Home > Hjt Log > HJT Log - Possible Virus 2

HJT Log - Possible Virus 2

Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #2 KoanYorel KoanYorel Bleepin' Conundrum Staff Emeritus 19,461 posts OFFLINE Gender:Male Location:65 miles due East of DDS (Ver_09-03-16.01) - NTFSx86 Run by Josh at 0:07:16.98 on Sat 04/11/2009 Internet Explorer: 7.0.5730.11 BrowserJavaVersion: 1.6.0_02 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.2046.1110 [GMT -5:00] AV: ESET NOD32 antivirus system 2.70 *On-access or read our Welcome Guide to learn how to use this site. It is important that it is saved directly to your desktop** -------------------------------------------------------------------- 1. http://filealley.com/hjt-log/hjt-log-possible-virus.html

Save it to your desktop.DDS.scrDDS.pifDouble click on the DDS icon, allow it to run.A small box will open, with an explaination about the tool. Back to top #5 Orange Blossom Orange Blossom OBleepin Investigator Moderator 35,743 posts OFFLINE Gender:Not Telling Location:Bloomington, IN Local time:06:26 PM Posted 23 June 2009 - 07:44 PM Hello Thank iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: avast! MOST IMPORTANT : Windows and IE, and whatever other software that you have that connects to the net, needs to be kept updated. https://forums.techguy.org/threads/hjt-log-possible-virus-2.702656/

C:\Documents and Settings\Aden\Local Settings\Application Data\Mozilla\Firefox\Profiles\mkq551aj.default\XUL.mfl moved successfully. 0 #19 Jimmy2012 Posted 02 November 2008 - 06:46 PM Jimmy2012 Trusted Helper Retired Staff 6,238 posts Hello Aden, How is your computer running Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, I just want some help to verify that the computer is completely clean.

I have run adaware and spybotsd. C:\Program Files\MorpheusBar\bar\1.bin\NPMORPBR.DLL moved successfully. Thread Status: Not open for further replies. When finished, it will produce a report for you.

Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - Unknown Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dllO2 - BHO: &Yahoo! From within Internet Explorer click on the Tools menu and then click on Options. http://www.help2go.com/forum/spyware-help/95830-hjt-log-help-removing-spyware-possible-virus.html C:\Program Files\MorpheusBar\bar\1.bin\M0POPSWT.DLL moved successfully.

Alternatively, you can update through MBAM's interface from a clean computer, copy the definitions (rules.ref) located in C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware from that system to a usb stick or With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. One of them is Firefox. Spywareguard: Is realtime protection from spyware.2.

Mail Scanner;avast! C:\Program Files\MorpheusBar\bar\1.bin\M0POPSWT.DLL unregistered successfully. SUPERAntiSpyware Scan Log http://www.superantispyware.com Generated 04/17/2008 at 10:16 AM Application Version : 4.0.1154 Core Rules Database Version : 3440 Trace Rules Database Version: 1432 Scan type : Complete Scan Total Scan C:\Documents and Settings\Aden\Local Settings\Application Data\Mozilla\Firefox\Profiles\mkq551aj.default\Cache\_CACHE_MAP_ moved successfully.

Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. have a peek at these guys C:\Documents and Settings\Aden\Local Settings\Application Data\Mozilla\Firefox\Profiles\mkq551aj.default\Cache\_CACHE_002_ scheduled to be deleted on reboot. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff I only got this the night after the infection.

Several functions may not work. This list is full of great tools and utilities to help you understand how you got infected and how to keep from getting infected again.1. With the help of this automatic analyzer you are able to get some additional support. http://filealley.com/hjt-log/hjt-log-possible-virus-and-or-spy.html Any firewall is better than none, and you should pick a firewall that you will use, as even the best firewall is worthless if you turn it off.

Close any open browsers. 2. The reason is, these programs connect to the net, and if there is an internal security problem, you have already told your firewall to allow the communication, and thus you will Trillian or Miranda-IM - These are Malware free Instant Messenger programs which allow you to connect to multiple IM services in one program! (AOL, Yahoo, ICQ, IRC, MSN)7.

Your cache administrator is webmaster.

Show Ignored Content As Seen On Welcome to Tech Support Guy! I appreciate all you've done for me Back to top #12 Hoov Hoov Malware Response Team 3,519 posts OFFLINE Location:Mikado Michigan Local time:07:26 PM Posted 14 April 2009 - 04:43 All rights reserved. Antivirus;avast!

File delete failed. this Topic has been closed. C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat C:\Documents and Settings\swagner\Application Data\macromedia\Flash Player\#SharedObjects\TT9E6GBD\www.broadcaster.com C:\Documents and Settings\swagner\Application Data\macromedia\Flash Player\#SharedObjects\TT9E6GBD\www.broadcaster.com\played_list.sol C:\Documents and Settings\swagner\Application Data\macromedia\Flash Player\#SharedObjects\TT9E6GBD\www.broadcaster.com\video_queue.sol C:\Documents and Settings\swagner\Application Data\macromedia\Flash Player\macromedia.com\support\flashplayer\sys\#www.broadcaster.com C:\Documents this content My page will help you with ZoneAlarm if that is what you choose.

Even for an advanced computer user. Also try rebooting and see if you still get a warning from Nod32 or wherever it is coming from.