Author Topic: Logfile of Trend Micro HijackThis v2.0.2  (Read 12868 times)

0 Members and 1 Guest are viewing this topic.

sham1313

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #15 on: June 27, 2009, 05:59:08 PM »
i am going back and rereading every thing. i do this every time. it take awhile for me to remember what i am reading and learn how to use it.
the url you sent i get almost every question i have ask and i do spend a lot of time there reading and trying to understanding.
      i did not thing there was any thing any thing was wrong with the log that i sent a few line only to try to learn what i can and canot delete. if i though there might be trouble i would have posted a full log at the begining. i  was surpized that every one thought i was having trouble. like i said before i did not think there was a problem. do you see someting i missed that might be trouble?
thanks Sharon



:)  Hi :

 In order to determine IF certain portions of a HijackThis log should be "fixed"
 ( what HijackThis generally would be considered "Deleted" ), the entire Log
 should be Posted so all Items can be viewed in context .
 Years ago, when I switched ISPs, I did a Windows "Search" and based on its
 Findings, I "deleted" ( right-clicked on the Entry ) all that the 'search" found.
 In my case, that was AOL, so I did a Windows "Search" using "AOL" and later
 "America Online" and "deleted" all "Items" found"; in your case, it MAY mean
 doing a Windows "Search" using the terms "Netzero" and later "bluelight" and
 right-clicking on all "Items" found !?

 A "Begineer's Guide" on interpreting a HijackThis log can be found at
 www.bleepingcomputer.com/tutorials/tutorial42.html .

 To go further, you would enroll in a "Malware Removal Course" and
 "Malware University" would be my Choice .

Spiritsongs

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #16 on: June 27, 2009, 09:56:46 PM »
 :)  Hi Sharon :

 You do NOT post a "full" HijackThis log ONLY if you think there may be
 "trouble" or something "wrong", but to provide a more through look at what is
 on a computer ; when you post a HijackThis log on a Malware Removal Forum
 such as Bleepingcomputer, their Experts FOCUS their attention on the
 portions that lead to malware removal and leave the more optional portions
 for someone else. By posting the "full" log now, what caught my attention is :
 "O15 - Trusted Zone: *.mybluelight.com
O15 - Trusted Zone: *.mybluelight.net "

 This shows at least one of the "areas" that you spoke about ; the "Begineer's
 Guide" I spoke about says the following about the "Trusted Zone" portion of
 a Log :
"There is a security zone called the Trusted Zone. This zone has the lowest security and allows scripts and applications from sites in this zone to run without your knowledge. It is therefore a popular setting for malware sites to use so that future infections can be easily done on your computer without your knowledge as these sites will be in the Trusted Zone.. "

 and later on, it says :
"I personally remove all entries from the Trusted Zone as they are ultimately unnecessary to be there. "

 I am of the computer "philosophy" of having NOTHING in the "Trusted Zone"
 section of a computer and would recommend you do likewise, either by having
 HijackThis "Fix" those 2 "Lines" or by going to the "Trusted Zone" section of
 your computer and "Deleting/Removing" those 2 Listings .

 In you Log, I also saw the unnecessary "Bonjour/mDNSResponder" Service
 which you could read about in some of my Posts on this Forum IF you use
 the "search" function !?

 This is about making minor "adjustments" to your computer, to make it more
 secure and less troublesome .




sham1313

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #17 on: June 28, 2009, 05:50:22 AM »
with the opera browser i am not sure where to fine that setting. i can fine it in the IE 7 my husband user's. it is set on the half way mark saying medium. that is the only place i see the trusted sites. should i mover it higher to restrick more site to view. bluelight is my main e-mail. there should be no more bluelight on this computer. next time i ask a question about the log i will post it all because common sense Say's it would be the right way to ask and get prober help.
 :) thanks Sharon

Spiritsongs

  • Guest
"Trusted Zone"
« Reply #18 on: June 28, 2009, 09:49:49 PM »
 :)  Hi Sharon :

 You will notice that near the top of the HijackThis Log, it says :
 "MSIE: Internet Explorer v8.00", so that means the "Trusted Zone" Info in the
 Log ONLY pertains to IE . I would recommend you move the slider from
 "Medium" to "Medium High", which is the One I use . It still would be wise to
 go into IE's "Trusted Sites" and remove those 2 Bluelight Entries . I use Yahoo
 and Hotmail for my email and neither "Yahoo" or "Hotmail/MSN" are in my
 "Trusted Sites" and "Bluelight" should NOT be in yours either .

sham1313

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #19 on: June 30, 2009, 03:00:17 PM »
most of the time i use opera to check my mail at bluelight.  does opera have a setting like that. and thank you i will delete the bluelight in hj. can I delete the netzero in the HJ too.
 I did not have a chance to get on the computer yesterday.
thanks Sharon

sham1313

  • Guest
Re: "Trusted Zone"
« Reply #20 on: June 30, 2009, 05:57:52 PM »
        I don't remember witch one to click on to delete the bluelight and the netzero from the HJ I see where to click to fix but not delete. also  the IE 7  was on med and I moved it to med high. where do I click to delete in the HJ?
Thanks Sharon

:)  Hi Sharon :

 You will notice that near the top of the HijackThis Log, it says :
 "MSIE: Internet Explorer v8.00", so that means the "Trusted Zone" Info in the
 Log ONLY pertains to IE . I would recommend you move the slider from
 "Medium" to "Medium High", which is the One I use . It still would be wise to
 go into IE's "Trusted Sites" and remove those 2 Bluelight Entries . I use Yahoo
 and Hotmail for my email and neither "Yahoo" or "Hotmail/MSN" are in my
 "Trusted Sites" and "Bluelight" should NOT be in yours either .

Spiritsongs

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #21 on: June 30, 2009, 08:17:17 PM »
 :)  Hi Sharon :

 To use HJT to "fix"/"delete" Items in the Log, you follow what it says in the
 "Beginner's Guide" :

 "Once you have selected the items you would like to remove, press the Fix Checked button, designated by the blue arrow, in Figure 6. HijackThis will then prompt you to confirm if you would like to remove those items. Press Yes or No depending on your choice. "

sham1313

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #22 on: July 01, 2009, 03:59:14 PM »
in my last post I type that I click fixed. it did it thing very quick but no promp came up. I have done the HJ a few times in the last couple of month and thought I was right when I click fixed but no promp came up. I  just did it again and the promp came up this time. I wander why it did not do the promp the last time. now  the bluelight and the netzero our gone. thanks for your help.
Sharon  :)

Offline Abraxas

  • Avast Evangelist
  • Advanced Poster
  • ***
  • Posts: 730
  • Perseverance Furthers...
    • PCLinuxOS-Forums
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #23 on: July 01, 2009, 05:13:23 PM »
I must poke my nose in here sham1313 and say, "If in doubt do nothing" :)

Before doing anything further it would be wise to make a backup of your registry with ERUNT
sham1313 if your seriously wanting your HijackThis log to be checked may I suggest a thorough analysis .
HijackThis Logs and Virus/Trojan/Spyware/Malware Removal

HijackThis is not the ultimate Malware removal tool, or a tweak tool, it is a general guide to certain important locations on your computer. There are further programs a Malware Expert would most likely use once reading your INITIAL HJT log .





sham1313

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #24 on: July 01, 2009, 07:08:25 PM »
      at the beginning I thought I ask a simple question witch was there was a couple of things in the HJ that were netzero witch had to come from my bluelight mail sending me ads from netzero witch use to be my ISP. now I am glad to say I have ATT. I had just posted the netzero  sites and and the ones that had no file and no names. I ask if those could be deleted witch in the other HJ I had got help with from here and bleepingcomputers.com had deleted all the netzero and some that had no names and no files. I did not thing I had any problems and still don't. the responce I got I thought maybe in the few lines I posted they might have seen some thing I did not. then I was explain I should even with the question I ask that I should have posted the full HJ. so I  did them I was told I should fix and or delete the bluelight that  was in my trusted zone and it would be best not to have any thing in my trusted zone. witch I don't now as will as I deleted the netzero ads as well.
         when I had netzero and at the time was using AVG virus scanner. I was having all kinds of trouble. when I unstalled them and went to using ATT as a ISP an avast virus scanner. it took a while getting rid of all the netzero and  AVG even with  using both the removal tools for both OF them I. I thought I had every working right and going fine. I was just wanting to stay on top of things by fining out if I should delete the netzero from the HJ when bluelight sent me one of there ads. I can't report it as junk because it is being sent by my main mail witch is bluelight.
        if you care to look at HJ it is on pg 1 or I could post a new one sense I deleted the bluelight and the netzero I will. if you think I should get it check out better I would either go back too bleepingcomputers.com where they have help me before when I made a big mistake and downloaded not 1 but 4 rogue programs that I thought were suppose to help with the computer. when I found out they were rouge of course I had to go threw all the necessary things to do to get rids of them that is what i have been doing for the last couple of month. I could also try the site you suggested.
     I am telling you this so you or any one can tell me if I have any thing I need to worry about or not. I will state one more time because some times people have a very hard time understanding me. I am could at explane when I  talk to people but in writing it down on paper it just does not always come out the same way. I did not thing I was having any trouble just wanted to try to stay on top of things by getting rid of some things like netzero that has cause me problems in the past.
 all advice I am willing to listen to. so i can try to learn more in the prober way about computers.
thanks Sharon please also let me know if I explane it right and clear enough thanks again :) :)

Offline Abraxas

  • Avast Evangelist
  • Advanced Poster
  • ***
  • Posts: 730
  • Perseverance Furthers...
    • PCLinuxOS-Forums
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #25 on: July 02, 2009, 09:27:05 PM »
Quote
I can't report it as junk because it is being sent by my main mail witch is bluelight.
You can "Unsubscribe" to any email .  ;)
Quote
I did not thing I was having any trouble just wanted to try to stay on top of things by getting rid of some things like netzero that has cause me problems in the past.
If your not having any trouble leave well enough alone  ;)

Run a Avast! scan and if it says all is o.k. great.  :)

sham1313

  • Guest
Re: Logfile of Trend Micro HijackThis v2.0.2
« Reply #26 on: July 03, 2009, 01:38:29 AM »
there is no place in the email they send to unscribe. my husband says on the junk mail he gets he  don't unscribe because he things  if you do they will even send you more junk mail.
thanks for your help and other then deleting the netzero and the bluelight in the trusted zone and don't plan on doing any thong els.
thanks Sharon