Home > Help Me > Help Me: HJT Log For XP!

Help Me: HJT Log For XP!

You have been really great. Attached logs will not be reviewed. ===================================== My Guidelines: please read and follow: Be patient. All Rights Reserved Tom's Hardware Guide ™ Ad choices Software Home Software Interpreting HiJackThis Logs in Window... Login now.

Thank you! If I have helped you then please consider donating to continue the fight against malware Back to top #11 pvf pvf Topic Starter Members 8 posts OFFLINE Local time:11:39 AM I have also scanned the flash drive and nothing was detected. Please note that your topic was not intentionally overlooked. website here

Please post the contents of both log.txt (<

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_04\bin\npjpi150_04.dll O9 - Extra 'Tools' menuitem: Sun Java Console This applies to the original topic starter only. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it. GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)If you receive a WARNING!!!

Windows loading forever after I log in... If you need this topic reopened, please PM a staff member and we will reopen it for you (include the address of this thread in your request). Please perform the following scan:Download DDS by sUBs from one of the following links. http://www.tomshardware.com/forum/250487-45-hijackthis-help Select the View Tab.

about rootkit activity and are asked to fully scan your system...click NO.Now click the Scan button. Please include the C:\ComboFix.txt in your next reply.This tool is not a toy and not for everyday use.ComboFix SHOULD NOT be used unless requested by a forum helperIf you need help, So take the precautions described in yesterday's article,"Introduction toHiJackThis for Windows XP."HJT Process AnalysisAnalyzing HJT (Hijackthis) logs can be broken down into two sub-steps. There will no longer be separate Usernames and Display Names.

DS Cluster - Follow our Sitemap

KEITHLEE2zdeconfigurator/configs/INFUSIONSOFT_OVERLAY.phpzdeconfigurator/configs/ OFFLOADING INFUSIONSOFTLOADING INFUSIONSOFT 1debug:overlay status: OFFoverlay not displayed overlay cookie defined: TI_CAMPAIGN_1012_D OVERLAY COOKIE set: status off Login _ Social Sharing Find Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 3:40:55 AM, on 1/3/2001 Platform: Windows XP SP1 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe Trojans will not overwrite this legitimate file, because if they do, it will cause a system malfunction. No input is needed, the scan is running.Notepad will open with the results.Follow the instructions that pop up for posting the results.Close the program window, and delete the program from your

i see the attachment button with the rest of the icons (smiley face, Bold, Italian, Underlined) but it's not clickable. I have also saved the log as instructed. Information on A/V control HERE regards, schrauber If I've not posted back within 48 hrs., feel free to send a PM with your topic link. If your problem persist, you can send a PM to reopen it. ===================================== ..i don't know how to attach it here,Click to expand...

NOTE: If you already have any of the scanning programs on the computer, please remove them and download the versions in these links. When turning off System Restore, the existing restore points will be deleted. Click Apply.6. i was very discouraged until i found similar problems being solved in this website, God bless yall!

Do you know if it would be safe for me to delete it? disbanded: Ok, here is the latest Hijackthis log. please help, here's my log.

Notifications blocked by Outlook.com, Hotmail, Live, etc Our notifications are blocked by those mail servers.

If it is, then the process or file is clean.If it is not, we will scan it manually (one file at a time) using http://virusscan.jotti.org/ or http://www.virustotal.com/ and see the results Thank you! Logfile of Trend Micro HijackThis v2.0.2Scan saved at 9:33:00 PM, on 4/24/2008Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16608)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\svchost.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exeC:\WINDOWS\Explorer.EXEC:\Program Files\Seagate\SystemTray\StxMenuMgr.exeC:\Program Files\McAfee.com\Agent\mcagent.exeC:\Program Files\SiteAdvisor\6253\SiteAdv.exeC:\WINDOWS\system32\ctfmon.exeC:\Program Files\Linksys EasyLink When turning off System Restore, the existing restore points will be deleted.

none of them are . If you use this mirror, please extract the zip file to your desktop.Disconnect from the Internet and close all running programs.Temporarily disable any real-time active protection so your security programs will The logs that you post should be pasted directly into the reply. The log file below is what was written to C:Program Files\ESET\ESET Online Scanner.

Saga LoutAug 23, 2010, 2:55 AM The_Prophecy said: The following entries look suspicious to me:O2 - BHO: Nate Search Class - {FFDE727F-3330-45EB-B9F9-C1668E6E08B2} - C:\Program Files\Nate\AddressSearch\sch.dllO4 - HKLM\..\Run: [ntasvr] "C:\Program Files\Nate\AddressSearch\ntasvr.exe"O4 - You may also...