Home > Hjt Log > HJT Log - 2/18/2010

HJT Log - 2/18/2010

Hi Zenfly and welcome to PC Pitstop. Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exeO23 - Service: avast! NEXT** I'd like for you to run this next online scan to check for remnants or anything that might be hidden. Music Jukebox   ==== Event Viewer Messages From Past Week ========   3/6/2010 11:13:46 AM, Error: FW1 [1] - FW1: FW-1: last packet seen 53266 seconds ago, assumi--> 3/5/2010 7:48:15 AM,

We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it. Quit ALL running applications, including all Internet Explorer or other browser windows, and messenger applications (like AOL Instant Messenger, Yahoo Messenger, MSN Messenger. 3. Yes, my password is: Forgot your password? If you have email address at Hotmail, Hotmail.uk, etc etc then you will not get notifications and need to manually check for new replies. https://forums.spybot.info/showthread.php?55575-HJT-Log-Malware-infection

Antivirus BitTorrent BS.Player PRO BufferChm CCleaner (remove only) Compatibility Pack for the 2007 Office system CustomerResearchQFolder DAMN NFO Viewer v2.10.0032.RC3 (Remove Only) Dassault Systemes Software B12 Destinations DeviceFunctionQFolder DeviceManagementQFolder DNA eSupportQFolder http://www.adobe.com/support/downloads/detail.jsp?ftpID=4607   Latest Security Advisory for Adobe Reader and Acrobat http://www.adobe.com/support/security/bulletins/apsb10-07.html   ===   To make sure you have the latest version of Adobe Flash Player installed: 1. I still haven't been able to remove the virus with Avira. Click the Networking tab.

Any other suggestions for me? Request blocked. Many of the finds have likely been quarantined. Hiloti virus?

The application window will appear Click the Disable button to disable your CD Emulation drivers Click Yes to continue A 'Finished!' message will appear Click OK DeFogger will now ask to Share this post Link to post Share on other sites ashby Member Full Member 6 posts Posted March 20, 2010 · Report post Hi, I removed and reinstalled Norton Antivirus O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebo...oUploader55.cab (Facebook Photo Uploader 5 Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.) O16 - DPF: {9E472D58-F10C-11CF-B7A9-0020AFD6A362} https://forums.malwarebytes.org/topic/64077-hijackthis-log/ Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files (x86)\Yahoo!\Companion\Installs\cpn\yt.dll O1 - Hosts: ::1 localhost O2 - BHO: &Yahoo!

Double click GMER.exe. Your Display Name will now be the only name you have for the forum and, if you used your Username to log in, you will now need to use your Display Look for these strings one at a time.   nvsvc.dll NvMcTray.dll NvCpl.dll   Report any file(s) that you find referencing these.   It may also be a some bad registry entries. Mail Scanner;c:\program files\avast4\ashMaiSv.exe [2009-9-9 254040] R3 avast!

A pop up box will appear advising this process will permanently delete files from your system. 6. great post to read Sounds like preferences are not being saved. Please don't send help request via PM, unless I am already helping you. When the scan is complete, click OK, then Show Results to view the results.

Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exeO23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exeO23 If you receive an error message while running DeFogger, please post the log defogger_disable which will appear on your desktop. Record Number: 850 Source Name: crypt32 Time Written: 20100223183228.000000-480 Event Type: error User: Computer Name: HOME-COMPUTER Event Code: 11 Message: Failed extract of third-party root list from auto update cab at: When done, DDS will open two (2) logs: DDS.txt Attach.txt [*]Save both reports to your desktop. ----------------------------------     Please post the contents of the DDS.txt and Attach.txt logs in your

Reg HKLM\SYSTEM\ControlSet002\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x57 0xBB 0xF8 0x68 ... self protection module/ALWIL Software) ZwClose [0xEE2EE6B8] SSDT \SystemRoot\System32\Drivers\aswSP.SYS (avast! Computer wont turn on. Join the ClassRoom and learn how.MS - MVP Consumer Security 2009 - 2016, Windows Insider MVP 2017 Back to top #10 Mr_BiGG73 Mr_BiGG73 Member Members 13 posts Posted 15 March 2010

Contents of the 'Scheduled Tasks' folder 2010-01-30 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34] . . ------- Supplementary Scan ------- . Record Number: 2510 Source Name: W32Time Time Written: 20100131215612.000000-480 Event Type: warning User: Computer Name: HOME-COMPUTER Event Code: 36 Message: The time service has not been able to synchronize the system The following error occurred: The operation was canceled by the user..

Share this post Link to post Share on other sites ashby Member Full Member 6 posts Posted March 26, 2010 · Report post I don't see the .dll files, but

Record Number: 2379 Source Name: Tcpip Time Written: 20100128140731.000000-480 Event Type: warning User: =====Application event log===== Computer Name: HOME-COMPUTER Event Code: 11 Message: Failed extract of third-party root list from auto htmlfile [edit] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- Click on the Accept button and install any components it needs. Password Site Map Posting Help Register Rules Today's Posts Search Site Map Home Forum Rules Members List Contact Us Community Links Pictures & Albums Members List Search Forums Show Threads

A Notepad document should open automatically called checkup.txt; please post the contents of that document. ===   Submit a fresh HijackThis log.   Let me know what problem perists. That may cause it to stall. 2. I'm assuming I got something off of Limewire. When I rescanned last night, it said there was 9 hidden files.

Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. File not found O18:64bit: - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. Generated by cloudfront (CloudFront) Request ID: tmockf8EV2t_G88ro7cByf64eBs9XYfLhvnyTimIul6rzjBBuGHptA== ERROR The request could not be satisfied.