Home > Hjt Log > HJT Log - Sonian

HJT Log - Sonian

This applies only to the original topic starter. All rights reserved. Then click on Start Update. Sorry for the immense detail, I couldn't imagine giving too little so I ended up giving too much. >< Here's the HijackThis log.

Back to top #9 sonian sonian Topic Starter Members 6 posts OFFLINE Local time:07:04 PM Posted 09 July 2004 - 04:48 PM Thanks, things are looking much better now. Edited by ColdinCbus, 09 July 2004 - 08:34 AM. C:\Program Files\SpyHunter\Backup\[email protected][1].txt.bak -> TrackingCookie.Hitbox : Cleaned. Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe O9 - Extra 'Tools' menuitem: Yahoo!

That log looks good. C:\Program Files\SpyHunter\Backup\[email protected][1].txt.bak -> TrackingCookie.Adserver : Cleaned. I am wondering if it iss possible this IP is the culprit of deleting my comments?

You will need to either offsite store the graphics, or switch to having a website of your own instead of using a blog for that. The security certificate presented by this website was issued for a different website's address. Select Yes when the "Begin cleanup Process?" prompt appears.4. If you are having problems with the same Hijack, please start your own topic.Also, please note that the FindnFix program has changed since the start of this thread and the steps

Back to top #8 ColdinCbus ColdinCbus Members 312 posts OFFLINE Local time:08:04 PM Posted 09 July 2004 - 08:32 AM Almost done. Run Ewido with it's updated definitions:(...it's important that all windows must be closed) Click Scanner Click on the Scan tab Click Complete System Scan to begin scanning. here is blog URL: http://enchantingfx.bigblog.com.au Deep Breaths....OK Will wait to hear back from you. Login - {2499216C-4BA5-11D5-BD9C-000103C116D5} - C:\Program Files\Yahoo!\Common\ylogin.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLLO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exeO9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583}

I'm also giving the Mozilla Firefox browser a try. If the results from that are not specific as to infection, I could take a look at it as well. C:\Program Files\SpyHunter\Backup\[email protected][1].txt.bak -> TrackingCookie.Trafficmp : Cleaned. For more information, see "Certificate Errors" in Internet Explorer Help.

Mask Gen. Double-click OTC to run it.2. I am working under the guidance of one of the specialist of this forum so it may take a bit longer to process your logs. 1. HKLM\SOFTWARE\Classes\ScreensaversInstaller.Installer.1 -> Adware.Screensavers : Cleaned with backup (quarantined).

C:\WINDOWS\SYSTEM32\ld101.tmp -> Downloader.Zlob.vr : Cleaned with backup (quarantined). I've now taken steps to prevent a future attack installing SpywareBlaster and SpywareGuard. C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP28\A0026810.dll -> Downloader.Delf.aeo : Cleaned with backup (quarantined). I know they were variations by the date created and alike names, also how they weren't recognized as important files.

C:\Downloads\ChuzzleSetup-dm[1].exe.tcf -> Adware.Trymedia : Cleaned with backup (quarantined). Service & Support HijackThis.de Supportforum Deutsch | English Forospyware.com (Spanish) www.forospyware.com Malwarecrypt.com www.malwarecrypt.com Computerhilfen www.computerhilfen.com Log file Show the visitors ratings © 2004 - 2017 Firewall - not too important, but good to have\Zone Labs\ZoneAlarm\zlclient.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Viewpoint\Viewpoint Manager\ViewMgr.exe C:\Program Files\Common Files\Real\Update_OB\realsched.exe C:\Program Files\Synaptics\SynTP\SynTPLpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe C:\PROGRA~1\Sony\SONICS~1\SsAAD.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Dell\Media Experience\PCMService.exe C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn0\yt.dllO2 - BHO: &Yahoo!

Before you run this tool please close ALL running programs and ALL open windows except for the FindnFix folder. C:\Program Files\SpyHunter\Backup\[email protected][1].txt.bak -> TrackingCookie.Hitbox : Cleaned. These appear to be the only sites with FindnFix.

C:\Program Files\SpyHunter\Backup\[email protected][2].txt.bak -> TrackingCookie.Hitbox : Cleaned.

Click Preferences, Click the Statistics/Logs Tab. Here is the superantispyware log: SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 05/28/2007 at 11:56 AM Application Version : 3.8.1002 Core Rules Database Version : 3245 Trace Rules Database Version: 1256 Scan type Set the program up as follows: *Click "Options..." *Move the arrow down to "Custom CleanUp!" *Put a check next to the following:Empty Recycle Bins Delete Cookies Delete Prefetch files Cleanup! Close HJT and restart the computer to normal Windows.

Place a checkmark next to items you wish to remove/quarantine and Click "Next". Contact Us Terms of Service Privacy Policy Sitemap www.cybertechhelp.com | home Cyber Tech Help Support Forums > Software > Malware Removal Forum BACK AGAIN ( HJT LOG If you're not already familiar with forums, watch our Welcome Guide to get started. C:\WINDOWS\ notepad.exe Thu 23 Aug 2001 22:00:00 A.... 66,048 64.50 K 1 item found: 1 file, 0 directories.

Logged Intel(R) Core (TM) i3-3220 CPU 3.30 GHz 8.0 Gb RAM Windows 8.1 with a dual boot to Windows XP Home with SP3, Comodo with Windows Firewall & Windows Defender Print For your link, "bigpond.com" does not match "www.bigpond.com" (which is the identity with the certificate) so at face value this appears to be a reasonable alert. Page 1 of 2 1 2 > Topic Tools #1 December 7th, 2006, 05:43 PM **J** Senior Member Join Date: Apr 2006 O/S: Windows XP Home Location: It may not be Malware for free cleaning/maintenance tools to help keep your computer running smooth.Safe Surfing!

C:\System Volume Information\_restore{B37680B2-BA0A-4E5D-BF30-83E44C588624}\RP28\A0026817.dll -> Downloader.Delf.aeo : Cleaned with backup (quarantined). Created Mar 16 1992, 21:09:15.