Home > Help > Help - 911 Please Hijackthis Log

Help - 911 Please Hijackthis Log

Logfile of HijackThis v1.99.0 Scan saved at 22:49:54, on 08/01/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE Login - {2499216C-4BA5-11D5-BD9C-000103C116D5} - C:\Program Files\Yahoo!\Common\ylogin.dllO9 - Extra button: SideStep - {3E230861-5C87-11D3-A1C6-00105A1B41B8} - C:\WINDOWS\Downloaded Program Files\SbCIe026.dll (file missing)O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes.dllO9 - Extra 'Tools' menuitem: Similarly in the startup tab there was no entry for mdm so did not do that.Step 4: Uninstalled all Java on my machine, rebooted, and installed the latest version of it.Machine Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

check over here

Much appreciated. 0 Back to top #7 daveydoom daveydoom Assistant Janitor Admin 12,043 posts Gender:Male Location:Ontario, Canada Posted 22 June 2007 - 08:54 AM I'd like you to reconfigure Windows XP Thanks!Logfile of Trend Micro HijackThis v2.0.2Scan saved at 1:25:23 PM, on 12/25/2007Platform: Windows XP SP1 (WinNT 5.01.2600)MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\savedump.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\System32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\spoolsv.exeC:\WINDOWS\Explorer.EXEC:\Program Files\eMachines Bay Reader\shwiconem.exeC:\Program Files\HP\hpcoretech\hpcmpmgr.exeC:\Program Files\ATI Technologies\ATI.ACE\cli.exeC:\Program Error reading poptart in Drive A: Delete kids y/n? Powered by SMF 1.1.19 | SMF © 2013, Simple Machines Loading... http://www.bleepingcomputer.com/forums/t/222471/hijackthis-log-please-help-diagnose/

Please start a New Thread if you're having a similar issue.View our Welcome Guide to learn how to use this site. Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Short URL to this thread: https://techguy.org/315269 Log in with Facebook Log in with Twitter Log in with Google Your name or email address: Do you already have an account? Attempting to delete C:\windows\system32\rttss.iniC:\windows\system32\rttss.ini Has been deleted!

Join over 733,556 other people just like you! From within Add/Remove Programs highlight any of the following programs (if listed) and select Remove.PuritySCAN By OINOINMediaTickets by OINYazzle by OINYazzle Cowabanga by OINYazzle ActiveX By OINYazzle Picster by OINYazzle Sudoku Created on 06/20/2007 18:46:28, 3. I'm currently reviewing your logs and will post another reply soon . 0 "A computer beat me in chess, but it was no match when it came to kickboxing" -Emo Philips

Style Default Style Contact Us Help Home Top RSS Terms and Rules Copyright © TechGuy, Inc. Do not mouseclick combofix's window while it's running as that may cause it to stall. A box will pop up asking you if you wish to fix the selected items. https://forums.techguy.org/threads/solved-hijackthis-log-help-required-please-looks-nasty.315269/ cmd.exe [3564]scanning hidden autostart entries ...scanning hidden files ...scan completed successfullyhidden files: 0**************************************************************************Completion time: 2007-06-20 12:33:24 - machine was rebootedC:\ComboFix-quarantined-files.txt ... 2007-06-20 12:33 --- E O F ---Logfile of Trend Micro

Please download and use HijackThis 1.99.1 instead. The only ongoing issue I seem to have now is that my video card / divx / something is not working properly and I can't render 3D graphics. This is a short scan that will scan the files currently running in memory and when something is found, click the Yes button when it asks you if you want to Javascript You have disabled Javascript in your browser.

These both found bad guys which they deleted/quarantined. http://www.theeldergeek.com/forum/index.php?showtopic=25210 Am I right? Several functions may not work. Can't find your answer ?

kunoyangAug 22, 2010, 3:32 AM I have a virus and I ran HiJackThis and said I should ask knowledgable people what I should delete so I don't delete something important.Should I check my blog Help Please! I have read the "what to do before posting" post and followed the instructions there. Due to a few misunderstandings, I just want to make it clear that this site provides only an online analysis, and not HijackThis the program.

Just paste your complete logfile into the textbox at the bottom of this page. I searched my computer and found 3 mdm files and one pdm file and changed all the extension names to .old. solved Screen goes black and PC shuts down right after log in. this content February 10, 2017, 09:00:23 AM Welcome, Guest.

Several entries show as (file missing) which I guess (hope) is because AdAware or similar has zapped them. Thread Status: Not open for further replies. I'll address that in a later post.

If you still need help, please post a new HijackThis log to make sure nothing has changed, and I'll be happy to look at it for you.Thanks,tea Please make a donation

Advertisement Recent Posts cant connect TerryNet replied Feb 10, 2017 at 8:55 AM Help AMD processor crjdriver replied Feb 10, 2017 at 8:50 AM Mouse Flickering and keyboard... I've run AdAware, SpyBot and CWShredder and then got this log. Thank you again for your help, any further guidance greatly welcome.VundoFix V6.5.1Checking Java version...Java version is 1.5.0.3Old versions of java are exploitable and should be removed.Java version is 1.5.0.4Old versions of This error does not seem to stop the machine running ok, however.That looks like it's related to QuickBooks trying to update itself.

Error reading poptart in Drive A: Delete kids y/n? Locked out of PC due to suspected malicious software! Attempting to delete C:\WINDOWS\system32\npqss.iniC:\WINDOWS\system32\npqss.ini Has been deleted! have a peek at these guys The new log is...

DO NOT perform a scan yet.Please download ATF Cleaner by Atribune & save it to your desktop.Double-click ATF-Cleaner.exe to run the program.Under Main "Select Files to Delete" choose: Select All.Click the