Hey there guys an gals..

I am having problems with my pc, I have suspected for a good while that there is something wrong on my pc, I am a long time user and know basically what I have picked up along the way. I have noticed some very strange things happening (to me at least they are strange) regarding net access via my firewall. I was browsing around and heard about HJT and thought I would give it a go, I read through a whole 2 page post of one guys problem but didnt really understand what was going on too much. I think that was more down to it being not my pc iue running tasks etc.

Please forgive my state of mind if it seems vague or anything, currntly under a bit of uneeded stress

here is my log which I received from HJT :


HJT log moved to attachment. -Ryan


If anyone has any input I would much appreciate it.

My apologies in advance if I have done something wrong or missed something.

Attached Files

oldboy_hjt.txt (4.3 KB, 2 views)

Hya Oldboy , welcome to PCHF.

There is nothing wrong showing in youre hjt log. Can you describe the problems you are having some more?

Logged in as oldboy

You are not logged in or you do not have permission to access this page. This could be due to one of several reasons:

I think the cookie timed out, but all that I have just typed has now disappeared.

I will rewrite it and repost..

So this time I will keep it short and more precise.

ZA FW shows 8000 attacks 600 of which are high rated.

Jpgs that require server access via SVCHOST (very irregularly)

Jpgs that show a fuller image on the thumb yet theres nothing apparently missing from the image other than the extra bottom part on the said thumb.

SVCHOST connections to 10.6.0.1 if I plug out my modem and reinsert.

Yahoo booting .. I am using java build 3085 with MS updated VM - as I dont trust y-tunnel or any other client and the newer versions of java dont support voice in chat, I am on the verge of stopping going to my faourite room which I have frequented for some 7 years now but the biggest reason has to be the ignorance of YAHOO regarding booting..but ultimately the voice laggers are killing me. And yahoo support it by way of ignoring that it happens.

Messages on msn that appear from one user in another users window eg USER 1 shows USER 2's failed file send (possibly an msn fault i realise)

They say my best advancement would be to use my pc which I try to create things on without a net connection and build another pc for strictly net usage. I cant afford to do this and really would like to know why the heck the poorman loses again...forgive my outburst there, it is obviously not pointed at you :coffee2:

As vague as my information seems, I am at my wits end with the internet, I dont feel secure and would like to see some of these rocket scientists actually deal with the problem and done. So you guys can properly take control of what you care about, I mean time will continue regardless and it seems to me the problem is just gonna get more out of control.

LOL , thats nothing. 5570211 attacks and 14465 high rated over here. :icon_joke (yes , its been a looooong time since my last format)



Lets see if Spysweeper finds anything.

Please download and install the trial version of Webroot SpySweeper (8.3mg)
http://www.webroot.com/shoppingcart/...011&vcode=DT02

When SpySweeper starts, please accept any prompts to update definitions.
Configure it as follows:

From the left pane, click Options
Select the Sweep Options tab & ensure the following are ticked:

*Sweep Memory
*Sweep Registry
*Sweep Cookies
*Sweep All Users accounts
*Do Not Sweep System Restore Folder
*Enable Direct Disk Sweeping
*Sweep contents of compressed files
*Sweep For Rootkits

-After that's done, select Sweep from the left pane & click on the Start button

Allow Spysweeper to reboot your machine to remove the infected files.
After rebooting, launch SpySweeper & select Results from the left pane
Click the 'Session Log' tab & choose Save to File to create a log.

Post that log please.

I have just installed and set options...running it now.

Wondering if i should do this offline but think it makes little difference, still.

Yeah that count is within a week, my pc died a sad death before i redone my "affected" mobo bios and got my pc up and running again...why it died..i have likkle idea...brb with these results for you.

again thanks for your help, I and the internet really do appreciate it.

Here is the log, I suspect the sweep didnt complete.

********
16:40: | Start of Session, 21 January 2006 |
16:40: Spy Sweeper started
16:40: Sweep initiated using definitions version 604
16:40: Starting Memory Sweep
16:43: Memory Sweep Complete, Elapsed Time: 00:02:48
16:43: Starting Registry Sweep
16:43: Registry Sweep Complete, Elapsed Time:00:00:13
16:43: Starting Cookie Sweep
16:43: Found Spy Cookie: 2o7.net cookie
16:43: oldboy@2o7[2].txt (ID = 1957)
16:43: Found Spy Cookie: yieldmanager cookie
16:43: oldboy@ad.yieldmanager[1].txt (ID = 2751)
16:43: Found Spy Cookie: pointroll cookie
16:43: oldboy@ads.pointroll[2].txt (ID = 2148)
16:43: Found Spy Cookie: advertising cookie
16:43: oldboy@advertising[1].txt (ID = 1175)
16:43: Found Spy Cookie: atlas dmt cookie
16:43: oldboy@atdmt[2].txt (ID = 1253)
16:43: Found Spy Cookie: belnk cookie
16:43: oldboy@ath.belnk[2].txt (ID = 1293)
16:43: Found Spy Cookie: a cookie
16:43: oldboy@a[1].txt (ID = 1027)
16:43: oldboy@belnk[1].txt (ID = 1292)
16:43: Found Spy Cookie: overture cookie
16:43: oldboy@data4.perf.overture[1].txt (ID = 2106)
16:43: oldboy@dist.belnk[2].txt (ID = 1293)
16:43: Found Spy Cookie: adbureau cookie
16:43: oldboy@etype.adbureau[1].txt (ID = 1060)
16:43: oldboy@overture[2].txt (ID = 2105)
16:43: oldboy@perf.overture[1].txt (ID = 2106)
16:43: Found Spy Cookie: questionmarket cookie
16:43: oldboy@questionmarket[1].txt (ID = 2217)
16:43: Found Spy Cookie: serving-sys cookie
16:43: oldboy@serving-sys[2].txt (ID = 2343)
16:43: Found Spy Cookie: statcounter cookie
16:43: oldboy@statcounter[2].txt (ID = 2447)
16:43: Cookie Sweep Complete, Elapsed Time: 00:00:00
16:43: Starting File Sweep
17:40: Warning: Unhandled Archive Type
18:00: Warning: Invalid Stream
18:00: Warning: Invalid Stream
18:00: Warning: Invalid Stream
18:00: Warning: Invalid Stream
18:00: File Sweep Complete, Elapsed Time: 01:16:50
18:00: Full Sweep has completed. Elapsed time 01:19:11
18:00: Traces Found: 16
18:07: Removal process initiated
18:07: Quarantining All Traces: 2o7.net cookie
18:07: Quarantining All Traces: a cookie
18:07: Quarantining All Traces: adbureau cookie
18:07: Quarantining All Traces: advertising cookie
18:07: Quarantining All Traces: atlas dmt cookie
18:07: Quarantining All Traces: belnk cookie
18:07: Quarantining All Traces: overture cookie
18:07: Quarantining All Traces: pointroll cookie
18:07: Quarantining All Traces: questionmarket cookie
18:07: Quarantining All Traces: serving-sys cookie
18:07: Quarantining All Traces: statcounter cookie
18:07: Quarantining All Traces: yieldmanager cookie
18:07: Removal process completed. Elapsed time 00:00:02
********
16:37: | Start of Session, 21 January 2006 |
16:37: Spy Sweeper started
16:38: Your spyware definitions have been updated.
16:40: | End of Session, 21 January 2006 |



***18:00: Warning: Invalid Stream
***18:00: Warning: Invalid Stream
***18:00: Warning: Invalid Stream
***18:00: Warning: Invalid Stream