First post, can't get a logfile from HJT
#1
Posted 15 April 2006 - 09:19 AM
Register to Remove
#2
Posted 15 April 2006 - 05:46 PM
Please look for the following on your machine:
Does the following file location exist on your machine?
C:\WINNT\Help\Hosts
C:\Windows\Help\Hosts
It may turn out that you have a CoolWebSearch infection.
The answer to the above questions will help determine this.
Please let us know in your next reply.
_____________________
You can repair/restore your Hosts file to its Original content with "Hoster 3.1"
http://www.majorgeek...ster_d4626.html
You can download CWShredder.exe (identifies and removes CoolWebSearch infections)
Get the tool at Radiosplace.com, Here:
http://www.radiosplace.com
Please let us know how you are progressing.
Depending on your answers to the above, we may be sending you over to the HJT Forum for further assistance from the Trained and Trusted Advisors.
Best Regards
If you wish, you may Donate to help keep us online.
#3
Posted 16 April 2006 - 02:41 AM
#4
Posted 16 April 2006 - 12:25 PM
While there are some general tools that can be used here in your situation, it would be far better to be able to specifically identify the culprit (almost certainly a malware) that is causing your problem.
For the time being and until you have this resolved, it will be best to avoid logging onto the internet with IE, and use Firefox for any communication to this board, or for downloads.
Please create a New Folder in Windows Explorer and Rename it so that it looks like this:
C:\HighJackThis\
If you are unable to "Create a New Folder" in your Windows Explorer, please notify us right away, without continuing with the other directions in this post.
Next, I'd like you to download a fresh copy of HighHackThis.exe from:
http://www.radiosplace.com
From the possible downloads listed in the left column of that page select and click on HighJackThis.exe.
In the dialogue box that appears, select Save.
In the file structure screen that appears next, navigate to your newly created folder C:\HighjackThis\, and click on it to open it as the target location for the download. Click Save to complete the download.
Next, when downloaded, click on C:\HighJackThis\HighJackThis.exe
On the HJT screen that appears, press "Do a system scan and save a logfile".
Allow HJT to complete it's scan, which may take a few minutes.
When HJT is finished scanning, it will create a NotePad copy of the HJT Log. Click: File - Save
Next, still in Notepad, click on Edit - Select All - Copy
Now open Firefox and log in here to TomCoyote and navigate to the "HijackThis Logs and Spyware/Malware Removal" Forum, here:
http://forums.tomcoy...hp?showforum=27
Click on New Topic, and post your HJT Log for assistance from a Trusted Advisor.
If you're not able to get that far, please post back here with a description of the problem that stopped you, so we can give you further recommendations.
If you wish, you may Donate to help keep us online.
#5
Posted 16 April 2006 - 12:39 PM
#6
Posted 16 April 2006 - 01:56 PM
This is a "non-harmful" procedure. Host File is a list of known-bad URL sites that your browser consults before navigating to your requested site. If the site you click or type is "known-bad" Hosts File prompts your browser, which will then display "This site cannot be viewed".
After running Hoster 3.1, please try your HJT: "Do a system scan and save a log file"[b]You can repair/restore your Hosts file to its Original content with "Hoster 3.1"
http://www.majorgeek...ster_d4626.html
Doug
If you wish, you may Donate to help keep us online.
#7
Posted 16 April 2006 - 02:20 PM
I was looking for an online scan that can be run from FireFox.
Here we go! Courtesy of Teacup61 from over in the Classroom.
http://www.trendmicr...tro/default.asp
Please run Housecall from the above link and allow it to clean what it finds.
You'll probably be able to save the scan log.
Please post the log in your next reply.
This recommendation to run HouseCall does not interfere with the prior recommendation to run Hoster, which should still be run.
Best Regards
If you wish, you may Donate to help keep us online.
#8
Posted 16 April 2006 - 03:24 PM
http://www.merijn.or...ackthis_sfx.exe
Double click HijackThis_sfx.exe and select Unzip. When done click "OK".
Close the WinZip self Extractor window. You can now delete HijackThis_sfx.exe.
Navigate to C:\Program Files\HijackThis and double click HijackThis.exe. Click "Do a system scan and save a logfile" then post the new log in the HJT forums that dough linked for you.
MS MVP-Security 2006~2016
#9
Posted 17 April 2006 - 01:43 AM
#10
Posted 17 April 2006 - 08:50 AM
Close all windows and programs, then:
Clean out all the temporary files and cookies on your system. Go to Start > Run and enter: cleanmgr. Let it scan your system for files to remove. Check these three boxes and then press ok to remove: Temporary Files, Temporary Internet Files, Recycle Bin.
Also, go to Start > Find/search > Files or folders > in the named box, type: *.tmp and choose Edit > select all -> File > delete.
Note: If you cannot delete them all at once because you have too many, then click and hold ctrl and highlight a batch of them at a time. Once highlighted, R-click over the highlight and select delete.
Then use "Start > Run" and type in "%temp%" (without the quotes). Delete the entire contents of that "temp" folder (use "Edit > Select All", press "Delete", click "Yes").
Then, Empty your Temporary Internet Cache completely. Close all instances of Outlook and and Internet Explorer, then use "Control Panel > Internet Options > General tab" and click the "Delete File" button. When prompted place a check in: "Delete all offline content", then click OK.
A good free program to use is CleanUp!
Use the standard option
How to use CleanUp
by Steven R. Gould
And delete the temp cache files in your Java....
Clearing the Java Runtime Environment (JRE) Cache
Verify which Java version your using.....
Java Runtime Environment
Lets see if we can find out whats happened to your Nortons....
There is a quick scan for errors found here....which will supply help links....
Help Me Solve It
Edited by Juliet, 17 April 2006 - 09:09 AM.
MS - MVP Consumer Security 2009 - 2016, WI-MVP 2016-17
Antivirus Scanners Online Scanners Firewalls Slow Computer??
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users