Home > Hijack This > Hijack This Log 11-1-04

Hijack This Log 11-1-04

Logfile of HijackThis v1.98.2 Scan saved at 12:08:18 AM, on 11/2/2004 Platform: Windows ME (Win9x 4.90.3000) MSIE: Internet Explorer v5.50 (5.50.4134.0100) Running processes: C:\WINDOWS\SYSTEM\KERNEL32.DLL C:\WINDOWS\SYSTEM\MSGSRV32.EXE C:\WINDOWS\SYSTEM\MPREXE.EXE C:\WINDOWS\SYSTEM\mmtask.tsk C:\WINDOWS\EXPLORER.EXE C:\WINDOWS\SYSTEM\ZGXWITH.EXE C:\WINDOWS\SYSTEM\SAIE.EXE C:\WINDOWS\BUNDLES\VL_EZSTUB.EXE All rights reserved. No, create an account now. Reboot, then post a new log and let us know how things are running. weblink

Back to top #10 snoopy75 snoopy75 Topic Starter Members 23 posts OFFLINE Local time:07:39 PM Posted 22 November 2004 - 08:59 AM Logfile of HijackThis v1.98.2 Scan saved at 11:03:42 Go into HijackThis->Config->Misc. Due to a few misunderstandings, I just want to make it clear that this site provides only an online analysis, and not HijackThis the program. Thread Status: Not open for further replies. http://www.techsupportforum.com/forums/f284/hijack-this-log-11-1-04-a-22054.html

Do you know where your recovery CDs are ?Did you create them yet ? This applies only to the original topic starter. Next, go to C:\Documents and Settings\username\Local Settings\Temp folder. Save it to the Hijack This folder you just created.

HijackThis Log: Please help diagnose Started by ericpercboy377 , Nov 01 2004 01:06 PM Page 1 of 2 1 2 Next Please log in to reply 17 replies to this topic flavallee, Nov 1, 2004 #5 mpilarski Thread Starter Joined: Aug 3, 2004 Messages: 86 everytime I download the newer hijackthis file its a winzip file(temp). Thread Status: Not open for further replies. flavallee, Oct 30, 2004 #3 mpilarski Thread Starter Joined: Aug 3, 2004 Messages: 86 First let me say thank you for the help everyone!

I did however repost in the right forum. I can open regedit but i don't know what I can do with it once it is open. A tutorial on installing & using this product can be found here: Using SpywareBlaster to protect your computer from Spyware and Malware Update all these programs regularly - Make sure you http://www.bleepingcomputer.com/forums/t/4168/hijackthis-log-please-help-diagnose/ or read our Welcome Guide to learn how to use this site.

Please do the following:Reboot your computer into Safe ModePlease make sure that you can view all hidden files. Create a folder for it and place the "HijackThis.exe" file inside that folder before you use it. Join our site today to ask your question. No, create an account now.

C:\WINDOWS\system32\SVHOST.EXE <-------- Delete this file. Back to top #14 snoopy75 snoopy75 Topic Starter Members 23 posts OFFLINE Local time:07:39 PM Posted 23 November 2004 - 12:46 PM Whew... Flrman1, Nov 1, 2004 #2 jdg01 Thread Starter Joined: Jun 28, 2004 Messages: 18 Here's my hijackthis log: Logfile of HijackThis v1.97.7 Scan saved at 2:48:21 PM, on 11/1/04 Platform: Windows Back to top #13 ericpercboy377 ericpercboy377 Topic Starter Members 9 posts OFFLINE Local time:08:39 PM Posted 10 November 2004 - 12:23 PM Hi Grinler,I followed your directions and successfully deleted

Fix this one and restart your computer: O8 - Extra context menu item: >>> FREE PORN GALLERIES <<< - javascript:{document.location='http://sexmaxx.com/freegalleries.htm';} Flrman1, Nov 2, 2004 #8 jdg01 Thread Starter Joined: Jun have a peek at these guys The log should open in notepad. Please re-enable javascript to access full functionality. Without a firewall your computer is succeptible to being hacked and taken over.

Spybot is no help and the other program i downloaded, spyblocs_installer.exe, won't open. If you should have a new issue, please start a new topic. You should save it and make use of it when needed. check over here Newer Than: Search this thread only Search this forum only Display results as threads Useful Searches Recent Posts More...

With the help of this automatic analyzer you are able to get some additional support. Close all browser windows, click on the cwshredder.exe then click "Fix" (Not "Scan only") and let it do it's thing. Using the site is easy and fun.

Now Click here to download Hijack This.

Remove Advertisements Sponsored Links TechSupportForum.com Advertisement 11-01-2004, 07:15 PM #2 CTSNKY TSF Team Emeritus, Security Team Join Date: Aug 2004 Posts: 10,821 OS: Every Windows OS known vSniff.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004 ... Click Check for Problems and when the scan is finished let Spybot fix/remove all it finds marked in RED. Thanks! ----------------------------------------------------------Logfile of HijackThis v1.98.2Scan saved at 4:15:24 PM, on 11/1/04Platform: Windows 98 SE (Win9x 4.10.2222A)MSIE: Internet Explorer v5.00 (5.00.2614.3500)Running processes:C:\WINDOWS\SYSTEM\KERNEL32.DLLC:\WINDOWS\SYSTEM\MSGSRV32.EXEC:\WINDOWS\SYSTEM\MPREXE.EXEC:\WINDOWS\SYSTEM\mmtask.tskC:\WINDOWS\SYSTEM\MSTASK.EXEC:\WINDOWS\SYSTEM\ZONELABS\VSMON.EXEC:\WINDOWS\EXPLORER.EXEC:\WINDOWS\TASKMON.EXEC:\WINDOWS\SYSTEM\SYSTRAY.EXEC:\WINDOWS\SYSTEM\STIMON.EXEC:\WINDOWS\SYSTEM\QTTASK.EXEC:\WINDOWS\SYSTEM\MSWHEEL.EXEC:\PROGRAM FILES\NORTON ANTIVIRUS\NAVAPW32.EXEC:\PROGRAM FILES\NORTON ANTIVIRUS\POPROXY.EXEC:\PROGRAM FILES\ZONE LABS\ZONEALARM\ZLCLIENT.EXEC:\WINDOWS\SYSTEM\TWINK64.EXEC:\PROGRAM FILES\COMMON FILES\MICROSOFT SHARED\WORKS SHARED\WKCALREM.EXEC:\WINDOWS\SYSTEM\DDHELP.EXEC:\WINDOWS\SYSTEM\RNAAPP.EXEC:\WINDOWS\SYSTEM\TAPISRV.EXEC:\PROGRAM

It should be in the %systemroot%\system32 dir. But, should I do something about: O8 - Extra context menu item: >>> FREE PORN GALLERIES <<< - javascript:{document.location='http://sexmaxx.com/freegalleries.htm';} jdg01, Nov 1, 2004 #7 Flrman1 Joined: Jul 26, 2002 Messages: Next deselect Search for negligible risk entries. this content Select the following and click Kill process for each one if they are still listed (they shouldn't be but make sure) C:\WINDOWS\SYSTEM\ZGXWITH.EXE C:\WINDOWS\SYSTEM\SAIE.EXE C:\WINDOWS\BUNDLES\VL_EZSTUB.EXE C:\WINDOWS\EZINSTALL.EXE Check and fix the following in

Run the program from that directory from now on.For a tutorial on how to use HijackThis please see the following link:Using HijackThis to Remove Spyware, Browser Hijackers, and DialersI want you Macboatmaster replied Jan 17, 2017 at 7:50 PM Sudenly unable to host Couriant replied Jan 17, 2017 at 7:44 PM Network traffic monitoring Couriant replied Jan 17, 2017 at 7:40 PM How do I get it off and restore my homepage? Follow the instructions on the screen.

If you need this topic reopened, please contact a member of the HJT Team and we will reopen it for you. Instructions on how to do this can be found here:How to see hidden files in WindowsRun Hijackthis again, click scan, and Put a checkmark next to each of these. Tools->Open process manager. vSniff.cab O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - http://security.symantec.com/sscv6/Shar ... /cabsa.cab O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} (HouseCall Control) - http://a840.g.akamai.net/7/840/537/2004 ...

Sorry it's taken me so long to reply. Am I bugged? O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Allow pop-ups from this site - C:\Program Files\Propel Accelerator\pac-addwl.html O8 - Extra context menu Also, my computer does not automatically reboot when I press the X button in Killbox.

Boot in safe mode. Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRAM FILES\YAHOO!\MESSENGER\YHEXBMES0521.DLL O9 - Extra button: Your PC is infected with Spyware - click here to fix your PC - {FB74C951-ACA1-4e33-A94C-A9261EB2CCB7} - https://www.spydeleter.com/order2.php?KBID=1062 (file missing) O9 - Newer Than: Search this thread only Search this forum only Display results as threads Useful Searches Recent Posts More...