Home > Solved Hijackthis > Solved: Hijackthis Log. Please Evaluate. Thanks!

Solved: Hijackthis Log. Please Evaluate. Thanks!

Join over 733,556 other people just like you! AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! My computer is slow---My Blog---Follow me on Twitter.My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!Asking for help Yes, my password is: Forgot your password? check over here

Thanking you in advance. My computer is slow---My Blog---Follow me on Twitter.My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!Asking for help It could be because of the loading inside of the script or something other. Not sure why scanners are still not detecting this one, because samples were sent more than 2 weeks ago.

Thank you very much for your insight and advice; please pat yourself on the back for me, as I'm much more relaxed now that this is solved. But I will definitely check out the sites mentioned and save them in my ''Arsenals'' file, along with the good folks like you here at CNET.Take care & Thanks again, ever Your hosts file may have a lot of 127.0.0* blocking you from going to the sites you mentioned. So you are correct, it is not a true rootkit in the sense that it is not hiding it's processess but it is a nasty little hooker.

Edited by miekiemoes, 24 October 2008 - 02:06 PM. It seems to have rootkit like behaviour. There is afoot some pretty serious problem solving in the field of rootkit technology,one such website is located at http://www..sysinternals.com/Utilities/RootkitRevealer.html-The utility is a freeware offer and can provide a measure of by kingdomofjones / October 25, 2005 10:30 PM PDT In reply to: PLEASE assist - virus/registry key modification The information indicates that you have a folder with the Hi-Jack this information.Did

This is not the common google redirect that involves tds*.dlls. Nov 29, 2009 #5 Almost TS Rookie Topic Starter Thanks for the advice everyone, Kimsland, is something wrong with AVG? Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy

http://www.hijackthis.de/ Also discovered on both computers: After I ran combofix was NVSVC32.EXE.

I'm fairly computer illiterate and will not be able to offer much to this forum, so please keep me posted if you figure anything out. I may have to use ollydbug which I am not very good at. Notice the name: rootkit.win32.agent.eoj. If you have any problems, just let me know and I will give you the .reg file to restore what you have done.

Panda antirootkit - nothing F-backlight - nothing Sophos antirootkit - nothing. Good luck and thanks again for the guidance. It is a legitamate entry. I just sent them the samples with detailed descriptions.

try removing most of non-critical processes by using msconfig & uncheck the items on 'startup' options. http://visu3d.com/solved-hijackthis/solved-hijackthis-are-any-bad.html When I open IE, netmon shows that this ip is connected!!! If you're new to Tech Support Guy, we highly recommend that you visit our Guide for New Members. [SOLVED] My Hijackthis log PLEASE HELP!!!! This is my first time using the site.

Once again thank you for your help. So, make sure first that your Antivirus is up to date.By the way, Combofix removes this infection as well.Edit.. I deleted the recommended items and ended a bunch of startup tasks but things still keep unresponding. http://visu3d.com/solved-hijackthis/solved-hijackthis-please-help-me.html Lisandro: --- Quote from: Tech on March 30, 2008, 05:15:10 PM ---I'll disable it (with autoruns) to test.--- End quote ------ Quote from: oldman on March 30, 2008, 05:49:08 PM ---I've

Stay logged in Sign up now! I need your help in finding this one. Once reported, our moderators will be notified and the post will be reviewed.

Disruptive posting: Flaming or offending other usersIllegal activities: Promote cracked software, or other illegal contentOffensive: Sexually explicit or offensive languageSpam: Advertisements or commercial links Submit report Cancel report Track this discussion

This is will fix IE but will not fix Firefox. and played with it It's indeed a sneaky one because, since the filename is actually legitimate, many people think that there's nothing wrong with that sysaudio.sys file. hope you get this problem solved as soon as possible ... I need to double check on the 78.157....

click "proceed" to save your settings. oldman: Yes, but I've never had anyone say that it was attempting to connect to the internet. I'd appreciate any thoughts, direction, or advice (other than reload the OS and apps.) thanks. http://visu3d.com/solved-hijackthis/solved-hijackthis-help.html This one is generated by the fake sysaudio.sys file.It appears that you're quite knowledgeable, so if it interests you, just use a file analyzing tool to view the contents of the

print job waiting to print. when I get home from work, but I do recognize monstermarketplace as one of the sites that I have been routed to. Problem is sorted now, I wiped my hdd and reinstalled my O/S. colinraffert, Aug 30, 2003 #1 Sponsor colinraffert Thread Starter Joined: Aug 30, 2003 Messages: 4 Logfile of HijackThis v1.96.2 Scan saved at 12:24:01 PM, on 30/08/2003 Platform: Windows XP SP1

No other symptoms that I can tell of: nothing out of ordinary running in list of processes, no extra bookmarks added to my browser, no extra pop up windows.Anyway, I am You could download a free program called hoster to look into this. But in these forums there are plenty of people who have a lot more technical expertise than myself for all other matters, like hardware and system problems/questions.Also, in our Virus & Please let me know if it works for you.

My computer is slow---My Blog---Follow me on Twitter.My help is ALWAYS FREE, but if you want to donate to help me continue my fight against malware -- click here!Asking for help SHOW ME NOW CNET © CBS Interactive Inc.  /  All Rights Reserved.