Home > Hijackthis Log > HijackThis Log - Two Obvious Infections

HijackThis Log - Two Obvious Infections

Also, if you ever crash, it's a simple reload with the image, then load back your weekly (you do make backups at least weekly no?!) backup copy and voila, you're up So, now I find it is best (for me, my friends and my family) to make sure you have Norton Ghost (I have version 14 but I know 12 and higher Please advise me on this. I'm dealing with nasty virus! have a peek here

HijackThis log included. My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Back to top Back to Virus, If we have ever helped you in the past, please consider helping us. This session lasted 1509 seconds with 780 seconds of active time.

I'm dealing with nasty virus! I wish I could. Everyone else please begin a New Topic. HijackThis log included.

Click Yes to confirm.Step 1Download random's system information tool (RSIT) by random/random from here and save it to your desktop.Double click on RSIT.exe to run RSIT.Click Continue at the disclaimer screen.Once I will be helping you today. Just the thought of it is enough to make me shiver. Back to top #4 schrauber schrauber Mr.Mechanic Malware Response Team 24,794 posts OFFLINE Gender:Male Location:Munich,Germany Local time:12:04 AM Posted 22 July 2009 - 01:55 PM Hello, Tony23 and againWelcome to

by bcs_4 / May 15, 2008 11:59 PM PDT OS: Windows XPLevel: Intermediate - I do lots of tech stuff at work but I'm not comfortable enough with processes to do Sorry about all the questions!!!!!!!!!!Okay, I'm back with the new startup configuration and my computer is strongly objecting! What specific issues are you having that require a request for assistance with malware removal? First step would be to run msconfig and enable all startup items.

However, Housecall Antivirus, run several days later detected the following (as well as Windows vulnerabilities, which I have addressed, but are not yet in effect, as this computer has not been Using the site is easy and fun. Please post the contents of both log.txt (<

CONTRIBUTE TO OUR LEGAL DEFENSE All unused funds will be donated to the Electronic Frontier Foundation (EFF). Javascript You have disabled Javascript in your browser. The topics you are tracking can be found here.Please take note of some guidelines for this fix:Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the What Do I Look For?

Do matter what scanner you buy, what programs you use, they all have one common achilles heel: They need to be in Windows to run.Modern viruses work their way into system navigate here The Rogue AntiVirus has hijacked their browser and will not let them near a site that could help. Now that you have identified some visible signs of infection for us, here are some instructions for removing older versions of Java and updating.Download the latest version of http://java.sun.com/javase/downloads/index.jsp]Java Runtime Environment It beats defrag or searching for malware, in my book.

Due to a few misunderstandings, I just want to make it clear that this site provides only an online analysis, and not HijackThis the program. Site Changelog Community Forum Software by IP.Board Sign In Use Facebook Use Twitter Need an account? Especially since no files have been found, or at least not at this time. Check This Out If you still need help, please let me know by replying to this thread.

Immediately hit your CONTROL/ALT/DELETE buttons to enter your Task Manager. It may be that all the work that I did in the site where you work through *Preparation Guide for use before posting a HijackThis Log*, may have removed some of If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications.

Dump it suggested.

They categorize everything they find as a *pest*. Error - 5/19/2010 12:30:25 AM | Computer Name = D4G6V31 | Source = Microsoft Office 12 Sessions | ID = 7001Description = ID: 6, Application Name: Microsoft Office Outlook, Application Version: There is, of course, the same threat with the date changed to 2010 romping around now. I now have the hijackThis log as you may read below:Logfile of HijackThis v1.99.1Scan saved at 5:08:11 PM, on 7/19/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\csrss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\cisvc.exeC:\PROGRA~1\Iomega\System32\ActivityDisk.exeC:\PROGRA~1\TRENDM~1\INTERN~1\PcCtlCom.exeC:\WINDOWS\System32\svchost.exeC:\PROGRA~1\TRENDM~1\INTERN~1\Tmntsrv.exeC:\WINDOWS\system32\wdfmgr.exeC:\Program

Post your log here. Also a lot of junk email is not a good indicator of malware. I would much rather clarify instructions or explain them differently than have something important broken.Even if things appear to be better, it might not mean we are finished. this contact form Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers.

Now my computer has always run a little slow since I installed MVPS Hosts and I run Sandboxie, and I do not appear to have any obvious infections (Ad-Aware nor Norton by VinceGP / May 19, 2008 6:46 PM PDT In reply to: Help! Click here to Register a free account now! HijackThis Log - Two Obvious infections Started by Tony23 , Jul 17 2009 10:51 PM This topic is locked 7 replies to this topic #1 Tony23 Tony23 Members 16 posts OFFLINE

That would have come from another of the online scans recommended in the earlier part where I performed the tasks in your section: *Preparation Guide for use before posting a HijackThis one being that the first log looks to be incomplete and the second because I restarted my computer, so I'm posting the most recent log file:Logfile of HijackThis v1.99.1Scan saved at Even something as simple as a Google search can produce the very Rogue you are trying to avoid. Reboot your computer once all Java components are removed.

If I have helped you then please consider donating to continue the fight against malware Back to top #5 kahdah kahdah Security Colleague 11,138 posts OFFLINE Gender:Male Location:Florida Local time:07:04 If you use this mirror, please extract the zip file to your desktop.Disconnect from the Internet and close all running programs.Temporarily disable any real-time active protection so your security programs will Restore your system on a back date, I mean before this problem. You can read about HJT here.

Even for an advanced computer user. Jump to content Sign In Create Account Search Advanced Search section: This topic Forums Members Help Files Calendar View New Content Forum Rules BleepingComputer.com Forums Members Tutorials Startup List http://vil.nai.com/vil/content/v_138992.htm Flag Permalink This was helpful (0) Back to Spyware, Viruses, & Security forum 14 total posts Popular Forums icon Computer Help 51,912 discussions icon Computer Newbies 10,498 discussions icon Laptops To learn more and to read the lawsuit, click here.

My name is Thomas (Tom is fine), and I will be helping you fixing your problems.If you do not make a reply in 5 days, we will have to close your Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.