Home > Hjt Log > HJT Log - DavidED

HJT Log - DavidED

Stop At : 3/30/2007 16:34:13 ---------*---------*---------*---------*---------*---------*---------*---------* 2007-03-30, 16:34:13, Files Clean: Copyright © 1990 - 2004 Trend Micro Inc. Maybe 0 viruses totally. You should run the scan again and fix all the infections. We will do that later in safe mode. * Click here to download ATF Cleaner by Atribune and save it to your desktop.

When i loged into my computer again Nortaon still detected totour.exe although my computer seems to have stopped sending junk mail (as i am not getting any messages from norton sayin Advertisements do not imply our endorsement of that product or service. Attempts to clean the system using McAfee removed the following components, but the desktop hijacking persists: Downloader-AFH.gen (2 components) Downloader.gen.a Adware-WinHound InfeStop BraveSentry I don't see anything suspicious in the log Thanks.

Note: It is possible that Killbox will tell you that one or more files do not exist. Navigation [0] Message Index [#] Next page Go to full version Log in or Sign up Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware It basically prevents any downloads (Cookies etc) from the sites listed, although you will still be able to connect to the sites.MVPS Hosts file <= The MVPS Hosts file replaces your

Register Help Remember Me? Edited by Aaflac, 29 March 2007 - 08:52 AM. Report Date : 3/30/2007 16:24:14 VSAPI Engine Version : 8.000-1001 VSCANTM Version : 1.1-1001 Virus Pattern Version : 377 (170414 Patterns) (2007/03/29) (437700) Command Line: C:\Documents and Settings\david\Desktop\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL i just need to know if by her going to the website they were able to put anything malicious on my pc.

Basically, this prevents your computer from connecting to those sites by redirecting them to 127.0.0.1 which is your local computerGoogle Toolbar <= Get the free google toolbar to help stop pop i just need to know if by her going to the website they were able to put anything malicious on my pc. BLEEPINGCOMPUTER NEEDS YOUR HELP! Please provide the contents of the sysclean.log, and the ComboFix log in your reply.

It is not malicious or infected in any way... Report Date : 3/30/2007 15:47:34 VSAPI Engine Version : 8.000-1001 VSCANTM Version : 1.1-1001 Virus Pattern Version : 377 (170414 Patterns) (2007/03/29) (437700) Command Line: C:\Documents and Settings\david\Desktop\Sysclean\VSCANTM.BIN /NBPM /S /CLEANALL hope this helps cheers David GMER 1.0.12.12086 - http://www.gmer.net Rootkit scan 2007-03-31 00:59:29 Windows 5.1.2600 Service Pack 2 ---- System - GMER 1.0.12 ---- SSDT 841170A8 ZwConnectPort SSDT sptd.sys ZwCreateKey SSDT Desktop Wallpaper hijack, with HJT log Discussion in 'Virus & Other Malware Removal' started by TN Vol, Feb 8, 2008.

Posts 36 hjtlog thanks David Im not having any problems its just some things I did not reconize.I will fix what you suggested.What was it I picked up. I need to know what fixes you have already tried please.Please set your system to show all files and folders:Click Start.Open My Computer.Select the Tools menu and click Folder Options.Select the Place a check next to each of the following, making sure you get them all and not any others by mistake:R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://uk.red.clientapps.yahoo.com/customi...fo/bt_side.htmlR1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Stop At : 3/30/2007 16:24:14 36 minutes 32 seconds (2191.47 seconds) has elapsed. ---------*---------*---------*---------*---------*---------*---------*---------* 2007-03-30, 16:24:14, Scanner "C:\Documents and Settings\david\Desktop\Sysclean\VSCANTM.BIN" has finished running. 2007-03-30, 16:34:13, Files Detected: Copyright © 1990 -

The time now is 08:03 PM. dll 2016-04-12 19:04 - 2016-04-02 05:10 - 00374008 _____ (Microsoft Corporation) C:\WINDOWS\system32\SystemSettingsAdminFlows.exe 2016-04-12 19:04 - 2016-04-02 04:30 - 00151040 _____ (Microsoft Corporation) C:\WINDOWS\system32\VEStoreEventHandlers.dll 2016-04-12 19:04 - 2016-04-02 04:29 - 00127488 _____ These steps should be done on a regular basis. COMBOFIX.TXT "david" - 07-03-30 16:56:44 Service Pack 2 ComboFix 07-03-27.4.2 - Running from: "C:\Documents and Settings\david\Desktop" (((((((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) C:\WINDOWS\system32\KB95842.log C:\Program Files\Common Files\{38D84~1\Activate.exe
C:\Program Files\Common Files\{38D84~1\toolbardll.lzma
C:\WINDOWS\system32\jbhook.dll

Post a new hijack this, the Mwav scan log, the smitfraud, and the AVg antispware log! Check out Good Gear Guide's broadband speed test -- PCWorld2011 -- Default Mobile Style Contact Us PC World Forums Archive Web Hosting Privacy Statement Top All times are GMT +13. Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! dll [2016-03-26] (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.77.2 -> C:\Program Files\Java\jre1.8.0_77\bin\plugin2\npjp2.dll [2016-03-26] (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.41212.0\npctrl.dll [2015-12-12] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft

Maybe 0 viruses totally. Perform the following steps in safe mode: Once in Safe Mode, open the SmitfraudFix folder again and double-click smitfraudfix.cmd Select option #2 - Clean by typing 2 and press "Enter" to Posts 36 hjt log Logfile of HijackThis v1.98.1 Scan saved at 5:42:01 PM, on 9/10/2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe

Also save to your Desktop for reference.

Since MS are killing it in April. cullism replied Jan 24, 2017 at 6:50 PM A-Z different places of the world poochee replied Jan 24, 2017 at 6:42 PM ABC of double letters #7 poochee replied Jan 24, Only one of them will run on your system, that will be the right version. be wary of strong drink - it may make you shoot at tax collectors, and miss!

Posts 36 hjt. SYSCLEAN.LOG /--------------------------------------------------------------\ | Trend Micro System Cleaner | | Copyright 2006, Trend Micro, Inc. | | http://www.antivirus.com | \--------------------------------------------------------------/ 2007-03-30, 15:38:27, Auto-clean mode specified. 2007-03-30, 15:38:27, Running scanner "C:\Documents and Settings\david\Desktop\Sysclean\TSC.BIN"... o If you use Opera: + Click Opera at the top and choose: Select All + Click the Empty Selected button. + NOTE: If you would like to keep your saved To learn more and to read the lawsuit, click here.

Thread Status: Not open for further replies. Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Register When the scan completes select "Report",in the next window select "Export txt" the log will open as a text file post that log... be wary of strong drink - it may make you shoot at tax collectors, and miss!

HJT Log - DavidED Started by DavidED , Feb 01 2005 05:35 PM Please log in to reply 1 reply to this topic #1 DavidED DavidED Members 1 posts OFFLINE Let me see those logs... Could someone please check my HJT Log and advise. David 16-02-2013,07:53 PM #4 Speedy Gonzales View Profile View Forum Posts Private Message Member Join Date Dec 2004 Location NZ Posts 44,482 Re: HJT Log Did you tick them then tick

Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2016-02-05] (AVAST Software) BHO: No Name -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> No File BHO: Microsoft OneDrive for Business Browser Helper -> {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} -> C:\Program Files