Home > Yet Another > Yet Another HiJack Log From Me *s

Yet Another HiJack Log From Me *s

There are currently no thanks for this post. This can take awhile, and you won't be able to use the computer for anything while it's runnning: http://www.bleepingcomputer.com/combofix/how-to-use-combofix Glad you like it! We often link to other websites, but we can't be responsible for their content. Anyway...My problem, I believe, is nothing onvolving JavaScript will work! Source

sunflower 1,436Posts 1,242Thanks sunflower By sunflower 15th Jul 11, 2:01 PM 1,436 Posts 1,242 Thanks sunflower View public profile Send private message Find more posts View all thanked posts #14 Music MoneySaving Food Shopping & Groceries Gone Off! As much as I would like to learn more about the virus removal process, I don't trust my computer programming abilities enough to do it alone. I've done the Ewido scan though, here's the latest.

RussJK 2,321Posts 2,039Thanks RussJK By RussJK 15th Jul 11, 12:16 AM 2,321 Posts 2,039 Thanks RussJK View public profile Send private message Find more posts View all thanked posts #11 Let me know if you see something amiss... Please post a log before rebooting. Neal, Oct 22, 2005 #10 b-lab Techie7 New Member 1.

HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Explo rer\{3446AF26-B8D7-199B-4CFC-6FD764CA5C9F} (Backdoor.Bot) -> Quarantined and deleted successfully. If there's anything that you don't understand, ask your question(s) before proceeding with the fixes. C:\WINDOWS\system32\mskhhe.dll not-a-virus:AdWare.Win32.ClientMan 2. Thanks so much *s Logfile of HijackThis v1.97.7 Scan saved at 12:26:14 PM, on 19/07/04 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE

Click "Open the Misc Tools Section" 2. Select the following and click Kill process for each one if they are still listed (they shouldn't be - but double check it): C:\WINDOWS\SYSTEM32\WINMM64.EXE C:\WINDOWS\TEMP\GGKE.DAT Run a scan in HijackThis. Messenger (HKLM) O9 - Extra 'Tools' menuitem: Sun Java Console (HKLM) O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/ansi/iuctl.CAB?37989.3836342593 O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab O16 - DPF: Please download and run these additional removal tools: CWShredderHSRemove 2.

By continuing to use this site, you are agreeing to our use of cookies. If you have waited for more than 3 days, you may then and ONLY then PM me for assistance. Supermarket Coupons Shop but don't drop All Shopped Out! It's very creepy of Apple to not let us disable the microphone from always listening. (You cannot disable both Voice Control and Siri, only one or the other) Reply Colin says:

Sophos Home Free home computer security software for all the family Learn More Anyone attempting this bypass needs physical access to your phone - they can't grab your stuff remotely but It seems that when I use Internet Explorer, AVG is finding trojans that are loading/trying to load. Music Engine\ymetray.exe C:\Program Files\Java\jre1.5.0_04\bin\jusched.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe C:\WINDOWS\System32\ctfmon.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\AIM\aim.exe C:\Program Files\Common Files\AOL\1129477803\ee\AOLHostManager.exe C:\Program Files\Common Files\AOL\1129477803\ee\AOLServiceHost.exe C:\Program Post whatever questions you may have in the forum and we will take a look at it when we get to it.

Under the Hidden files and folders heading select Show hidden files and folders. http://popupjammer.com/yet-another/yet-another-hijack-this-log-please-please-help.html Anyone on here have any ideas? If you have an Explorer window open, do the following Click in the address bar to the right of the ... OR You can go to Start -> Programs -> Accessories -> Command Prompt.

Got any clues? TICK and FIX this in Hijackthis: F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe,C:\WINDO WS\system32\sdra64.exe, 2. Here is my hijackthis log file: Logfile of HijackThis v1.99.1 Scan saved at 10:13:13 PM, on 5/16/05 Platform: Windows 98 SE (Win9x 4.10.2222A) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Running processes: have a peek here Inc."]{AC9E2541-2814-11D5-BC6D-00B0D0A1DE45}\"ButtonText" = "AIM""Exec" = "C:\Program Files\AIM\aim.exe" ["America Online, Inc."]{E19ADC6E-3909-43E4-9A89-B7B676377EE3}\"ButtonText" = "Sothink SWF Catcher""MenuText" = "Sothink SWF Catcher""Script" = "C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm" [null data]{FB5F1910-F110-11D2-BB9E-00C04F795683}\"ButtonText" = "Messenger""MenuText" = "Messenger""Exec" = "C:\Program Files\Messenger\MSMSGS.EXE"

I've just been putting them into the virus vault for now. nasdaq Favorite tools: [ SpywareBlaster ] [ Spybot ] [ AdAware ] [ HijackThis ] [ Housecall online virus scan ] [ Bitdefender online virus scan ] [ AVG antivirus ] I still use Netscape on my Linux boxen sometimes (it doesn't seem to suffer from the problems that the Win versions do), but Firefox has been my main browser on both

Tighten up some of Internet Explorer's existing, default settings to make it more secure.

Some info on that can be found here: http://tomcoyote.org/ieoe.php 5. Show Ignored Content As Seen On Welcome to Tech Support Guy! Anyways, you have been a great help! 0 DMR 152 11 Years Ago In the days before Firefox was actually Firefox (Phoenix/Firebird) and ready for Prime Time, I used Netscape primarily, Reply Paul Ducklin says: November 18, 2016 at 9:14 pm Yes, it is.

EDIT: Looks like I may have the latest version running already. 0 dlh6213 27 11 Years Ago Go ahead with the other steps crunchie suggested. 0 OPDiscussion Starter UMDstudent 11 Years In Scanning Engine:Unload recognized processes during scanning Include info about ignored objects in logfile, if detected in scan Include basic Ad-aware settings in logfile Include additional Ad-aware settings in logfile Include VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido\security suite\ewidoctrl.exe O23 - Service: ewido security http://popupjammer.com/yet-another/yet-another-hijack-log.html Thank you again.

Login & Quick Reply Multi-Quote Added Quote Multi-quote Added to Spam Report Share on Facebook Share on Twitter Users saying Thanks (1) sunflower 1,436Posts 1,242Thanks sunflower By sunflower 14th Jul 11, There are currently no thanks for this post. Here is my hijack log to get rid of heretofind.