Jump to content

Build Theme!
  •  
  • Infected?

WE'RE SURE THAT YOU'LL LOVE US!

Hey there! :wub: Looks like you're enjoying the discussion, but you're not signed up for an account. When you create an account, we remember exactly what you've read, so you always come right back where you left off. You also get notifications, here and via email, whenever new posts are made. You can like posts to share the love. :D Join 93099 other members! Anybody can ask, anybody can answer. Consistently helpful members may be invited to become staff. Here's how it works. Virus cleanup? Start here -> Malware Removal Forum.

Try What the Tech -- It's free!


Photo

urgent help please


  • Please log in to reply
22 replies to this topic

#16 Micah_6:8

Micah_6:8

    Evilware Emancipator

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,060 posts
  • Interests:Web (Perl, PHP, JavaScript, HTML) programming, CNC programming, Squashing spyware!

Posted 19 June 2006 - 04:10 PM

Well... It's still there.

For now, let's just leave it alone.

Looks like you've ditched Panda in favor of McAfee.

Let the system run for a while.

If it's still shutting down, or rebooting randomly by tomorrow, please do this:

Please go here:

Silent Runners.org

Download/run the silentrunners.vbs script.

If your antivirus complains about it, tell it to allow this script - It's safe.

When you run it, click "Yes" to the "Skip supplementary searches".

It will take a few minutes to run.

When it fininshes, it will tell you what text file it put the results in (it will be in the same folder the VBS file was downloaded into).

Open it up with Notepad, and paste it into your next post, along with a new HijackThis! log.

:)
Micah 6:8 He hath shewed thee, O man, what is good; and what doth the LORD require of thee, but to do justly, and to love mercy, and to walk humbly with thy God?

The help you receive here is free.
If you wish to show your appreciation, then you may donate to help keep us online.

Want to help others? Join the ClassRoom and learn how.

Download Hijack This! My Website: UnSpyMe!

    Advertisements

Register to Remove


#17 ukcliff

ukcliff

    New Member

  • Authentic Member
  • Pip
  • 15 posts

Posted 19 June 2006 - 04:22 PM

HI MICAH...OK THANKYOU I WILL TRY THAT 2MORROW THANK YOU FOR ALL YOUR HELP YOU HAVE GIVEN.........YES I GOT RID OF PANDA COS IT SEEMED ALOT SLOWER LOADIMG PAGES ETC.......SO I JUST THOUGHT I WUD TRY MCAFEE IM NOT SURE WHICH ABTI VIRUS IS THE BEST...........

#18 ukcliff

ukcliff

    New Member

  • Authentic Member
  • Pip
  • 15 posts

Posted 20 June 2006 - 02:25 AM

HI MICAH IVE RAN SILENT RUNNERS AND HJT LIKE U SAID AND ERES THE REPORTS......................................................................................................................................................................"Silent Runners.vbs", revision 46, http://www.silentrunners.org/
Operating System: Windows XP
Output limited to non-default values, except where indicated by "{++}"


Startup items buried in registry:
---------------------------------

HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}
"MSMSGS" = ""C:\Program Files\Messenger\msmsgs.exe" /background" [MS]
"Windows Registry Repair Pro" = "C:\Program Files\3B Software\Windows Registry Repair Pro\RegistryRepairPro.exe 4" ["3B Software, Inc."]
"Registry Repair Wizard Scheduler" = ""C:\Program Files\SmartPCTools\Registry Repair Wizard\RCScheduler.exe" /startup" ["SmartPCTools"]
"MsnMsgr" = ""C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background" [MS]
"Yahoo! Pager" = "C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet" ["Yahoo! Inc."]

HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\ {++}
"C-Media Mixer" = "Mixer.exe /startup" ["C-Media Electronic Inc. (www.cmedia.com.tw)"]
"TrojanScanner" = "C:\Program Files\Trojan Remover\Trjscan.exe" ["Simply Super Software"]
"SunJavaUpdateSched" = "C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe" ["Sun Microsystems, Inc."]
"MCAgentExe" = "c:\PROGRA~1\mcafee.com\agent\mcagent.exe" ["McAfee, Inc"]
"MCUpdateExe" = "c:\PROGRA~1\mcafee.com\agent\mcupdate.exe" ["McAfee, Inc"]
"_AntiSpyware" = "c:\progra~1\mcafee\MCAFEE~1\masalert.exe" ["McAfee, Inc."]
"KernelFaultCheck" = "C:\WINDOWS\system32\dumprep 0 -k" [MS]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
{02478D38-C3F9-4EFB-9B51-7695ECA05670}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Yahoo! Toolbar Helper"
\InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll" ["Yahoo! Inc."]
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}\(Default) = (no title provided)
-> {HKLM...CLSID} = "SSVHelper Class"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll" ["Sun Microsystems, Inc."]
{AA58ED58-01DD-4d91-8333-CF10577473F7}\(Default) = (no title provided)
-> {HKLM...CLSID} = "Google Toolbar Helper"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."]

HKLM\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\
"{42071714-76d4-11d1-8b24-00a0c9068ff3}" = "Display Panning CPL Extension"
-> {HKLM...CLSID} = "Display Panning CPL Extension"
\InProcServer32\(Default) = "deskpan.dll" [file not found]
"{88895560-9AA2-1069-930E-00AA0030EBC8}" = "HyperTerminal Icon Ext"
-> {HKLM...CLSID} = "HyperTerminal Icon Ext"
\InProcServer32\(Default) = "C:\WINDOWS\System32\hticons.dll" ["Hilgraeve, Inc."]
"{5464D816-CF16-4784-B9F3-75C0DB52B499}" = "Yahoo! Mail"
-> {HKLM...CLSID} = "YMailShellExt Class"
\InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\ymmapi.dll" ["Yahoo! Inc."]
"{B41DB860-8EE4-11D2-9906-E49FADC173CA}" = "WinRAR shell extension"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]
"{52B87208-9CCF-42C9-B88E-069281105805}" = "Trojan Remover Shell Extension"
-> {HKLM...CLSID} = "Trojan Remover Shell Extension"
\InProcServer32\(Default) = "C:\PROGRA~1\TROJAN~2\Trshlex.dll" ["Simply Super Software"]

HKLM\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\
INFECTION WARNING! "{54D9498B-CF93-414F-8984-8CE7FDE0D391}" = "ewido shell guard"
-> {HKLM...CLSID} = "CShellExecuteHookImpl Object"
\InProcServer32\(Default) = "C:\Program Files\ewido anti-malware\shellhook.dll" ["TODO: <Firmenname>"]

HKLM\Software\Classes\*\shellex\ContextMenuHandlers\
ewido\(Default) = "{57BD36D7-CE32-4600-9B1C-1A0C47EFC02E}"
-> {HKLM...CLSID} = "Ctest Object"
\InProcServer32\(Default) = "C:\Program Files\ewido anti-malware\context.dll" ["ewido networks"]
Trojan Remover\(Default) = "{52B87208-9CCF-42C9-B88E-069281105805}"
-> {HKLM...CLSID} = "Trojan Remover Shell Extension"
\InProcServer32\(Default) = "C:\PROGRA~1\TROJAN~2\Trshlex.dll" ["Simply Super Software"]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]
Yahoo! Mail\(Default) = "{5464D816-CF16-4784-B9F3-75C0DB52B499}"
-> {HKLM...CLSID} = "YMailShellExt Class"
\InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\ymmapi.dll" ["Yahoo! Inc."]

HKLM\Software\Classes\Directory\shellex\ContextMenuHandlers\
ewido\(Default) = "{57BD36D7-CE32-4600-9B1C-1A0C47EFC02E}"
-> {HKLM...CLSID} = "Ctest Object"
\InProcServer32\(Default) = "C:\Program Files\ewido anti-malware\context.dll" ["ewido networks"]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]

HKLM\Software\Classes\Folder\shellex\ContextMenuHandlers\
Trojan Remover\(Default) = "{52B87208-9CCF-42C9-B88E-069281105805}"
-> {HKLM...CLSID} = "Trojan Remover Shell Extension"
\InProcServer32\(Default) = "C:\PROGRA~1\TROJAN~2\Trshlex.dll" ["Simply Super Software"]
WinRAR\(Default) = "{B41DB860-8EE4-11D2-9906-E49FADC173CA}"
-> {HKLM...CLSID} = "WinRAR"
\InProcServer32\(Default) = "C:\Program Files\WinRAR\rarext.dll" [null data]


Active Desktop and Wallpaper:
-----------------------------

Active Desktop is disabled at this entry:
HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellState

HKCU\Control Panel\Desktop\
"Wallpaper" = "C:\WINDOWS\web\wallpaper\Bliss.bmp"


Enabled Screen Saver:
---------------------

HKCU\Control Panel\Desktop\
"SCRNSAVE.EXE" = "C:\WINDOWS\System32\logon.scr" [MS]


Startup items in "darshana" & "All Users" startup folders:
----------------------------------------------------------

C:\Documents and Settings\All Users.WINDOWS\Start Menu\Programs\Startup
"blueyonder Instant Support Tool" -> shortcut to: "C:\Program Files\blueyonder IST\bin\matcli.exe -boot" ["Motive Communications, Inc."]


Enabled Scheduled Tasks:
------------------------

"McAfee AntiSpyware" -> launches: "c:\progra~1\mcafee\MCAFEE~1\MASCon.exe /SCHEDULEDSCANNOW" ["McAfee, Inc."]


Winsock2 Service Provider DLLs:
-------------------------------

Namespace Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\NameSpace_Catalog5\Catalog_Entries\ {++}
000000000001\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]
000000000002\LibraryPath = "%SystemRoot%\System32\winrnr.dll" [MS]
000000000003\LibraryPath = "%SystemRoot%\System32\mswsock.dll" [MS]

Transport Service Providers

HKLM\System\CurrentControlSet\Services\Winsock2\Parameters\Protocol_Catalog9\Catalog_Entries\ {++}
0000000000##\PackedCatalogItem (contains) DLL [Company Name], (at) ## range:
%SystemRoot%\system32\mswsock.dll [MS], 01 - 03, 06 - 11
%SystemRoot%\system32\rsvpsp.dll [MS], 04 - 05


Toolbars, Explorer Bars, Extensions:
------------------------------------

Toolbars

HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}"
-> {HKLM...CLSID} = "Yahoo! Toolbar"
\InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll" ["Yahoo! Inc."]
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}"
-> {HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."]

HKLM\Software\Microsoft\Internet Explorer\Toolbar\
"{2318C2B1-4965-11D4-9B18-009027A5CD4F}" = (no title provided)
-> {HKLM...CLSID} = "&Google"
\InProcServer32\(Default) = "c:\program files\google\googletoolbar2.dll" ["Google Inc."]
"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" = (no title provided)
-> {HKLM...CLSID} = "Yahoo! Toolbar"
\InProcServer32\(Default) = "C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll" ["Yahoo! Inc."]

Explorer Bars

HKCU\Software\Microsoft\Internet Explorer\Explorer Bars\
{4528BBE0-4E08-11D5-AD55-00010333D0AD}\(Default) = (no title provided)
-> {HKLM...CLSID} = "&Yahoo! Messenger"
\InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\yhexbmesuk.dll" ["Yahoo! Inc."]

HKLM\Software\Microsoft\Internet Explorer\Explorer Bars\
{4528BBE0-4E08-11D5-AD55-00010333D0AD}\(Default) = (no title provided)
-> {HKLM...CLSID} = "&Yahoo! Messenger"
\InProcServer32\(Default) = "C:\PROGRA~1\Yahoo!\Common\yhexbmesuk.dll" ["Yahoo! Inc."]

Extensions (Tools menu items, main toolbar menu buttons)

HKLM\Software\Microsoft\Internet Explorer\Extensions\
{08B0E5C0-4FCB-11CF-AAA5-00401C608501}\
"MenuText" = "Sun Java Console"
"CLSIDExtension" = "{CAFEEFAC-0015-0000-0007-ABCDEFFEDCBC}"
-> {HKCU...CLSID} = "Java Plug-in"
\InProcServer32\(Default) = "C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll" ["Sun Microsystems, Inc."]
,,,,,,,,,,,.,..........................................................................................................................................................Logfile of HijackThis v1.99.1
Scan saved at 9:16:00 AM, on 6/20/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\SYSTEM32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ewido anti-malware\ewidoctrl.exe
C:\Program Files\ewido anti-malware\ewidoguard.exe
c:\progra~1\mcafee\mcafee antispyware\massrv.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\Mixer.exe
C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Program Files\SmartPCTools\Registry Repair Wizard\RCScheduler.exe
C:\Program Files\blueyonder IST\bin\mpbtn.exe
C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
c:\progra~1\mcafee\MCAFEE~1\MASCon.exe
c:\program files\mcafee.com\shared\mghtml.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\WinRAR\WinRAR.exe
C:\DOCUME~1\darshana\LOCALS~1\Temp\Rar$EX02.090\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.blueyonde....jspx?page=home
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Program Files\Common Files\Microsoft Shared\Stationery\Blank.htm
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer Provided by blueyonder
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dll
O4 - HKLM\..\Run: [C-Media Mixer] Mixer.exe /startup
O4 - HKLM\..\Run: [TrojanScanner] C:\Program Files\Trojan Remover\Trjscan.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_07\bin\jusched.exe
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [Windows Registry Repair Pro] C:\Program Files\3B Software\Windows Registry Repair Pro\RegistryRepairPro.exe 4
O4 - HKCU\..\Run: [Registry Repair Wizard Scheduler] "C:\Program Files\SmartPCTools\Registry Repair Wizard\RCScheduler.exe" /startup
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\ypager.exe -quiet
O4 - Global Startup: blueyonder Instant Support Tool.lnk = C:\Program Files\blueyonder IST\bin\matcli.exe
O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_07\bin\ssv.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesuk.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRA~1\Yahoo!\Common\yhexbmesuk.dll
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - C:\Program Files\Yahoo!\Common\yinsthelper.dll
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by120fd.bay12...es/MsnPUpld.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1150365204057
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1150365830597
O16 - DPF: {7B297BFD-85E4-4092-B2AF-16A91B2EA103} (WScanCtl Class) - http://www3.ca.com/s...nfo/webscan.cab
O16 - DPF: {9BFC2253-B9D9-477E-9488-CA450232620D} (BinAg1 Class) - http://www.blueyonde...wActiveXCab.CAB
O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcaf...784/mcfscan.cab
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O23 - Service: ewido security suite control - ewido networks - C:\Program Files\ewido anti-malware\ewidoctrl.exe
O23 - Service: ewido security suite guard - ewido networks - C:\Program Files\ewido anti-malware\ewidoguard.exe
O23 - Service: McAfee AntiSpyware Service - McAfee, Inc. - c:\progra~1\mcafee\mcafee antispyware\massrv.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe (file missing)

#19 Micah_6:8

Micah_6:8

    Evilware Emancipator

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,060 posts
  • Interests:Web (Perl, PHP, JavaScript, HTML) programming, CNC programming, Squashing spyware!

Posted 20 June 2006 - 05:03 AM

Fix this with HijackThis!:

O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe (file missing)

Download Blacklight Beta from here:
Blacklight Beta

Hit I accept. It will take you to download page.

Download blbeta.exe and save it to the Desktop.

Once saved... double click blbeta.exe to install the program.

Click accept agreement and Click scan

This application may cause a warning from your antivirus. Let it load.

Wait for it to finish.

If it displays any items...don't do anything with them yet. Just hit exit (close)

It will drop a log on Desktop that starts with fsbl....(big number)

Post that log.
:)
Micah 6:8 He hath shewed thee, O man, what is good; and what doth the LORD require of thee, but to do justly, and to love mercy, and to walk humbly with thy God?

The help you receive here is free.
If you wish to show your appreciation, then you may donate to help keep us online.

Want to help others? Join the ClassRoom and learn how.

Download Hijack This! My Website: UnSpyMe!

#20 ukcliff

ukcliff

    New Member

  • Authentic Member
  • Pip
  • 15 posts

Posted 20 June 2006 - 06:04 AM

HI MICAH IVE RAN THE SCAN AND ITS FOUND NO HIDDEN ITEMS....THERES WAS THIS LOG ON DESKTOP SO I THOUGHT I WUD POST IT COS I DONT KNOW IF U NEED IT OR NOT...CHEERS.........................................................................................................................................................06/20/06 12:55:09 [Info]: BlackLight Engine 1.0.37 initialized 06/20/06 12:55:09 [Info]: OS: 5.1 build 2600 () 06/20/06 12:55:11 [Note]: 7019 4 06/20/06 12:55:11 [Note]: 7005 0 06/20/06 12:55:19 [Note]: 7006 0 06/20/06 12:55:19 [Note]: 7011 1568 06/20/06 12:55:23 [Note]: 7026 0 06/20/06 12:55:25 [Note]: 7026 0 06/20/06 12:57:15 [Note]: FSRAW library version 1.7.1015 06/20/06 12:57:15 [Error]: 4000 5 06/20/06 12:57:15 [Note]: 4005 5 06/20/06 12:57:16 [Error]: 4000 5 06/20/06 12:57:16 [Note]: 4005 5 06/20/06 12:57:17 [Error]: 4000 5 06/20/06 12:57:17 [Note]: 4005 5 06/20/06 12:57:18 [Error]: 4000 5 06/20/06 12:57:18 [Note]: 4005 5 06/20/06 12:57:19 [Error]: 4000 5 06/20/06 12:57:19 [Note]: 4005 5 06/20/06 12:57:20 [Error]: 4000 5 06/20/06 12:57:20 [Note]: 4005 5 06/20/06 12:57:22 [Error]: 4000 5 06/20/06 12:57:22 [Note]: 4005 5 06/20/06 12:57:23 [Error]: 4000 5 06/20/06 12:57:23 [Note]: 4005 5 06/20/06 12:57:24 [Error]: 4000 5 06/20/06 12:57:24 [Note]: 4005 5 06/20/06 12:57:24 [Error]: 4000 5 06/20/06 12:57:24 [Note]: 4005 5 06/20/06 12:57:25 [Error]: 4000 5 06/20/06 12:57:25 [Note]: 4005 5 06/20/06 12:57:27 [Error]: 4000 5 06/20/06 12:57:27 [Note]: 4005 5 06/20/06 12:57:28 [Error]: 4000 5 06/20/06 12:57:28 [Note]: 4005 5 06/20/06 12:57:29 [Error]: 4000 5 06/20/06 12:57:29 [Note]: 4005 5 06/20/06 12:57:31 [Error]: 4000 5 06/20/06 12:57:31 [Note]: 4005 5 06/20/06 12:57:32 [Error]: 4000 5 06/20/06 12:57:32 [Note]: 4005 5 06/20/06 12:57:33 [Error]: 4000 5 06/20/06 12:57:33 [Note]: 4005 5 06/20/06 12:57:35 [Error]: 4000 5 06/20/06 12:57:35 [Note]: 4005 5 06/20/06 12:57:36 [Error]: 4000 5 06/20/06 12:57:36 [Note]: 4005 5 06/20/06 12:57:37 [Error]: 4000 5 06/20/06 12:57:37 [Note]: 4005 5 06/20/06 12:57:39 [Error]: 4000 5 06/20/06 12:57:39 [Note]: 4005 5 06/20/06 12:57:40 [Error]: 4000 5 06/20/06 12:57:40 [Note]: 4005 5 06/20/06 12:57:41 [Error]: 4000 5 06/20/06 12:57:41 [Note]: 4005 5 06/20/06 12:57:43 [Error]: 4000 5 06/20/06 12:57:43 [Note]: 4005 5 06/20/06 12:57:44 [Error]: 4000 5 06/20/06 12:57:44 [Note]: 4005 5 06/20/06 12:57:45 [Error]: 4000 5 06/20/06 12:57:45 [Note]: 4005 5 06/20/06 12:57:47 [Error]: 4000 5 06/20/06 12:57:47 [Note]: 4005 5 06/20/06 12:57:48 [Error]: 4000 5 06/20/06 12:57:48 [Note]: 4005 5 06/20/06 12:57:50 [Error]: 4000 5 06/20/06 12:57:50 [Note]: 4005 5 06/20/06 12:57:51 [Error]: 4000 5 06/20/06 12:57:51 [Note]: 4005 5 06/20/06 12:57:52 [Error]: 4000 5 06/20/06 12:57:52 [Note]: 4005 5 06/20/06 12:57:54 [Error]: 4000 5 06/20/06 12:57:54 [Note]: 4005 5 06/20/06 12:57:55 [Error]: 4000 5 06/20/06 12:57:55 [Note]: 4005 5 06/20/06 12:57:57 [Error]: 4000 5 06/20/06 12:57:57 [Note]: 4005 5 06/20/06 12:57:59 [Error]: 4000 5 06/20/06 12:57:59 [Note]: 4005 5 06/20/06 12:58:01 [Error]: 4000 5 06/20/06 12:58:01 [Note]: 4005 5 06/20/06 12:58:02 [Error]: 4000 5 06/20/06 12:58:02 [Note]: 4005 5 06/20/06 12:58:04 [Error]: 4000 5 06/20/06 12:58:04 [Note]: 4005 5 06/20/06 12:58:06 [Error]: 4000 5 06/20/06 12:58:06 [Note]: 4005 5 06/20/06 12:58:08 [Error]: 4000 5 06/20/06 12:58:08 [Note]: 4005 5 06/20/06 12:58:10 [Error]: 4000 5 06/20/06 12:58:10 [Note]: 4005 5 06/20/06 12:58:12 [Error]: 4000 5 06/20/06 12:58:12 [Note]: 4005 5 06/20/06 12:58:14 [Error]: 4000 5 06/20/06 12:58:14 [Note]: 4005 5 06/20/06 12:58:16 [Error]: 4000 5 06/20/06 12:58:16 [Note]: 4005 5 06/20/06 12:58:18 [Error]: 4000 5 06/20/06 12:58:18 [Note]: 4005 5 06/20/06 12:58:20 [Error]: 4000 5 06/20/06 12:58:20 [Note]: 4005 5 06/20/06 12:58:22 [Error]: 4000 5 06/20/06 12:58:22 [Note]: 4005 5 06/20/06 12:58:24 [Error]: 4000 5 06/20/06 12:58:24 [Note]: 4005 5 06/20/06 12:58:25 [Error]: 4000 5 06/20/06 12:58:25 [Note]: 4005 5 06/20/06 12:58:28 [Error]: 4000 5 06/20/06 12:58:28 [Note]: 4005 5 06/20/06 12:58:30 [Error]: 4000 5 06/20/06 12:58:30 [Note]: 4005 5 06/20/06 12:58:31 [Error]: 4000 5 06/20/06 12:58:31 [Note]: 4005 5 06/20/06 12:58:33 [Error]: 4000 5 06/20/06 12:58:33 [Note]: 4005 5 06/20/06 12:58:35 [Error]: 4000 5 06/20/06 12:58:35 [Note]: 4005 5 06/20/06 12:58:37 [Error]: 4000 5 06/20/06 12:58:37 [Note]: 4005 5 06/20/06 12:58:39 [Error]: 4000 5 06/20/06 12:58:39 [Note]: 4005 5 06/20/06 12:58:42 [Error]: 4000 5 06/20/06 12:58:42 [Note]: 4005 5 06/20/06 12:58:44 [Error]: 4000 5 06/20/06 12:58:44 [Note]: 4005 5 06/20/06 12:58:46 [Error]: 4000 5 06/20/06 12:58:46 [Note]: 4005 5 06/20/06 12:58:50 [Error]: 4000 5 06/20/06 12:58:50 [Note]: 4005 5 06/20/06 12:58:52 [Error]: 4000 5 06/20/06 12:58:52 [Note]: 4005 5 06/20/06 12:58:54 [Error]: 4000 5 06/20/06 12:58:54 [Note]: 4005 5 06/20/06 12:58:56 [Error]: 4000 5 06/20/06 12:58:56 [Note]: 4005 5 06/20/06 12:58:57 [Error]: 4000 5 06/20/06 12:58:57 [Note]: 4005 5 06/20/06 12:59:01 [Error]: 4000 5 06/20/06 12:59:01 [Note]: 4005 5 06/20/06 12:59:04 [Error]: 4000 5 06/20/06 12:59:04 [Note]: 4005 5 06/20/06 12:59:11 [Error]: 4000 5 06/20/06 12:59:11 [Note]: 4005 5 06/20/06 12:59:13 [Error]: 4000 5 06/20/06 12:59:13 [Note]: 4005 5 06/20/06 12:59:15 [Error]: 4000 5 06/20/06 12:59:15 [Note]: 4005 5 06/20/06 12:59:18 [Error]: 4000 5 06/20/06 12:59:18 [Note]: 4005 5 06/20/06 12:59:20 [Error]: 4000 5 06/20/06 12:59:20 [Note]: 4005 5

#21 Micah_6:8

Micah_6:8

    Evilware Emancipator

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,060 posts
  • Interests:Web (Perl, PHP, JavaScript, HTML) programming, CNC programming, Squashing spyware!

Posted 21 June 2006 - 05:24 PM

Haven't seen anything terribly "malicious" in any of these logs. Is that machine any more "stable" than it used to be? :unsure:
Micah 6:8 He hath shewed thee, O man, what is good; and what doth the LORD require of thee, but to do justly, and to love mercy, and to walk humbly with thy God?

The help you receive here is free.
If you wish to show your appreciation, then you may donate to help keep us online.

Want to help others? Join the ClassRoom and learn how.

Download Hijack This! My Website: UnSpyMe!

#22 ukcliff

ukcliff

    New Member

  • Authentic Member
  • Pip
  • 15 posts

Posted 21 June 2006 - 06:17 PM

HI MICAH...ITS A LOT BETTER NOW THEN IT WAS.IT STILL SHUTS DOWN BUT SOMETIMES ITS ONCE A DAY OR TWICE A DAY BUT IT RUNS A LOT BETTER THEN BEFORE..THANK YOU AGAIN FOR ALL YOUR HELP U HAVE GIVEN ME I REALLY APRECIATE IT....CHEERS

#23 Micah_6:8

Micah_6:8

    Evilware Emancipator

  • Authentic Member
  • PipPipPipPipPipPipPip
  • 10,060 posts
  • Interests:Web (Perl, PHP, JavaScript, HTML) programming, CNC programming, Squashing spyware!

Posted 22 June 2006 - 03:31 AM

This topic is now closed.

If you need this topic reopened, please request this by sending an email to us at the following link

(Click for address)
Include your post user name and detail why you need it reopened with a valid link to your post.
Any bad links or emails that are not from the original poster will be deleted without response.
Any emails without the subject "Reopen" will be deleted without being looked at.

If this is not your thread please start a New Topic.

Micah 6:8 He hath shewed thee, O man, what is good; and what doth the LORD require of thee, but to do justly, and to love mercy, and to walk humbly with thy God?

The help you receive here is free.
If you wish to show your appreciation, then you may donate to help keep us online.

Want to help others? Join the ClassRoom and learn how.

Download Hijack This! My Website: UnSpyMe!

Related Topics



0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users