command line to open the log file in the notepad.

Mitch, what do you suggest instead of Avira? do you believe that it is okay that explorer.exe, winlogon.exe and svchost.exe are repeatedly trying to connect to google-analytics and adopt.specificclick.net? Click on the brand model to check the compatibility. I tried to uninstall it with no luck.

There is still hope though. I only have one or two chances a month.Thanks for your help guys! I know very well the explorer, services, winlogon, userinit, rundll32, csrsss, lsass and a few others are involved in the background and I choose to ignore these. http://softsystechnologies.com/hijackthis-log/hijackthis-log-fake-antivirus-program.html I intend on giving this laptop to my older two kids and getting myself a new laptop.

Something called FullCircle/Talkback. As for the hijack, If you try to go to one page and you end up at another site, then it got hijacked. Actorseeksjob the problem is my sister lives out in the country while I'm in the city. I sure need to hear from others whether this is acceptable/normail behavior, or if I have some malware onboard trying to call home.