Home > Could Someone > Could Someone Take A Look At My Highjack This Scan?

Could Someone Take A Look At My Highjack This Scan?

Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #2 Tokek Tokek Bleepin' Gecko Members 1,213 posts OFFLINE Gender:Male Location:Jakarta, Indonesia Local time:07:31 AM Posted Local Service Temporary Internet Files folder emptied. It will remove all the programmes we have used plus itself. Open My Computer. http://planetweb20.com/could-someone/could-someone-look-at-my-highjackthis-scan.html

Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files\HP Games\My HP Game Console\GameConsoleService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Click Yes and reboot. Who's online This forum has 37,994 registered members. page

Jump to content Sign In Create Account Search Advanced Search section: This topic Forums Members Help Files Calendar View New Content Forum Rules BleepingComputer.com Forums Members Tutorials Startup List R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\ v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2009-10-07 133104] R3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\Lavasoft\Ad-Aware\KernExplorer.sys [2010-11-05 15264] R3 PCD5SRVC{BD6912E3-AC9D80E8-05040000};PCD5SRVC{BD6912E3-AC9D80E8-05040000} - PCDR Kernel Mode poppie1234, Mar 8, 2011 #9 johnb35 Administrator Staff Member Messages: 38,334 Go back in and select disable permanently until after combofix has completed. Reports: · Posted 6 years ago Top ispalten Posts: 6259 This post has been reported.

any help will be greatly appreciated. O4 - Global Startup: raid_tool.exe.lnk = C:\Program Files\VIA\RAID\raid_tool.exe O4 - Global Startup: TabUserW.exe.lnk = C:\WINDOWS\system32\WTablet\TabUserW.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: Connection to failed. Please follow through with this.

Norton's ISS does. Advertisements do not imply our endorsement of that product or service. Here are some routine maintenance practices that you should do on a regular basis to keep your machine running efficienly: Disk Cleanup: http://www.theeldergeek.com/disk_cleanup_utility.htm Defrag your HD: http://artsweb.bham.ac.uk/artsit/Info/Guides/GoodPractice/defrag-win2kxp.htm Run chkdsk: To use http://www.geekstogo.com/forum/topic/223433-can-someone-take-a-look-at-my-hijackthis-log-solved/ Can someone look @ my HijackThis scan?

mark. It will create a folder named OTScanIt on your desktop.Close ALL OTHER PROGRAMS.Open the OTScanit folder and double-click on OTScanit.exe to start the program.Check the box that says Scan All UsersCheck Copy/Paste the information in the quotebox below into the pane where it says "Paste fix here" and then click the Run Fix button.[Unregister Dlls] [Registry - Safe List] < Run [HKEY_CURRENT_USER\] Click here to join today!

HKLM-Run-SmartMenu - %ProgramFiles%\Hewlett-Packard\HP MediaSmart\SmartMenu.exe AddRemove-sp41099 - c:\hp\Softpaq\sp41099\sp41099.exe AddRemove-sp44626 - c:\hp\Softpaq\sp44626\sp44626.exe . . . ************************************************** ************************ . In the last 3 days there were 1 new threads and 1 reply posts. Download Chrome SMF 2.0.13 | SMF © 2015, Simple Machines XHTML RSS WAP2 Page created in 0.073 seconds with 19 queries. Several functions may not work.

Register now! I just turned off my anti-virus like you said until the computer is restarted. Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exeO23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\Firewall\cmdagent.exeO23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exeO23 Just ignore that message and put a check in the box by "Don't show me this message or launch the System Configuration Utility when Windows starts" and click "OK".

I couldnt find any unusual processes that looked like they were using up too much memory/CPU either. Any help is greatly appreciated. Honorary Members 3,860 posts Interests: would love to see some honesty around this site. http://planetweb20.com/could-someone/could-someone-check-my-hijack-this-scan.html Wondering if anyone can see in my hijackthis scan anything that might be causing this to happen?

poppie1234 New Member Messages: 24 I posted earlier that last night AVAST found and i deleted a rootkit. Applying them to your system can cause severe damage and result in utter system failure. Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exeO23 - Service: avast!

Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help.

If you're not already familiar with forums, watch our Welcome Guide to get started. exe" "c:\Program Files\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0" O4 - HKLM\..\Run: [UpdatePDIRShortCut] "c:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStart Menu.exe" "c:\Program Files\CyberLink\PowerDirector" UpdateWithCreateOnce "SOFTWARE\CyberLink\PowerDirector\7.0" O4 - HKLM\..\Run: [UpdatePSTShortCut] "c:\Program Files\CyberLink\CyberLink DVD Suite Deluxe\MUITransfer\MUIStartMenu.exe" "c:\Program Files\CyberLink\CyberLink DVD Suite Deluxe" UpdateWithCreateOnce I tried to run Comboxfix but i got a warning pop up saying it has detected that the following realtime scanner to be active Anti virus avast antispyware avast I disabled O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\BRIGETTE\AppData\Local\Google\Update \Goo gleUpdate.exe" /c johnb35, Mar 8,

Now i am even more terrified. If you need help start your own topic and someone will be happy to assist you. Right-click the hard drive you want to check, and click Properties. Please run and post the scans in this order.

Irv S. C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat scheduled to be deleted on reboot. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, http://www.bleepingcomputer.com/download/anti-virus/combofix johnb35, Mar 8, 2011 #10 poppie1234 New Member Messages: 24 johnb35 said: ↑ Go back in and select disable permanently until after combofix has completed.

Beyond that point, please start a new topic. Newer Than: Search this thread only Search this forum only Display results as threads Useful Searches Recent Posts More... i'm scared to disable it permanently. But do not enable TeaTimer at this time.

Select the Tools tab and click Check Now. I think it would help if you get programs like PROCESS EXPLORER, WHAT'S MY COMPUTER DOING?, and WHAT'S RUNNING (just Google names to find them). Contents of the 'Scheduled Tasks' folder . 2011-03-08 c:\windows\Tasks\Ad-Aware Update (Weekly).job - c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2010-09-23 08:31] . 2011-03-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-10-07 15:30] . 2011-03-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-10-07 Therefore, you will have to find the option in that programs preferences that says something like "Load with Windows" or "Run when Windows Starts" and disable that option.

Honorary Members 3,860 posts Interests: would love to see some honesty around this site. User's Temporary Internet Files folder emptied.