Home > Solved Hjt > Solved: HJT Log Please Review

Solved: HJT Log Please Review

O4 - Global Startup: Picture Package VCD Maker.lnk = ? Report Id: 122510-20919-01. 12/25/2010 8:32:36 AM, Error: Service Control Manager [7032] - The Service Control Manager tried to take a corrective action (Restart the service) after the unexpected termination of the How is the computer working now? Ad BlockerESET Online Scanner v3`````````Anti-malware/Other Utilities Check:`````````MVPS Hosts FileSpybot - Search & DestroyMalwarebytes Anti-Malware version 2.0.3.1025CCleanerJava 8 Update 31Java version 32-bit out of Date! check over here

Microsoft Office Sessions: ========================= Error: (02/28/2015 10:28:04 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: explorer.exe6.0.2900.5512hungapp0.0.0.000000000 Error: (02/25/2015 00:21:31 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: explorer.exe6.0.2900.5512unknown0.0.0.001170fef Error: Please stay with this topic until I let you know that your system appears to be "All Clear"Important: All tools MUST be run from the Desktop.=========================With that being said, you never Logfile of HijackThis v1.99.1 Scan saved at 6:40:29 PM, on 3/20/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe please review Started by brownhornet , Nov 25 2014 03:12 PM Page 1 of 2 1 2 Next This topic is locked 24 replies to this topic #1 brownhornet brownhornet SO Get More Info

Thanks!!!!! Thread Status: Not open for further replies. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest. Please Review My Log...

  1. Emergency Update.job.bak => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe Task: C:\WINDOWS\Tasks\CandyUpdater.job.bak => C:\Documents and Settings\Lew\Local Settings\Application Data\ArcadeCandy\candyUpdater.exe Task: C:\WINDOWS\Tasks\Check for updates (Spybot - Search & Destroy).job.bak => C:\Program Files\Spybot - Search & Destroy 2\SDUpdate.exe
  2. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.
  3. Close Adaware Be sure to repeat these actions at least once a week.
  4. Save ComboFix.exe to your Desktop * IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon.
  5. Just make sure you get the detection updates for SpybotSD and AdawareSE first.
  6. Attach that zipped file in your next reply as well. ========================= Download Farbar Recovery Scan Tool and save to your desktop.Note: You need to run the version compatible with your system.

The bugcheck was: 0x0000007e (0xc0000005, 0x82cbf2f1, 0x8ab13a60, 0x8ab13640). Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest. Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-21] (AVAST Software) S4 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] () R2 SDScannerService; C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe [1103392 2012-11-13] (Safer-Networking Ltd.) Error: (01/25/2015 09:19:44 PM) (Source: Application Error) (EventID: 1000) (User: ) Description: Faulting application explorer.exe, version 6.0.2900.5512, faulting module unknown, version 0.0.0.0, fault address 0x03840fef.

It seems to be working a little better excpet for two issues. 1. Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - f:\progra~1\yahoo!\companion\installs\cpn\yt.dll TB: &NetWorx Desk Band: {feea54b4-d80f-41c7-87b9-dc08e6d3255f} - f:\progra~1\networx\deskband.dll TB: PC Tools Browser Guard: {472734ea-242a-422b-adf8-83d1e48cc825} - f:\program files\spyware doctor\bdt\PCTBrowserDefender.dll uRun: [Google Update] "f:\users\martin hanson\appdata\local\google\update\GoogleUpdate.exe" /c uRun: [WebcamMaxAutoRun] "f:\program files\webcammax\WebcamMax.exe" I reran MalwareBytes Quick Scan and it keeps finiding something net framwork or similar; can't seem to drop that one. http://www.bleepingcomputer.com/forums/t/396883/hijackthis-log-please-help-diagnose/ Yes, you can attempt to do everything in Safe Mode.

Error: (02/18/2015 10:22:01 PM) (Source: Application Hang) (EventID: 1002) (User: ) Description: Hanging application AcroRd32.exe, version 11.0.8.4, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Web Scanner - AVAST Software - F:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: Bonjour Service - Apple Inc. - F:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Browser Defender Update Service - Unknown owner - just as applications where closing down, it looked like there was a new Chrome window that had opened behind the window I was working it... None default entries will be removed.) ==================== Other Areas ============================ (Currently there is no automatic fix for this section.) HKU\S-1-5-21-2052111302-861567501-725345543-1004\Control Panel\Desktop\\Wallpaper -> DNS Servers: 192.168.1.254 ==================== MSCONFIG/TASK MANAGER disabled items ==

From within Spyware Doctor, click the "OnGuard" button on the left side. 2. The bugcheck was: 0x0000008e (0xc0000005, 0x82e7c050, 0xa934d774, 0x00000000). We invite you to ask questions, share experiences, and learn. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).Copy and paste the contents of that file in your next reply. =================================== Download ComboFix from either of

With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. check my blog The following corrective action will be taken in 120000 milliseconds: Restart the service. 12/25/2010 8:57:59 AM, Error: Service Control Manager [7031] - The Multimedia Class Scheduler service terminated unexpectedly. Component 2: C:\WINDOWS\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_a9efdb8b01377ea7.manifest. Please follow these instructions to disable it: To deactivate Spyware Doctor's OnGuard Tools 1.

Report Id: 121810-39577-01. ==== End Of File =========================== Thank you again for your continued assistance. If you do not see the file extension, please refer to How to change the file extension.Click the Start Scan button.Do not use the computer during the scanIf the scan completes Please do not PM me for HJT help, we all benefit from posting on the open board.Want to help others? http://visu3d.com/solved-hjt/solved-hjt-log-for-review.html Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

Name: NVIDIA nForce Networking Controller Description: NVIDIA nForce Networking Controller Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318} Manufacturer: NVIDIA Service: NVENETFD Problem: : This device is disabled. (Code 22) Resolution: In Device Manager, click "Action", This starts the Enable Device wizard. The following corrective action will be taken in 60000 milliseconds: Restart the service. 12/25/2010 8:57:59 AM, Error: Service Control Manager [7031] - The Windows Management Instrumentation service terminated unexpectedly.

Component 1: C:\WINDOWS\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.9600.17031_none_6242a4b3ecbb55a1.manifest.

However, because some malwares hide themselves in these folders and set certain attributes, we need to keep that setting unchecked until all the problems are fixed. Do I need to do anything with AVG & 2-Wire prior to running the processes above? I have a DSL connection using 2-Wire, which I believe has a firewall also. Also, HJT is not used much anymore for evaluation of malware issues.

Virus cleanup? Thank you. O8 - Extra context menu item: &AIM Search - res://C:\Program Files\AIM Toolbar\AIMBar.dll/aimsearch.htm O9 - Extra button: Yahoo! have a peek at these guys As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed.

C:\Program Files\Yahoo!\browser\ybrowser.exe Have you tried to open it yet? I would be more than happy to take a look at your log and help you with solving any malware problems you might have. It has done this 1 time(s). Conflicting components are:.

Please reply to this thread. The following corrective action will be taken in 60000 milliseconds: Restart the service. 12/25/2010 8:57:59 AM, Error: Service Control Manager [7031] - The Remote Access Connection Manager service terminated unexpectedly. i ran a HJT scan just to be sure,one thing happened before so i attached a pic..here is log file:Logfile of Trend Micro HijackThis v2.0.4Scan saved at 11:56:03 AM, on 11/25/2014Platform: Are you looking for the solution to your computer problem?