Home > Can Someone > Can Someone Please Check Out My HiJackThis Log

Can Someone Please Check Out My HiJackThis Log

If It did do that, and we were to take the computer in somewhere to get serviced, would we get into trouble? Thanksm0le is a proud member of UNITE Back to top #6 Christyjmj Christyjmj Topic Starter Members 11 posts OFFLINE Gender:Female Location:Central Coast, Calif Local time:12:55 AM Posted 07 June 2009 Now I am realizing that many other non-torrent programs are also performing very slowly/hogging a lot of resources. Computer Associates says: CAUTION: Nimda makes irreversible changes to the system. click site

Logfile of HijackThis v1.95.0 Scan saved at 1:52:31 PM, on 7/14/2003 Platform: Windows XP (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 (6.00.2600.0000) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\PackethSvc.exe When clicking block did work, another window with the same message would pop up again immediatly several times. Style Default Style Contact Us Help Home Top RSS Terms and Rules Copyright © TechGuy, Inc. Thanksm0le is a proud member of UNITE Back to top Back to Virus, Trojan, Spyware, and Malware Removal Logs 0 user(s) are reading this topic 0 members, 0 guests, 0 anonymous

This can make helping you impossible. Thanks a lot!Logfile of Trend Micro HijackThis v2.0.2Scan saved at 4:08:38 PM, on 5/23/2009Platform: Windows XP SP3 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16827)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\system32\spoolsv.exeC:\Program Files\Comodo\CBOClean\BOCORE.exeC:\WINDOWS\eHome\ehRecvr.exeC:\WINDOWS\eHome\ehSched.exeC:\Program Files\Intel\Intel Matrix Storage Manager\iaantmon.exeC:\Program Thanksm0le is a proud member of UNITE Back to top #5 m0le m0le Can U Dig It?

Also, networking is sporadic on this machine now. We knew it was still there because Ad-Aware CONSTANTLY informed us that something was trying to change our registry and when (something like HKey local machine and a bunch of other System idle process should be hogging all the CPU Usage. could someone … Can't remove w-find.com.

And when we start the computer and go into one of our screennames, it says email protection cannot work or something due to the fact the options file is corrupted or Save it as "All Files" and name it FixME.reg. In order to find out what entries are nasty and what are installed by the user, you need some background information.A logfile is not so easy to analyze. Join our site today to ask your question.

All Rights Reserved Theme designed by Audentio Design. You do indeed have a few infections. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. system running slow.

  1. Click on and wait for the scan to finish.If you see a rootkit warning window, click OK.Push and save the logfile to your desktop.Copy and Paste the contents of that file
  2. My computer's being all slow...
  3. waht should i learn?

Go to Start -> Run and type: cleanmgr and then click "OK". Malware Response Instructor 34,445 posts OFFLINE Gender:Male Location:London, UK Local time:08:55 AM Posted 07 June 2009 - 07:58 AM Hi christyjmj, Can you post the other DDS log, attach.txt. Software for Windows Jul 15, 2015 Can anyone check my Hijackthis logfile please? Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

Just paste your complete logfile into the textbox at the bottom of this page. get redirected here Thus some of the utilities cannot restore settings to their original state (as before the infection) but will make brute force changes to the system that may cause unexpected system behavior C:\Documents and Settings\%UserID%\HistoryNote: For every User ID that is listed. Create Account How it Works Javascript Disabled Detected You currently have javascript disabled.

Service & Support HijackThis.de Supportforum Deutsch | English Forospyware.com (Spanish) www.forospyware.com Malwarecrypt.com www.malwarecrypt.com Computerhilfen www.computerhilfen.com Log file Show the visitors ratings © 2004 - 2017 Login (HKLM) O9 - Extra button: Messenger (HKLM) O9 - Extra 'Tools' menuitem: Yahoo! Site Changelog Community Forum Software by IP.Board Sign In Use Facebook Use Twitter Need an account? navigate to this website No input is needed, the scan is running.Notepad will open with the results.Follow the instructions that pop up for posting the results.Close the program window, and delete the program from your

Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Common\ycomp5,0,8,0.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe O4 - HKLM\..\Run: [StorageGuard] "C:\Program Files\VERITAS Software\Update Manager\sgtray.exe" /r O4 or read our Welcome Guide to learn how to use this site. Tech Support Guy is completely free -- paid for by advertisers and donations.

mfehidk;c:\windows\system32\drivers\mfehidk.sys [2007-2-8 214024]R2 BOCore;BOCore;c:\program files\comodo\cboclean\BOCore.exe [2008-8-6 73464]R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [2009-3-18 55152]R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2008-9-28 210216]R2 McProxy;McAfee Proxy Service;c:\progra~1\common~1\mcafee\mcproxy\mcproxy.exe [2007-2-8 359952]R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328]R2 McShield;McAfee Real-time

If we were to get a new OS and harddrive, would we still be having these problems? That's when I started to think that it could be a virus of some sorts. My husband helped me go to the regedit and delete the O4 - HKCU\..\Run: [hyttm] C:\WINDOWS\system32\lljblt.exe reg_run O4 - HKLM\..\Run: [kcnskr] C:\WINDOWS\system32\lljblt.exe reg_run But they re-appeared after the reboot. Check mark the box that says "Delete on Reboot" and checkmark the box "Unregister DLL" (If available) Click the RED X and it will ask you to confirm the file for

If it is possible to OBLITERATE Nimda from the system, without a trace? Please re-enable javascript to access full functionality. Advertisement The Echidna Thread Starter Joined: Jul 13, 2003 Messages: 5 I'm having a bunch of comp issues and I don't understand most of what's in here. http://linux4newbie.com/can-someone/can-someone-please-check-this-hijackthis-log.html Here's the HijackThis log that i have … Help Needed on HijackThis log 6 replies Hi, and thanks in advance for those with more brains and experience than me....

System idle process is just the process that cpu uses to consume empty cycles. #4 neutralizer, Jul 12, 2006 mitchafi Golden Member Joined: Mar 25, 2004 Messages: 1,586 Likes Received: mitchafi Golden Member Joined: Mar 25, 2004 Messages: 1,586 Likes Received: 0 I posted a thread a few hours ago asking for help because uTorrent was using near 100% CPU and thanks so much. E: is CDROM (UDF) ==== Disabled Device Manager Items ============= Class GUID: TI Technologies Inc.

I've done what you told me. It will do it every few seconds and do it CONSTANTLY! It is therefore imperative that users first carefully review the readme file included with the Nimda System Recovery Utilities. Run Killbox.exe.

After downloading the tool, disconnect from the internet and disable all antivirus protection. BitTornado also used 100% CPU. Nimda doesn't get caught by the Virus Scanner. Javascript You have disabled Javascript in your browser.

Then we formatted with the recovery disks *full format*. Select the "Tools" menu and click "Folder Options". Please re-enable javascript to access full functionality. Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool.

If there is some abnormality detected on your computer HijackThis will save them into a logfile. So, I thought I'd do this and really make sure.DDS - NotepadDDS (Ver_09-05-14.01) - NTFSx86 Run by Christina at 14:11:59.19 on Sat 06/06/2009Internet Explorer: 7.0.5730.13Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3070.1972 [GMT -7:00]AV: Check "Run Cleaner" button. Please run HJT and place a check next to the following items.

RP728: 5/23/2009 8:54:58 AM - Software Distribution Service 3.0 RP729: 5/24/2009 12:17:35 PM - System Checkpoint RP730: 5/25/2009 12:19:05 PM - System Checkpoint RP731: 5/26/2009 12:34:50 PM - System Checkpoint RP732: When it finishes, exit HJT.=====================================Locate and delete the following file(s), if present : C:\WINDOWS\system32\exv.dll =====================================Download ATF Cleaner Double-click ATF-Cleaner.exe to run the program.Click Select All found at the bottom of the Error code: 2S136/C Contact Us Existing user?