Home > Solved Hijack > Solved: Hijack This Log Help For My Son's PC

Solved: Hijack This Log Help For My Son's PC

Register now to gain access to all of our features, it's FREE and only takes one minute. i have a virus and i tried everything to get rid of it. :sad: i x3 laguna Inactive Malware Help Topics 45 12-29-2005 02:41 AM browser hijack tb.exe xe.exe I'm a or Donate to help keep the site up! Register now! http://visu3d.com/solved-hijack/solved-hijack-log-please-help-with.html

In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTMoveIt\MovedFiles folder, and open Here are the new instructions. By the way, here is the results of traceroute and ipconfig: Microsoft Windows [Version 6.0.6000] Copyright (c) 2006 Microsoft Corporation. Click below the line in folders.txt, then right click and paste the list of folders. https://forums.techguy.org/threads/solved-hijack-this-log-help-for-my-sons-pc.298384/

mIRC is a on-line chat program. C:\WINDOWS\system32\MPK\Mpk.dll (Refog.Keylogger) -> Quarantined and deleted successfully. No, it's not a custom build. Thanks Geri Windows XP Home SP3 eTrust AntiVirus, Comodo Firewall.

Let it run for a while in Live mode (you should be able to use the internet etc.). One other item to mention is that I attempted to complete a connection in "Safe Mode with Networking" and again, I was able to reach any website in the world except C:\WINDOWS\system32\MPK\German.lng (Refog.Keylogger) -> Quarantined and deleted successfully. C:\WINDOWS\system32\MPK\Help\English\keyboard.htm (Refog.Keylogger) -> Quarantined and deleted successfully.

Help, please: How to get this new... C:\WINDOWS\system32\MPK\Help\Spanish\log_size.htm (Refog.Keylogger) -> Quarantined and deleted successfully. If you're not already familiar with forums, watch our Welcome Guide to get started. http://newwikipost.org/topic/sPsjQOXZPQeokkd7u2RN0lKaOE99SM9y/SOLVED-Please-help-with-my-hijack-this-log.html Do you know what you renamed it to?

He does have a very poor internet download habit, so I suspect it might be malware. C:\WINDOWS\system32\MPK\Help\English\file.htm (Refog.Keylogger) -> Quarantined and deleted successfully. I deleted that and it had no effect on the problem. Anthony Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #2 Darktune Darktune Very Purple Members 1,139 posts OFFLINE

C:\Documents and Settings\HP_Administrator\Application Data\Zinaps2008\settings.ini (Rogue.Zinaps) -> Quarantined and deleted successfully. C:\WINDOWS\system32\MPK\MPK.exe (Refog.Keylogger) -> Quarantined and deleted successfully. Files Infected: C:\Program Files\Mozilla Firefox\plugins\NPMyWebS.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. Not a big deal because I prefer firefox anyways, however I am forced to use IE for a few places I go (such as my sons homeschooling log in, and for

and by connect I mean just put it in your browser. 06-25-2007, 08:22 AM #13 NiTruS66 Registered Member Join Date: Jun 2007 Posts: 7 OS: VISTA that was http://visu3d.com/solved-hijack/solved-hijack-please.html I'm actually working my way through that thread... C:\WINDOWS\system32\MPK\Help\Spanish (Refog.Keylogger) -> Quarantined and deleted successfully. FileHippo Update Checker is an extremely helpful program that will tell you which of your programs need to be updated.

  1. Google redirect virus, (HiJackThis Log included) [Solved] Started by Dadnlad , Nov 05 2009 09:01 AM This topic is locked #1 Dadnlad Posted 05 November 2009 - 09:01 AM Dadnlad New
  2. The time now is 05:52 AM. -- Mobile_Default -- TSF - v2.0 -- TSF - v1.0 Contact Us - Tech Support Forum - Site Map - Community Rules - Terms of
  3. C:\WINDOWS\system32\MPK\Help\English\screenshot.htm (Refog.Keylogger) -> Quarantined and deleted successfully.
  4. Highlight and copy the bolded list of folders below.
  5. C:\Program Files\QuickTime\bak C:\Program Files\QuickTime\bak If you get a no bak files under this...
  6. If problems persist while Linux running, that would point to a hardware cause.
  7. Mit Hilfe dieser automatischen Auswertung soll der Benutzer bei der Auswertung unterstützt werden.
  8. I cant get rid of it.
  9. This site is completely free -- paid for by advertisers and donations.

Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_12_0.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: jimmyhelp.CBrowserHelper - {335EA921-10A3-44C7-9710-04CFEFBE534D} - C:\WINDOWS\dlhme.dll O2 - BHO: (no name) Forgive me for this being so long - but I wanted to get out all that I have attempted so Page 1 of 2 1 2 > Thread Tools Search Link: http://notepad.cc/share/pxzVIdrTdnPS.: I'm trying to reinstall steam, I'll check if it solves the problem #3 Gr33nLeaves View Profile View Posts 28 Aug, 2016 @ 3:21am Fury! this content When I reboot the system, the PC acts as if nothing happened.

Kopieren Sie dazu einfach den Inhalt Ihres Logfiles in die untenstehende Textbox. They did ask me to do a traceroute, and it does show the connection to zinio, which I expected, since the website is found. Word Association 11 » Site Navigation » Forum> User CP> FAQ> Support.Me> Steam Error 118> 10.0.0.2> Trusteer Endpoint Protection All times are GMT -7.

Short URL to this thread: https://techguy.org/298384 Log in with Facebook Log in with Twitter Log in with Google Your name or email address: Do you already have an account?

Can you recomend a good virus scanner (not just adware). O3 - Toolbar: fdkowvbp - {D0B319CC-BD7D-4AD1-AFD0-0AEA47E33831} - C:\WINDOWS\fdkowvbp.dll (file missing) O15 - Trusted Zone: *.doginhispen.com O15 - Trusted Zone: *.whataboutadog.com O15 - Trusted Zone: *.whataboutarabit.com O24 - Desktop Component 0: Privacy Interestingly enough, the IPs were very similar (first two sets the same), as opposed to the one my son's computer got, which was very different (all 4 sets were different). C:\Documents and Settings\All Users\Application Data\MPK\3\S0000 (Refog.Keylogger) -> Quarantined and deleted successfully.

Did it work? 06-25-2007, 09:29 AM #17 NiTruS66 Registered Member Join Date: Jun 2007 Posts: 7 OS: VISTA nothing happened..just sat there the same as typing www.zinio.com.. I've done the basic common sense things to try and get rid of this and have also followed MicroBell's five steps yet this infection is still on my PC. It's like it never happened according to Windows. http://visu3d.com/solved-hijack/solved-hijack-this-help-please.html HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6fd31ed6-7c94-4bbc-8e95-f927f4d3a949} (Adware.180Solutions) -> Quarantined and deleted successfully.

I have a boot up floppy, and this does not work either. This action will also reset the System Restore points, removing the infected files there as well. Several functions may not work. Can confirm.

C:\WINDOWS\system32\MPK\Help\Spanish\delivery.htm (Refog.Keylogger) -> Quarantined and deleted successfully. I would be happy if somebody has an idea. If we have helped you Click here and Help us Windows ErrorMPEBKACMost Problems Exist Between Keyboard And Chair Geri, #4 2008/07/27 Lifetime Subscription BillB Well-Known Member Thread Starter Joined: 2003/03/18 Messages: Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra