Re: HJT Log...need tojan fix

Author	All Replies
paulp757 join:2005-10-22 Maywood, NJ	reply to CalamityJane Re: HJT Log...need tojan fix Calamity Jane, Thank you for taking the time to research and reply with such a comprehensive and thorough post. Fortunately, I have very little sensative/personal information on this particular computer. I will reformat and reinstall the OS (Windows 2000) as you recommend. It should be too much of a hassle as I only used this computer, a laptop, for accessing the Internet and picking-up email while on the road I run Symantic AV, Spybot and Lavasoft's AdAware. Do you have any other security software recommendations that I should consider installing (once I reformat and reinstall the OS) to help avoid a repeat? Again, I deeply appreciate your assistance. Regards, Paul
	to forum · permalink · · 2005-10-23 01:28:32 ·
CalamityJane Premium,VIP,MVM join:2002-08-27 Eustis, FL	Hello Paul, Glad to hear that's a limited use PC. Make sure all your security software is up to date. Get the most current versions of Adaware and Spybot and, of course, update your AV frequently. Watch out for IMs in Chat programs that come from out of the blue with a link for you to click! And beware links in email you didn't expect and do watch what you download (sounds like you don't do much downloading on that computer though). Some additional tips are here: »Security »How do I prevent browser hijacks and spyware? Some extensive security precautions here: »Security »How to Secure (and Keep Secure) My (New) Computer(s): A Layered Approach: Keep Windows Up to Date with the latest critical security updates (they come out once a month, usually on the second Tuesday of each month). Microsoft's MBSA is a handy free tool to check the overall security of your PC, I highly recommend it: Microsoft Baseline Security Analyzer (MBSA) from Microsoft to analyze your PC security for prevention purposes. MBSA Version 2.0 will scan for common system misconfigurations on Windows 2000, Windows XP, and Windows Server 2003 systems. This program will identify the system security weaknesses in your browser and operating system and provides easy instructions to correct them. This includes any missing critical Windows security updates, system vulnerabilities and your IE Browser security settings. Get the download here: Microsoft Baseline Security Analyzer »www.microsoft.com/technet/securi···ome.mspx Choose MBSAsetup-EN.msi = (English Version) or the language appropriate for you. -- It takes a disaster to make a woman out of a female Microsoft MVP/Windows Security 2003-2006 Proud Member of ASAP (Alliance of Security Analysis Professionals)
	to forum · permalink · · 2005-10-23 07:42:42 ·
paulp757 join:2005-10-22 Maywood, NJ	Calamity Jane. New OS installed (upgraded to XP Pro) and working great. Installation of security software in progress. Thanks again. Paul
	to forum · permalink · · 2005-10-23 09:53:51 ·
CalamityJane Premium,VIP,MVM join:2002-08-27 Eustis, FL	Excellent! Glad to hear it You're welcome!
	to forum · permalink · · 2005-10-23 09:55:36 ·
paulp757 join:2005-10-22 Maywood, NJ	Calamity Jane, After installing all MS Windows XP (critical) Security Updates, including SP2, the computer is running MUCH slower...3 minutes to boot-up and slow to open programs, particularly Internet Explorer. Start-up services: tp4mon, avgcc, gscasServ, msmgs...that's it. As already mentioned, prior to installing MS Windows updates, the system was running great. System Specifics: Dell Latitude LS, Intel Pent III 398 MHz, 128 RAM (not ideal, I know). Spybot S&D, MS AntiSpyware and AVG all show nothing. The HJT log file follows...any thoughts? Logfile of HijackThis v1.99.1 Scan saved at 10:16:43 AM, on 10/24/2005 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\HJT\HijackThis.exe O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [TrackPointSrv] tp4mon.exe O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP O4 - HKLM\..\Run: [gcasServ] "C:\Program Files\Microsoft AntiSpyware\gcasServ.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: &Translate English Word - res://C:\Program Files\Google\GoogleToolbar1.dll/cmwordtrans.html O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Translate Page into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - »go.microsoft.com/fwlink/?linkid=39204 O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - »update.microsoft.com/microsoftup···80887460 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - »update.microsoft.com/microsoftup···80869043 O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
	to forum · permalink · · 2005-10-24 10:40:57 ·
CalamityJane Premium,VIP,MVM join:2002-08-27 Eustis, FL	Oh dear Well, we solved the malware problems, and your HijackThis log is clean, as expected. I would suggest you start a new topic on the problems after SP2 in the Microsoft Help forum here: »Microsoft Help I would also suggest this help line from MS. Microsoft also has a free support service regarding difficulties with Security updates (such as SP2)for home users. 1-866-PCSAFETY or 1-866-727-2338 This phone number is for virus and other security-related support. It is available 24 hours a day for the U.S. and Canada. For support outside the United States and Canada, please contact your Microsoft Help and Support worldwide. -- It takes a disaster to make a woman out of a female Microsoft MVP/Windows Security 2003-2006 Proud Member of ASAP (Alliance of Security Analysis Professionals)
	to forum · permalink · · 2005-10-24 10:49:42 ·
paulp757 join:2005-10-22 Maywood, NJ	Thanks CJ. I wanted to ensure the malware problem was completely resolved. I'll follow through on the slowdown as you suggest. Regards, Paul
	to forum · permalink · · 2005-10-24 20:32:19 ·
CalamityJane Premium,VIP,MVM join:2002-08-27 Eustis, FL	Yes, the malware problem is resolved...so it's down to a problem with the updates. Good luck! Let us know how you make out.
	to forum · permalink · · 2005-10-24 21:18:58 ·


Sunday, 29-Nov 06:08:56	Terms of Use \| Privacy Policy \| Hosting by www.nac.net - DSL,Hosting & Co-lo \| feedback \| contact over 10 years online! © 1999-2009 dslreports.com.republican-creole page compression OFF