Home > Hjt Log > HJT Log Analysis Request

HJT Log Analysis Request

I apologize for not seeing this until today, but I would be more than glad to re-do another scan per your instructions.I'll post up tonight when I'm home from work.Many thanks The safest practice is not to backup any files with the following file extensions: exe, .scr, .ini, .htm, .html, .php, .asp, .xml, .zip, .rar, .cab as they may be infected. Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. The instructions to run the same can be found here: http://www.bleepingcomputer.com/combofix/how-to-use-combofix Log in or Sign up Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other http://softsystechnologies.com/hjt-log/hjt-log-need-analysis.html

Please don't fill out this field. Advertisements do not imply our endorsement of that product or service. Clear editor Insert other media Insert existing attachment Insert image from URL × Desktop Tablet Phone Security Check Send Recently Browsing 0 members No registered users viewing this page. Multiple Requests in the HijackThis Logs Forum and Note to Repair Techs: TEG is set up to help the home computer user dealing with malware issues and questions relating to their

Now What Do I Do?.The only way to clean a compromised system is to flatten and rebuild. Please perform the following scan:Download DDS by sUBs from one of the following links. Newer Than: Search this thread only Search this forum only Display results as threads Useful Searches Recent Posts More...

You may have to disable the real-time protection components of your anti-virus in order to complete a scan. To learn more and to read the lawsuit, click here. It's still clean no hidden vundo!!!You do still have this leftover from the comcast toolbar..O3 - Toolbar: (no name) - {4E7BD74F-2B8D-469E-93BE-BE2DF4D9AE29} - (no file)(Just an fyi...) · actions · 2006-Sep-14 8:26 My home this is.Premium Memberjoin:2002-08-27Garden State Garbs Premium Member 2006-Sep-13 9:02 pm Thank you very much Cajun for the quick repsonses and help.

Logfile of HijackThis v1.99.1Scan saved at 7:45:13 PM, on 9/13/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\windows\system\hpsysdrv.exeC:\WINDOWS\System32\hkcmd.exeC:\Program Files\iTunes\iTunesHelper.exeC:\WINDOWS\system32\ps2.exeC:\WINDOWS\AGRSMMSG.exeC:\Program Files\McAfee.com\VSO\mcvsshld.exeC:\Program Files\McAfee.com\VSO\oasclnt.exeC:\PROGRA~1\mcafee.com\agent\mcagent.exeC:\WINDOWS\ALCXMNTR.EXEC:\WINDOWS\System32\igfxtray.exec:\progra~1\mcafee.com\vso\mcvsescn.exeC:\Program Files\Common Files\AOL\1138739708\ee\AOLSoftware.exeC:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exeC:\Program Files\ewido anti-spyware 4.0\ewido.exeC:\Program There is my little prevention speech.. This may simply be that the pc is low on ram (256 mb) running XP Home, but I'd like to have the log analyzed to see if any baddies are still How to backup files in Windows 8 Backup and Restore in Windows 7 How to Backup your files How to backup your files in XP or Vista How to use Ubuntu

When issues arise due to complex malware infections, possible false detections, problems running ComboFix or with other security tools causing conflicts, experts are usually aware of them and can advise what Sign In Sign In Remember me Not recommended on shared computers Sign in anonymously Sign In Forgot your password? Save the log files to your desktop and copy/paste the contents of log.txt by highlighting everything and pressing Ctrl+C. Remove formatting × Your link has been automatically embedded.

Some infections are difficult to remove completely because of their morphing characteristics which allows the malware to regenerate itself. Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLLO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} Amazon Prime Shipping [OpenForum] by tcope396. No, create an account now.

Sign up for the SourceForge newsletter: I agree to receive quotes, newsletters and other information from sourceforge.net and its partners regarding IT services and products. http://softsystechnologies.com/hjt-log/hjt-log-analysis-from-http-www-hijackthis-de-anl.html If you're not already familiar with forums, watch our Welcome Guide to get started. Windows Update: Windows Update If you have Word, Excel, Outlook or other Office programs installed. Please be aware: Only members of the Malware Removal Team, Moderators or Administrators are allowed to assist members in the Malware Removal and Log Analysis.

My home this is.Premium Memberjoin:2002-08-27Garden State

Garbs Premium Member 2006-Sep-14 12:23 pm Janie,Hi! Note for 64-bit system users: Anti-malware scanners and some specialized fix tools have problems enumerating the drivers and services on 64-bit machines so they do not always work properly. In order to find out what entries are nasty and what are installed by the user, you need some background information.A logfile is not so easy to analyze. this contact form Register now!

If you would like to refer to this comment somewhere else in this project, copy and paste the following link: Log in to post a comment. SourceForge About Site Status @sfnet_ops Powered by Apache Alluraâ„¢ Find and Develop Software Create a Project Software Directory Top Downloaded Projects Community Blog @sourceforge Resources Help Site Documentation Support Request © It might be as simple as fixing that line.. (I am not a symantec expert by any means...) You may need to run the symantec removal tool that went with whichever

let's take no chances..»Security Cleanup FAQ »Trojan Vundo/Virtumonde/Winfixer Removal · actions · 2006-Sep-13 8:05 pm · (locked) GarbsMudhole?

Thanks for any help!Logfile of HijackThis v1.99.1Scan saved at 9:58:38 AM, on 13/12/2005Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Ahead\InCD\InCDsrv.exeC:\WINDOWS\Explorer.EXEC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\system32\CTsvcCDA.EXEC:\WINDOWS\SM1BG.EXEC:\WINDOWS\system32\MsPMSPSv.exeC:\Program Files\Ahead\InCD\InCD.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Adobe\Acrobat 5.0\Distillr\AcroTray.exeC:\Program Files\iPod\bin\iPodService.exeC:\WINDOWS\system32\wscntfy.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\alt.exeC:\Program Files\Mozilla Firefox\firefox.exeC:\Program Please re-enable javascript to access full functionality. Please don't fill out this field. Are you looking for the solution to your computer problem?

This helps to avoid confusion and ensure the user gets the required expert assistance they need to resolve their problem. If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dllO3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dllO4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exeO4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exeO4 - HKLM\..\Run: [CTSysVol] C:\Program http://softsystechnologies.com/hjt-log/hjt-log-analysis-and-smitfraud-c-problem.html Sign Up This Topic All Content This Topic This Forum Advanced Search Browse Forums Guidelines Staff Online Users Members More Activity All Activity My Activity Streams Unread Content Content I Started

There are no guarantees or shortcuts when it comes to malware removal. Reset System RestoreIf you are using Windows ME or Windows XP, please reset your System Restore. Those attempting to use ComboFix on their own do not have such information and are at risk when running the tool in an unsupervised environment. Below is a copy of the HiJackThis log.

Several functions may not work. As such, HijackThis has been replaced by other preferred tools like DDS, OTL and RSIT that provide comprehensive logs with specific details about more areas of a computer's system, files, folders Tech Support Guy is completely free -- paid for by advertisers and donations. Please re-enable javascript to access full functionality.

Lemmie go see if I can get rid of that one ...