Home > Hijackthis > Hijackthis - Keylogger Or Trojans?

Hijackthis - Keylogger Or Trojans?

Turn OFF System Restore. Logfile of HijackThis v1.99.1 Scan saved at 10:03:42 PM, on 6/5/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note) The log is automatically saved by MBAM and can be viewed by Share this post Link to post Share on other sites This topic is now closed to further replies. his comment is here

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{055fd26d-3a88-4e15-963d-dc8493744b1d} (Adware.BHO) -> Quarantined and deleted successfully. Posted November 7, 2008 · Report post Due to the lack of feedback this Topic is closed.   If you need this topic reopened, please tell the moderating team by replying who24 Born Posts: 4 3+ Months Ago OK this is what we've got: I did an advanced search for csrss and here is a picture of what I found. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. https://forums.techguy.org/threads/hijackthis-keylogger-or-trojans.916376/

All rights reserved. After downloading the tool, disconnect from the internet and disable all antivirus protection. If you click on this in the drop-down menu you can choose Track this topic. If they use that part of Yahoo it doesn't need to be deleted.http://www.fileresearchcenter.com/Y/YT.DLL-2172.html who24 Born Posts: 4 3+ Months Ago Well I did run Ad-aware and Spybot and they got rid

OriginalFilename : msmsgs.exe #:51 [ad-aware.exe] FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\ ProcessID : 2788 ThreadCreationTime : 1-2-2007 2:04:54 AM BasePriority : Normal FileVersion : ProductVersion : SE 106 ProductName : Using the site is easy and fun. Here are the new Ad Aware and HJT scan logs.RandyAd Aware:Ad-Aware SE Build 1.06r1Logfile Created on:Tuesday, January 02, 2007 11:47:57 PMCreated with Ad-Aware SE Personal, free for private use.Using definitions file:SE1R142 Place a check against each of the following, making sure you get them all and not any others by mistake:   R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank O4 - HKLM\..\Run:

Interests:Golf, Pool (Snooker), Enjoying retirement. Start here -> Malware Removal Forum. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Track System (Trojan.Vundo) -> Quarantined and deleted successfully. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal.

If not please perform the following steps below so we can have a look at the current condition of your machine. I usually just either don't install them myself, or uninstall them from add/remove programs. Type : IECache Entry Data : [email protected][1].txt TAC Rating : 3 Category : Data Miner Comment : Value : C:\Documents and Settings\Sandy\Cookies\[email protected][1].txt Tracking Cookie Object Recognized! All rights reserved.

I have Google toolbar & I probably shouldn't even have that. https://forums.whatthetech.com/index.php?showtopic=80072 and/or other countries. All rights reserved. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{54a3f8b7-228e-4ed8-895b-de832b2c3959} (Adware.Zango) -> Quarantined and deleted successfully.

Click Apply, and then click OK.   2. http://pcialliance.org/hijackthis/hijackthis-what-else-can-i-remove.html Consistently helpful members with best answers are invited to staff. Powered by vBulletin Version 4.2.2 Copyright © 2017 vBulletin Solutions, Inc. We do not know what the problem is, but it seems to be specific to IE 11 and we are hopeful that Microsoft will eventually fix it.

If you have expertise in working with smartphones, we urge you to contact an administrator about the possibility of becoming part of the staff after we review your credentials. C:\WINDOWS\system32\vgchgz.dll (Trojan.Vundo) -> Quarantined and deleted successfully. No one is ignored here.If you have since resolved the original problem you were having, we would appreciate you letting us know. weblink OriginalFilename : ccSetMgr.exe #:13 [sndsrvc.exe] FilePath : C:\Program Files\Common Files\Symantec Shared\ ProcessID : 260 ThreadCreationTime : 1-2-2007 1:29:57 AM BasePriority : Normal FileVersion : ProductVersion : 5.5 ProductName : Symantec

At this point we are novices ourselves, even though much of the basics of malware apply for smartphones as they do for PCs. Anyways, heres my log: thanks againLogfile of Trend Micro HijackThis v2.0.2Scan saved at 7:46:38 PM, on 6/8/2009Platform: Windows Vista SP1 (WinNT 6.00.1905)MSIE: Internet Explorer v7.00 (7.00.6001.18226)Boot mode: NormalRunning processes:C:\Windows\system32\taskeng.exeC:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\RtHDVCpl.exeC:\Program Files\Hewlett-Packard\On-Screen OSD OriginalFilename : cisvc.exe #:20 [dvdramsv.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1412 ThreadCreationTime : 1-2-2007 1:30:07 AM BasePriority : Normal FileVersion : 2, 0, 7, 0 ProductVersion : 2, 0, 7, 0

Using the site is easy and fun.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.Upon completing the steps below another staff All rights reserved. Today I woke up and tried to log onto a online video game account of mine and the password had been changed and almost stolen from me. Interests:Golf, Pool (Snooker), Enjoying retirement.

http://s27.photobucket.com/albums/c162/ ... or read our Welcome Guide to learn how to use this site. OriginalFilename : SPBBCSvc.exe#:15 [ccevtmgr.exe] FilePath : C:\Program Files\Common Files\Symantec Shared\ ProcessID : 352 ThreadCreationTime : 1-2-2007 6:41:35 AM BasePriority : Normal FileVersion : ProductVersion : ProductName : Client and check over here mbam-log-2008-10-25 (21-25-14).txt   Scan type: Quick Scan Objects scanned: 39899 Time elapsed: 9 minute(s), 2 second(s)   Memory Processes Infected: 0 Memory Modules Infected: 4 Registry Keys Infected: 29 Registry Values