Home > Pls Check > Pls. Check My HJT Log

Pls. Check My HJT Log

David D_Trojanator, Aug 9, 2005 #4 daus Thread Starter Joined: Aug 6, 2005 Messages: 13 i try many times to download Lop Uninstaller from the link you given me and Download the attached "CFScript.txt" (from my attachment) and save it to the same folder as Combofix. Do the same for FireFox or Opera if you use either of those browsers. Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: navigate here

Put a check by "Delete Offline Content" and click OK. Perform the following steps in safe mode: * Run Ewido: Click on scanner Click Complete System Scan and the scan will begin. Thanks. Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\MSMSGS.EXE" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Spyware Doctor] C:\PROGRA~1\SPYWAR~1\swdoctor.exe /Q O4 - HKCU\..\Run: [testtray] C:\DOCUME~1\MOHDFI~1\APPLIC~1\DEBUGW~1\InternetList.exe O4 - Global http://www.techsupportforum.com/forums/f284/pls-check-my-hjt-log-32066.html

Pager] C:\PROGRA~1\Yahoo!\MESSEN~1\ypager.exe -quiet O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [BestPopUpKiller] C:\Program Files\BestPopUpKiller\BestPopupKiller.exe /startup O4 - Global Startup: Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe O4 - Global am I missing something? - 3 replies My HJT Log....HELP!!!! - 2 replies Recommended Articles How much anonymity does a VPN really provide? Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: In this panel click the Save list button.

  1. I had run the "preliminary removal instructions" on my 2 PCs, below are my report, pls check if they are free from threats.
  2. here is my new HJT log.
  3. Attach the resultant log in your reply.
  4. Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Shorten URL - http://www.cjb.net/menuext.html O8 - Extra context menu
  5. Not disinfected C:\WINDOWS\system32\Microsoft.exe Possible Virus.
  6. My Internet is running extremely slow...
  7. Tools->Open process manager.
  8. daus, Aug 9, 2005 #5 D_Trojanator Malware Specialist Joined: May 13, 2005 Messages: 4,699 http://tomcoyote.com/forums/lofiversion/index.php/t28347.html above is a topic in another forum where the user got AVG warnings the whole time
  9. MS - MVP Consumer Security 2006 thru 2016 Back to top #5 tileytan tileytan Member Members 21 posts Posted 18 November 2006 - 09:24 PM Combofix log Tiley Tan - 06-11-19

If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.Orange BlossomAn ounce of prevention is worth a pound of cureSpywareBlaster, WinPatrol Plus, ESET Smart Run the scan, enable your A/V and reconnect to the internet. Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\ycomp5_5_7_0.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {49AAFDC6-6257-3EDA-0046-3D3626E5FECA} - C:\WINDOWS\System32\lcqqltg.dll O2 - BHO: (no Why does Google offer free fonts to use online?

Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing) O23 - Service: avast! Thread Tools Search this Thread Display Modes #1 19-11-04, 17:19 Jimbob Familiar face Join Date: Jun 2004 Posts: 12 Pls check my HJT log ASAP! Terms of Use Privacy Policy Licensing Advertise International Editions: US / UK India Jump to content Resolved or inactive PC Troubleshooting Spywareinfo Forum - Home of the Boot Camp Existing user? http://www.techspot.com/community/topics/pls-help-to-check-my-hjt-log.83078/ You have an outdated version of HijackThis.

If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. Not disinfected H:\Panda Antivirus + Firewall 2007 + Product Key.zip[Key.exe] HJT log[u]Logfile of HijackThis v1.99.1Scan saved at 16:48:09, on 19/11/2006Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.5730.0011)Running processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Then, click RUN and place a checkmark beside "I Agree" Then click NEXT followed by START and OK. Your organs are of no use to you when your gone.

Not disinfected C:\Documents and Settings\Tiley Tan\Desktop\Manual Spyware Removal Kit\SmitfraudFix\swsc.exe Adware:Adware/Mytoolbar Not disinfected C:\Program Files\Common Files\{9C555C70-063B-1033-0929-06002c}\Update.exe Potentially unwanted tool:Application/Processor Not disinfected C:\RECYCLER\S-1-5-21-936589892-3548457447-4186604906-1006\Dc2\SmitfraudFix\Process.exe Possible Virus. https://forums.techguy.org/threads/pls-check-my-hjt-log.388824/ If there's anything that you don't understand, ask your question(s) before proceeding with the fixes. I do not think this will solve your problem though, but the entries need to go :). - crunchie. 0 OPDiscussion Starter gokou1628 11 Years Ago thanks for the quick reply. i just installed panda antivirus 2007, will post my new hjt log later=) Back to top #7 tileytan tileytan Member Members 21 posts Posted 19 November 2006 - 03:53 AM Hi

On your Desktop, click on Cleanup40.exe icon. http://uberbandwidth.com/pls-check/pls-check-hjt-log.php But what about fonts? What problems are you having? or read our Welcome Guide to learn how to use this site.

daus, Aug 9, 2005 #3 D_Trojanator Malware Specialist Joined: May 13, 2005 Messages: 4,699 what do you mean by "the files", the files from the lop uninstaller. Ask a question and give support. Last Post 1 Week Ago What does Google have from serving us with Google Fonts? http://uberbandwidth.com/pls-check/pls-check-me-over.php Main Sections Technology News Reviews Features Product Finder Downloads Drivers Community TechSpot Forums Today's Posts Ask a Question News & Comments Useful Resources Best of the Best Must Reads Trending Now

During the scan it will prompt you to clean files, click OK When the scan is finished, look at the bottom of the screen and click the Save report button. Please re-enable javascript to access full functionality. To help prevent future spyware installations/infections, please read the Anti-Spyware Section and use the tools provided. __________________ Please do NOT PM me.

Jul 29, 2007 #3 momok TS Rookie Posts: 2,265 PC 1 is clean.

Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: Make sure you have a good third party Firewall and Anti-Virus but do not duplicate these. Merge the IE-Spyad List into your registry. could you pls help...

Logfile of HijackThis v1.98.2 Scan saved at 17:15:12, on 19/11/2004 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\System32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe Start a new discussion instead. O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\PROGRA~1\AIM95\aim.exe O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll O9 weblink If you have to remove 1 of them but want to keep the other, remove BearShare.

Install SpywareGuard. My Home Page Reply With Quote Quick Navigation Preventative Medicine Top Site Areas Settings Private Messages Subscriptions Who's Online Search Forums Forums Home Forums Center For Disease Control Security News / User Name Remember Me? Click here to Register a free account now!

Please go HERE to run Panda's ActiveScan Once you are on the Panda site click the Scan your PC button A new window will open...click the Check Now button Enter your Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: Also, please conduct a search on your entire computer (including hidden and subfolders etc) for the following files and let me know if you find them and where. Make sure that Search system folders, Search hidden files and folders, and Search subfolders are checked.

Register a free account to unlock additional features at BleepingComputer.com Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\YAHOO!\COMPAN~1\INSTALLS\cpn0\ycomp5_6_2_0.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: UberButton Class Also when I run Spybot it can not clean Altnet and Gain.Gator. iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast!

Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Login now. HELP! 01-03-2005, 08:54 PM #3 greyknight17 TSF Team, Emeritus Join Date: Jul 2004 Location: New York Posts: 14,311 OS: Windows 98 & Windows XP Home/Pro My System Anyway here my new HJT log as well as the logs from the ewido scan and panda scans.

Remove all items it finds. Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\YAHOO!\COMPAN~1\INSTALLS\cpn0\ycomp5_6_2_0.dll O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [Power_Gear] C:\Progra~1\ASUS\Power4 Gear\BatteryLife.exe 1 O4 - HKLM\..\Run: [SynTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe O4 - HKLM\..\Run: