| Other > Viruses and worms |
| can someone look over my hijack this log for anything bad? |
| << < (6/6) |
| ltdanman44:
SopCast 1.1.2 --> C:\Program Files\SopCast\uninst.exe Steam --> C:\Valve\Steam\UNWISE.EXE C:\Valve\Steam\INSTALL.LOG SUPERAntiSpyware Free Edition --> MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA} Texas Hold'em 3D XP Championship --> "C:\Program Files\Selectsoft\Texas Hold'em 3D XP Championship\uninstall.exe" TVAnts 1.0 --> C:\PROGRA~1\TVAnts\UNWISE.EXE C:\PROGRA~1\TVAnts\INSTALL.LOG Ulead Photo Express 4.0 My Custom Edition --> RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{21BCE515-D5A3-11D4-8E33-0010B53EC668}\SETUP.EXE" VideoLAN VLC media player 0.8.6d --> C:\Program Files\VideoLAN\VLC\uninstall.exe Viewpoint Media Player --> C:\Program Files\Viewpoint\Viewpoint Media Player\mtsAxInstaller.exe /u WeatherBug Browser Bar - powered by MyWebSearch --> rundll32 C:\PROGRA~1\MYWEBS~1\bar\1.bin\w6Bar.dll,O Windows Media Connect --> msiexec.exe /I {F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B} Windows Media Connect --> MsiExec.exe /I{F6869CD2-3DB4-476D-A4C7-B3AE7C3ACF7B} WinZip --> "C:\Program Files\WinZip\WINZIP32.EXE" /uninstall World of Warcraft --> C:\Program Files\Common Files\Blizzard Entertainment\World of Warcraft\Uninstall.exe XP Codec Pack --> C:\Program Files\XP Codec Pack\Uninstall.exe Xylobot v1.0.0.83 --> "C:\Program Files\Xylobot\unins000.exe" Yahoo! Browser Services --> C:\PROGRA~1\Yahoo!\Common\unyext.exe Yahoo! Internet Mail --> C:\WINDOWS\system32\regsvr32 /u /s C:\PROGRA~1\Yahoo!\Common\YMMAPI~1.DLL Yahoo! Toolbar --> C:\PROGRA~1\Yahoo!\Common\unyt.exe Zelda Classic 2.10w --> C:\Program Files\ZC2.10\uninstall.exe -- Application Event Log ------------------------------------------------------- Event Record #/Type5001 / Error Event Submitted/Written: 01/05/2008 10:15:46 PM Event ID/Source: 11 / crypt32 Event Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file. Event Record #/Type5000 / Error Event Submitted/Written: 01/05/2008 10:15:46 PM Event ID/Source: 11 / crypt32 Event Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file. Event Record #/Type4989 / Error Event Submitted/Written: 01/05/2008 04:56:35 PM Event ID/Source: 1002 / Application Hang Event Description: Hanging application firefox.exe, version 1.8.20071.12718, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Event Record #/Type4987 / Error Event Submitted/Written: 01/05/2008 02:38:34 AM Event ID/Source: 11706 / MsiInstaller Event Description: Product: Microsoft Office 2000 Standard -- Error 1706. No valid source could be found for product Microsoft Office 2000 Standard. The Windows installer cannot continue. Event Record #/Type4986 / Warning Event Submitted/Written: 01/05/2008 02:33:34 AM Event ID/Source: 1001 / MsiInstaller Event Description: Detection of product '{00020409-78E1-11D2-B60F-006097C998E7}', feature 'ProductNonBootFiles' failed during request for component '{CC29EA5B-7BC2-11D1-A921-00A0C91E2AA2}' -- Security Event Log ---------------------------------------------------------- No Errors/Warnings found. -- System Event Log ------------------------------------------------------------ Event Record #/Type34069 / Warning Event Submitted/Written: 01/05/2008 11:40:39 PM Event ID/Source: 4226 / Tcpip Event Description: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts. Event Record #/Type34068 / Warning Event Submitted/Written: 01/05/2008 10:15:09 PM Event ID/Source: 4226 / Tcpip Event Description: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts. Event Record #/Type34038 / Warning Event Submitted/Written: 01/05/2008 07:49:04 PM Event ID/Source: 4226 / Tcpip Event Description: TCP/IP has reached the security limit imposed on the number of concurrent TCP connect attempts. Event Record #/Type34034 / Error Event Submitted/Written: 01/05/2008 07:06:39 PM Event ID/Source: 7000 / Service Control Manager Event Description: The SASDIFSV service failed to start due to the following error: %%183 Event Record #/Type34003 / Warning Event Submitted/Written: 01/05/2008 07:36:51 AM Event ID/Source: 36 / W32Time Event Description: The time service has not been able to synchronize the system time for 49152 seconds because none of the time providers has been able to provide a usable time stamp. The system clock is unsynchronized. -- End of Deckard's System Scanner: finished at 2008-01-06 15:47:25 ------------ |
| oldman:
I would say you are good to go. Time to clean up the tools you used. Clcik start button, click run, copy and paste the following line into the box and click ok. combofix /u Please download OTMoveIt by OldTimer. Save it to your desktop and double-click OTMoveIt.exe to run it, then click the Clean Up button. You may get prompted by your firewall that OTMoveIt wants to contact the internet - allow this. A cleanup.txt will be downloaded, a message dialog will ask you if you want to proceed with the cleanup process, click Yes. This will delete all the tools you have downloaded plus itself. ps. the clean up program I had you download will remain, keep it and use it :) Create a new restore point You must be logged on to an administrator account Go to Start - All Programs - Accessories - System Tools - System Restore. Click Create a restore point, and then click Next. In the text box labeled Restore Point Description, type a name for this restore point , click create Remove old restore points Disk Cleanup - Go to Start - All Programs - Accessories - system tools. Launch the Disk Cleanup tool and let it run. When it finishes a box with tabs will appear, select the more options tab. On this tab you will find a section for System Restore. If you press the Clean Up button for that section, Windows will delete all restore points except for the most recent one. It looks like you are using windows firewall. It doesn't provide outbound protection. A third party firewall will. A discussion on free firewalls can be found here. http://forum.avast.com/index.php?topic=30808.0 |
| ltdanman44:
tks for all the help |
| oldman:
You're welcome, keep safe. |
| Navigation |
| Message Index |
| Previous page |