home hardware prices news articles forums photos user reviews
Go Back   Tech Support Forums - TechIMO.com > PC Hardware and Tech > Technical Support
hijackthis log hijackthis log
Ask a Tech Support Question (free)!

hijackthis log

Reply
Get bargains at  »  Dealighted.com
 
Thread Tools Search this Thread
Currently Active Users: 1818
Discussions: 200,923, Posts: 2,379,102, Members: 246,290
Old August 12th, 2005, 10:21 PM   Digg it!   #1 (permalink)
Senior Member
 
Join Date: Jan 2005
Posts: 594
hijackthis log
hey guys, is there something wrong with this,
i have some spyware that wont let me open task manager, i formated, but it still is there, i dont know what to do. i ran hijack this, here is the log

Logfile of HijackThis v1.99.1
Scan saved at 9:19:02 PM, on 8/12/2005
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
D:\WINDOWS\System32\smss.exe
D:\WINDOWS\system32\winlogon.exe
D:\WINDOWS\system32\services.exe
D:\WINDOWS\system32\lsass.exe
D:\WINDOWS\System32\Ati2evxx.exe
D:\WINDOWS\system32\svchost.exe
D:\WINDOWS\System32\svchost.exe
D:\WINDOWS\system32\spoolsv.exe
D:\WINDOWS\system32\Ati2evxx.exe
D:\WINDOWS\Explorer.EXE
D:\WINDOWS\System32\ssmss.exe
D:\WINDOWS\SOUNDMAN.EXE
D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
D:\Program Files\AIM\aim.exe
D:\Program Files\BitLord\BitLord.exe
E:\install.exe
E:\setup2D.exe
D:\Documents and Settings\James\Local Settings\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe

O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - D:\WINDOWS\System32\msdxm.ocx
O4 - HKLM\..\Run: [IE6] ssmss.exe
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [ATIPTA] "D:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe"
O4 - HKLM\..\RunServices: [IE6] ssmss.exe
O4 - HKCU\..\Run: [Steam] D:\Program Files\Valve\Steam\Steam.exe -silent
O4 - HKCU\..\Run: [SpybotSD TeaTimer] D:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\Run: [AIM] D:\Program Files\AIM\aim.exe -cnetwait.odl
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - D:\Program Files\AIM\aim.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - D:\WINDOWS\System32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - D:\WINDOWS\system32\ati2sgag.exe

please help me out, thx
mbandela000 is offline   Reply With Quote
Old August 12th, 2005, 10:26 PM     #2 (permalink)
Best To Avoid Me
 
Martoch's Avatar
 
Join Date: Mar 2002
Location: Under Your Bed
Posts: 8,863
http://www.techimo.com/forum/t137826.html



What programs have you used to scan your system?

Try these if you haven't already:

Adaware
http://www.download.com/Ad-Aware-SE-...-10045910.html

Spybot
http://www.download.com/Spybot-Searc...ml?tag=lst-0-1

Spy Sweeper
http://www.download.com/Webroot-Spy-...-10373771.html

Spyware Doctor
http://www.download.com/Spyware-Doct...-10377263.html

Microsoft Antispyware Beta
http://www.download.com/Microsoft-Wi...ml?tag=lst-0-1

A-Squared
http://www.emsisoft.com/en/software/download/

CWShredder
http://www.softpedia.com/get/Interne...Shredder.shtml

Ewido Security Suite
http://www.download.com/Ewido-Securi...-10326287.html



Install them, update them, reboot into safe mode, run complete system scans.
(Spyware Doctor, Spy Sweeper, and Ewido are trial versions, but are fully functional...just uninstall them when you're done scanning/removing spyware)

Report back with your findings.

What all do you have starting up with Windows? You can run a simple startup detection program to help you find out.
Autoruns
http://www.sysinternals.com/ntw2k/fr...autoruns.shtml
Martoch is offline   Reply With Quote
Old August 12th, 2005, 10:28 PM     #3 (permalink)
Senior Member
 
Christian-Comp's Avatar
 
Join Date: Dec 2002
Location: Arkansas
Posts: 997
Turn off system restore - go into safemode - check out your msconfig (start-run-msconfig-enter) - startup tab - make sure only legit programs are starting.

Run spybot, adaware, a good antivirus like AVG - then hijack this again.

It might help. I see this a lot when working on systems from our dial-up and cable modem customers.
__________________
FaD Team 2215 ~ Christianboards.org
"Those who fight the hardest have the most to lose"
Christian-Comp is offline   Reply With Quote
Old August 12th, 2005, 10:35 PM     #4 (permalink)
Senior Member
 
Join Date: Jan 2005
Posts: 594
i read the hijackthis log, i tried deleteing the problem, but it says access denied
mbandela000 is offline   Reply With Quote
Old August 12th, 2005, 10:36 PM     #5 (permalink)
Best To Avoid Me
 
Martoch's Avatar
 
Join Date: Mar 2002
Location: Under Your Bed
Posts: 8,863
Okay, since you don't feel like reading the hijackthis tutorial I pointed you to...



Quote:
At times you may find a file that stubbornly refuses to be deleted by conventional means. HijackThis introduced, in version 1.98.2, a method to have Windows delete the file as it boots up, before the file has the chance to load.

How to delete files on reboot
Martoch is offline   Reply With Quote
Old August 23rd, 2005, 01:58 PM     #6 (permalink)
Junior Member
 
Join Date: Aug 2005
Posts: 3
Hello all,
I am new to this site, and am in the process of extricating some spyware from my computer. I am somewhat of a computer rookie, and have followed the steps outlined above, except for the hijack part.

What are my hijack options? I looked around, and all the sites I found seem to want money to download the program. Is this correct? If not, where do I find the original program?

Any info would be a huge help.

thx,

shawn
1989lx50 is offline   Reply With Quote
Old August 23rd, 2005, 02:25 PM     #7 (permalink)
Senior Member
 
andy1984's Avatar
 
Join Date: Jul 2005
Posts: 984
you should start a new thread btw, but here you go
http://www.download.com/HijackThis/3...-10227353.html
andy1984 is offline   Reply With Quote
Old August 23rd, 2005, 02:45 PM     #8 (permalink)
27
Ultimate Member
 
27's Avatar
 
Join Date: Jun 2004
Location: England
Posts: 1,407
SSSLAM your log file into both of these

http://hjt.iamnotageek.com/

http://www.hijackthis.de/

They'll tell you which pieces of eeevil to delete.

Restart your compurah and do it again.

If you still have problems after this, let us know.
27 is offline   Reply With Quote
Reply
Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
HiJackThis Log Help MitaDC General Tech Discussion 2 April 23rd, 2005 06:55 PM
hijackthis log mArtOOf Technical Support 5 October 16th, 2004 02:05 PM
Need help with my HiJackThis Log Krytos General Tech Discussion 8 October 11th, 2004 05:20 PM
Help with HijackThis Log bhath19 Technical Support 11 July 5th, 2004 05:41 PM
Hijackthis log - help please! impulce Networking and Internet 1 January 8th, 2004 07:32 PM


Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Most Active Discussions
Is It Just Me? (2856)
Obama the Muslim (13)
Why is Khalid Sheikh Mohammed even .. (9)
Is the PSU I received dead? (10)
windows vista security holes (8)
Foreign voltage (10)
Print spooler problem (13)
HIS HD5770 graphic card question (15)
Install XP pro and a Vista laptop ?.. (9)
Dept. of HS: NSA 'Helped' Develop V.. (15)
A good PSU? (10)
New Computer wont recognize XP disc (7)
Ideal cheap graph card for PC-Gamin.. (15)
EVGA 9800 gtx help with finding a g.. (8)
Recent Discussions
Fire in DVD (0)
radeon x850xt platinum & shader 3 (2)
The NTDVM CPU has encountered an ille.. (24)
[F@H SPAM 11/16/09] ! 1/2 months to r.. (34)
Wireless speakers for PC? (11)
Print spooler problem (13)
Help getting around port 80 for camer.. (2)
Display shows 3x5 inch in middle of s.. (3)
windows vista security holes (8)
monitor will not turn on at all, (1)
World's largest Monopoly Game using G.. (331)
Foreign voltage (10)
FiOS modem/router interfering with ne.. (7)
Browsers wont load websites (2)
Virus Doctor Popup? (1)
Dept. of HS: NSA 'Helped' Develop Vis.. (15)
Install XP pro and a Vista laptop ?? (9)
EVGA 9800 gtx help with finding a goo.. (8)
Modern Warfare For the PC (32)
Problem with speed step/turbo boost? (1)
Modern Warfare 2: Who Bought It? (61)
SIS 740 and Widescreen (8)
Baffling Problem with my CPU/MoBo's. .. (0)
HIS HD5770 graphic card question (15)
Best file format to play on Windows H.. (0)


All times are GMT -4. The time now is 10:27 PM.
TechIMO Copyright 2009 All Enthusiast, Inc.

Contact Us - Tech Support Forums - TechIMO.com - Archive - Privacy Statement - Terms of Use -
Coupons and Deals and Dealighted - Store Ratings, Avoid Scam Businesses - Geek News - Tech News for the Geek In You- Web Business Blog - Top


1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28