Home > Hjt Log > HJT Log - Fleur

HJT Log - Fleur

FleurLogfile of HijackThis v1.97.7Scan saved at 9:13:13 PM, on 7/18/2004Platform: Windows XP SP1 (WinNT 5.01.2600)MSIE: Unable to get Internet Explorer version!Running processes:C:\WINNT\System32\smss.exeC:\WINNT\system32\winlogon.exeC:\WINNT\system32\services.exeC:\WINNT\system32\lsass.exeC:\WINNT\system32\svchost.exeC:\WINNT\System32\svchost.exeC:\WINNT\system32\spoolsv.exeC:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exeC:\Program Files\Norton Personal Firewall\NISUM.EXEC:\WINNT\Explorer.EXEC:\Program Files\Common Files\Symantec Shared\ccApp.exeC:\Program PCSyncLV.exe C:\Program Files\Nokia\Nokia PC Suite 7 Win32.Virut.56 Gerepareerd. Have to get my dad do all of this. RMReg.exe C:\Program Files\Registry Mechanic Win32.Virut.56 Gerepareerd.

GetConnected.exe C:\Program Files\Nokia\Nokia PC Suite 7 Win32.Virut.56 Gerepareerd. Qdcsfs.exe C:\Program Files\Norton SystemWorks\Norton CleanSweep Win32.Virut.56 Gerepareerd. A0002960.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. bgregister.exe C:\Program Files\DivX\DivX Win32.Virut.56 Gerepareerd.

A0002963.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. Remeber to Check Windows for updates Probably a good time to create a new restore point See Here Name it clean or something like that, Quote:Have to get my dad do The system returned: (22) Invalid argument The remote host or network may be down.

If not, you should be set to go. 0 #7 FleurM Posted 19 September 2005 - 04:55 PM FleurM New Member Topic Starter Member 4 posts Nope, no problems. EOS Utility.exe C:\Program Files\Canon\EOS Utility Win32.Virut.56 Gerepareerd. 360View.exe C:\Program Files\Canon\PhotoStitch Win32.Virut.56 Gerepareerd. Be sure the "Save as" type is set to "all files" Once you have saved it double click it and allow it to merge with the registry. Hope that's not a bad thing.

MakeDisc.exe C:\Program Files\Home Cinema\MakeDisc Win32.Virut.56 Gerepareerd. A0000902.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Trojan.DownLoad.37236 Verwijderd. A0002991.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. Post the logs for HijackThis and Ewido. 0 #3 FleurM Posted 18 September 2005 - 01:39 PM FleurM New Member Topic Starter Member 4 posts Hi.

MyCameraDVC6.exe C:\Program Files\Canon\CameraWindow\CameraWindowDVC6 Win32.Virut.56 Gerepareerd. A0003005.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. A0002983.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. A0002919.exe\data006 C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14\A0002919.exe Trojan.Touch.205 A0002919.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Archief bevat genfecteerde objecten Verplaatst.

All gone, amazing. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exeO23 - Service: DefWatch - Symantec Corporation - C:\PROGRA~1\SYMANT~1\SYMANT~1\DefWatch.exeO23 - Service: ewido security suite control - ewido networks - C:\Program Attached Files: counterspy.txt File size: 1.9 KB Views: 2 Moonlight, Apr 22, 2007 #4 Shadow_Puter_Dude MG Authorized Malware Fighter Download - Pocket Killbox Using Add or Remove Programs in the Control Wait for HijackThis to finish; close HijackThis.

A0048195.exe C:\System Volume Information\_restore{D84D49D1-B1C5-4BFF-83AB-2C377E8089D1}\RP273 Trojan.DownLoad.37236 Verwijderd. A0003053.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. Any other ideas please? Page 1 of 2 12 Last Jump to page: Quick Navigation PressF1 Top Forums PressF1 PC World Chat Site Areas Settings Private Messages Subscriptions Who's Online Make JPEG (quality 10).exe C:\Program Files\Adobe\Photoshop CS\Samples\Droplets\ImageReady Droplets Win32.Virut.56 Gerepareerd.

Install Java Runtime Environment (JRE) 6 available here at Major Geeks. A0002953.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. Please Wait... wmpnetwk.exe C:\WINDOWS\$NtUninstallwmp11$ Win32.Virut.56 Gerepareerd.

In fact, it seems I have more random letters files than I had yesterday. A0003036.dll C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Trojan.Touch.205 Verwijderd. CameraLauncher.exe C:\Program Files\Canon\CameraWindow\CameraWindowDVC6 Win32.Virut.56 Gerepareerd.

A0002976.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd.

OneTouchAccess.exe C:\Program Files\Nokia\Nokia PC Suite 7 Win32.Virut.56 Gerepareerd. wwDisp.exe C:\Program Files\Webroot\Washer Win32.Virut.56 Gerepareerd. In order to find out what entries are nasty and what are installed by the user, you need some background information.A logfile is not so easy to analyze. If you have any documents or programs that are saved in any Temporary Folders, please make a backup of these before running CleanUp!.

Service & Support HijackThis.de Supportforum Deutsch | English Forospyware.com (Spanish) www.forospyware.com Malwarecrypt.com www.malwarecrypt.com Computerhilfen www.computerhilfen.com Log file Show the visitors ratings © 2004 - 2017 A0003016.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. REGEDIT4 [-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{970D022E-A884-4D2A-BB4A-EBC22D2FEBD2}] [-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DFFACA26-B497-4EFA-9284-F0BF03E4FACC}] [-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\mljgh] [-HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\tuvuvtt]Click to expand... Click on the 'Fix checked' button.

Help us fight Enigma Software's lawsuit! (Click on the above link to learn more) Become a BleepingComputer fan: FacebookFollow us on Twitter! A0003028.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. A0002969.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. Sorry to sound like a broken record but I did post that I have already clicked on 'fix checked' in 2 previous posts.

A0002968.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. SuperCleaner.exe C:\Program Files\SuperCleaner Win32.Virut.56 Gerepareerd. I have attached the logs. config.exe C:\Program Files\DivX\DivX Win32.Virut.56 Gerepareerd.

A0002926.exe C:\System Volume Information\_restore{37764A3E-D536-4C83-9642-914A300B0317}\RP14 Win32.Virut.56 Gerepareerd. cmd.exe C:\WINDOWS\system32 Win32.Virut.56 Gerepareerd. Fleur View Member Profile 14.02.2009 01:30 Post #7 Member Group: Members Posts: 16 Joined: 23.03.2008 пожалуйста. Username or email: I've forgotten my password Forum Password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Community Forum

WIPINFNT.EXE C:\Program Files\Norton SystemWorks\Norton Utilities Win32.Virut.56 Gerepareerd.