Solved: Please Check My HJT Log
mobile security t l s Sr. cybertech, Sep 2, 2008 #8 Pheonix101 Thread Starter Joined: Aug 22, 2008 Messages: 10 Windows Messenger was already disabled and I'm still getting them. It seems to be getting better, but there is obviously more to be done. Click Open the Misc Tools section. Click Open Hosts File Manager. A "Cannot find the host file" prompt should appear. http://blightysoftware.com/solved-please/solved-please-can-some-one-check-my-log.html
mobile security polonus Avast Überevangelist Maybe Bot Posts: 28639 malware fighter Re: please help with malware infestation, hjt log « Reply #9 on: October 22, 2008, 12:19:13 AM » Hi DavidR,We Legal Policies and Privacy Sign inCancel You have been logged out. mobile security polonus Avast Überevangelist Maybe Bot Posts: 28639 malware fighter Re: please help with malware infestation, hjt log « Reply #7 on: October 21, 2008, 11:55:42 PM » Hi t If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. https://forums.techguy.org/threads/solved-please-check-my-hjt-log-desperate.743061/
then see what it look's like after curlylad 23:50 05 May 05 OK , I started to follow your link then it all went pair shaped as it said the My laptop is so much faster now and the perfomance is great ! Click Yes to create a default host file. Video Tutorial Rate this Solution Did this article help you? C:\PROGRAM FILES\INTEL\WIRELESS\BIN\EVTENG.EXE C:\PROGRAM FILES\INTEL\WIRELESS\BIN\S24EVMON.EXE C:\WINDOWS\SYSTEM32\LEXBCES.EXE C:\WINDOWS\SYSTEM32\LEXPPS.EXE C:\ACER\EMANAGER\ANBMSERV.EXE C:\PROGRAM FILES\AVG\AVG8\AVGWDSVC.EXE C:\PROGRAM FILES\INTEL\WIRELESS\BIN\REGSRVC.EXE C:\PROGRAM FILES\AVG\AVG8\AVGRSX.EXE C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe C:\Program Files\acer\eRecovery\Monitor.exe C:\WINDOWS\system32\wscntfy.exe . ************************************************************************** .
Its usually installed for the IPX/SPX protocol that is rarely used anymore. Check "Turn off System Restore" and reboot. Completion time: 2008-09-11 19:35:52 - machine was rebooted ComboFix-quarantined-files.txt 2008-09-11 18:35:20 Pre-Run: 9,998,385,152 bytes free Post-Run: 9,968,074,752 bytes free 240 --- E O F --- 2008-09-06 14:58:33 Pheonix101, Sep 11, Logged DavidR Avast Überevangelist Certainly Bot Posts: 76875 No support PMs thanks Re: please help with malware infestation, hjt log « Reply #12 on: October 22, 2008, 01:58:01 PM » Quote
Kenny/facebook malware makes sense, considering her internet habits.Incidentally, my daughter doesn't actually 'have' Spybot. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged Click on View Scan Report. Save this report to a convenient place.
cybertech, Sep 11, 2008 #14 Pheonix101 Thread Starter Joined: Aug 22, 2008 Messages: 10 Here we go ComboFix 08-09-13.05 - Bill 2008-09-14 15:22:43.2 - FAT32x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.197 Required The image(s) in the solution article did not display properly. If asked to allow gmer.sys driver to load, please consent . Page 1 of 2 1 2 Next > Advertisement Pheonix101 Thread Starter Joined: Aug 22, 2008 Messages: 10 I keep getting pop-ups from random websites whenever i'm on IE or Firefox
FireFox -: Profile - C:\Documents and Settings\Bill\Application Data\Mozilla\Firefox\Profiles\alhilnfd.default\ FireFox -: prefs.js - SEARCH.DEFAULTURL - hxxp://www.google.com/search?lr=&ie=UTF-8&oe=UTF-8&q= FireFox -: prefs.js - STARTUP.HOMEPAGE - hxxp://www.google.com/ FF -: plugin - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll . ************************************************************************** http://esupport.trendmicro.com/en-us/home/pages/technical-support/1037994.aspx Site Changelog Community Forum Software by IP.Board Sign In Use Facebook Use Twitter Need an account? So I'm printing instructions, following links, reading information....but it's past my bedtime now, and I'll be at work tomorrow. Post the log from ComboFix when you've accomplished that, along with a new HijackThis log.
Click Exit on the Main menu to close the program. check my blog If you encounter any problems while downloading the updates, manually download them from here and just double-click on mbam-rules.exe to install. Internet Security DavidR Avast Überevangelist Certainly Bot Posts: 76875 No support PMs thanks Re: please help with malware infestation, hjt log « Reply #1 on: October 21, 2008, 06:47:13 PM » Search in the list for all previous installed versions of Java. (J2SE Runtime Environment.... ) It should have this icon next to it: Select it and click Remove.Close any programs you
Member Posts: 248 huh? Save both reports to your desktop.---------------------------------------------------Please Please copy / paste the scan reults.DDS.txtPlease attach the second file; Attach.txt.Download and Run GMER Download GMER Rootkit Scanner from here or here. Click OK to close the message box and continue with the removal process. this content I was unable to scan with SAS even in safe mode, but I managed to install and scan with a recent copy of MBAM (in safe mode), which I had on
Failure to reboot will prevent MBAM from removing all the malware.
Three cheers for avast! I'll try do it tomorrow and paste the log for you thanks. Go to Start > Control Panel double-click on the Software icon > add/remove programs. http://en.wikipedia.org/wiki/Hosts_file Logged Core2Duo E8300/ 4GB Ram/ WinXP ProSP3/avast!
Save it where you can easily find it, such as your desktop, and attach it in your reply.**Caution**Rootkit scans often produce false positives. Completion time: 2008-09-14 15:30:27 - machine was rebooted ComboFix-quarantined-files.txt 2008-09-14 14:30:12 ComboFix2.txt 2008-09-11 18:35:56 Pre-Run: 9,991,847,936 bytes free Post-Run: 10,011,836,416 bytes free 226 --- E O F --- 2008-09-12 16:51:21 ============================================================== Post that log together with a new HijackThis log. have a peek at these guys p;3 22:10 05 May 05 can u remember what you did to get it originally "uninfected"?and am following :)what can u run on it?
How did I get infected in the first place. Click Yes to beging the Cleanup process and remove these components, including this application. I just got one from http://www.casino.co.uk/minisite/landing/index.aspx ! I then installed Spyware Terminator (in safe mode--it wouldn't install in normal mode), scanned in safe mode, and was able to remove KGBkeylogger.
My daughter's father had purchased a 2-year subscription nearly two years ago when he gave her the laptop as a gift, and she didn't want to switch to avast! scanning hidden autostart entries ... Please try again.Forgot which address you used before?Forgot your password?