Home > Am I > Am I Still Infected? Securepccleaner - Hijackthis Log

Am I Still Infected? Securepccleaner - Hijackthis Log

BleepingComputer is being sued by Enigma Software because of a negative post of SpyHunter. What the Tech → Spyware / Malware / Virus Removal → Virus, Spyware & Malware Removal Javascript Disabled Detected You currently have javascript disabled. Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn2\yt.dllO2 - BHO: Yahoo! Then attach the new C:\MGlogs.zip file that will be created by running this and also attach the log from Avenger. http://avissoft.net/am-i/am-i-infected-here-is-my-hijackthis.php

Help us fight Enigma Software's lawsuit! (Click on the above link to learn more) Become a BleepingComputer fan: FacebookFollow us on Twitter! This to avoid confusion. My machine will not go to the described menu. Now, run HijackThis and place a checkmark beside all the 018 entries like this: O18 - Protocol: bw30s - {C11F7A20-6F31-484B-8F8D-076C775A1A31} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll Now please close all browsers and windows

After reboot, double-click the SUPERAntispyware icon on your desktop.3. After doing the above, you should work thru the below link: How to Protect yourself from malware! Now run the C:\MGtools\GetLogs.bat file by double clicking on it. This will start ComboFix again.

This is not causing your screen to be red but it is directing your searches through the Ukraine. O4 - Global Startup: Picture Package VCD Maker.lnk = ? Please highlight everything in the notepad, then right-click and choose copy.7. etc.

We have a huge backlog of HijackThis Logs to handle and it has been taking us greater time than normal to get caught up. Register now! The reason for this is that if both products have their automatic (Real-Time) protection switched on, your system may lock up due to both software products attempting to access the same https://forums.pcpitstop.com/index.php?/topic/145937-securepccleaner/ Then reboot and Enable System Restore to create a new clean Restore Point.

Click on the "Image Name" button to search for "SecurePCCleaner" process by name. Several functions may not work. Logfile of HijackThis v1.99.1 Scan saved at 10:00:33 PM, on 8/11/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe Login now.

The system returned: (22) Invalid argument The remote host or network may be down. http://www.hijackthis.de/ Join the ClassRoom and learn how. contact... - {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - mscoree.dll (file missing) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmat...enWebRadio.html (file missing) O9 I ran Highjackthis and included the output.

Or hold the windows key and press E Files: C:\WINDOWS\system32\drivers\hprocess.sysMore about the author Register now to gain access to all of our features, it's FREE and only takes one minute. We don't require them as they are already embedded into MGtools and we have it installed and running properly. You may be prompted to replace the infected file (if found).

Back to top #4 miekiemoes miekiemoes Malware Killer Dog Volunteer Security Advisor 4092 posts Posted 05 September 2007 - 09:41 AM First of all, I notice from the log that there Please open Notepad (Start > Run > in the Open field type: notepad) Click: OK Copy/ paste the blue text below to Notepad: File:: C:\WINDOWS\privacy_danger\index.htm Registry:: [-HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0] Save as CFScript.txt They are even present on the MSN startpage, Yahoo startpage...You may also want to read next:http://www.spywarein...ticles/cookies/http://www.mvps.org/...002/cookies.htmIf you want to manage your cookies you can use next programs:For Internet explorer: CookieWallFor Firefox: http://avissoft.net/am-i/am-i-infected-hijackthis-log-included.php Several functions may not work.

Username or email: I've forgotten my password Forum Password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Community Forum Change the Save as type to: All Files Save it to the Desktop. contact... - {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - mscoree.dll (file missing) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmat...enWebRadio.html (file missing) O9

I am not familiar with Hackthis or some of the other tools I read about when dealing with this adware, malware ..

Username Forum Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy Login _ Now click the 'Done' button. SrchSTS.exe by S!Ri Search SharedTaskScheduler's .dll End Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:34:43 AM, on 8/22/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 Successfully flushed the DNS Resolver Cache.

Go to Start > Control Panel > Add/Remove Programs In the list of Currently Installed Programs, look for all previous versions of Java: J2SE Runtime Environment number x, etc. Hosts file was reset, If you use a custom hosts file please replace it End report Logfile of HijackThis v1.99.1 Scan saved at 12:58:13 AM, on 8/12/2007 Platform: Windows BLEEPINGCOMPUTER NEEDS YOUR HELP! news contact - {6F431AC3-364A-478b-BBDB-89C7CE1B18F6} - mscoree.dll (file missing) O9 - Extra 'Tools' menuitem: Attach Web page to ACT!

Now click the 'Done' button. thanks tho i will let you know after i finished scanning Feb 28, 2008 #3 Blind Dragon TS Evangelist Posts: 3,908 Just so you know it's not that rare for You can also delete the C:\MGlogs.zip If you are running Windows XP or Windows ME, do the below: Refer to the cleaning steps in the READ ME for your Window version SmitFraudFix v2.274 Scan done at 13:05:45.57, Tue 12/25/2007 Run from C:\Documents and Settings\gordon wellman\Desktop\SmitfraudFix OS: Microsoft Windows XP [Version 5.1.2600] - Windows_NT The filesystem type is NTFS Fix run in normal

If it does not automatically open, then the log can be found at %systemdrive%\avenger.txt (typically C:\avenger.txt). I will paste the report on this panel. Back to top #6 miekiemoes miekiemoes Malware Killer Dog Volunteer Security Advisor 4092 posts Posted 14 September 2007 - 03:32 PM You're welcome AntispywareScanners---Antivirus Scanners---Firewalls---Online Scanners---Prevention---Help! Your cache administrator is webmaster.

Please download FixWareout from one of these sites: http://download.blee.../Fixwareout.exe Save it to your desktop and run it. Thanks It has now got ZEDO problems, know how to fix that? 0 #8 joplin Posted 02 January 2008 - 01:52 PM joplin New Member Topic Starter Member 5 posts This Start a new thread instead and someone will help you asap.Bumping your thread won't help to receive help in a faster way, this since we always look at the posts with Please re-enable javascript to access full functionality.

O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - I'm certainly doing soomething wrong, but don't know how to continue. Adaware keeps picking up the following tracking cookies among others: [email protected]/ [email protected]/ [email protected]/ [email protected]/ [email protected]/ [email protected]/ I quarantine them but they're always back within hours. I just wanted to be sure that I'd got rid of all the dangerous stuff that was there before.