Our November Competition
User Reviews - Add Yours!
The PCHF Lounge
Go Back   PC Help Forum » Security & Safety » [Fixed] Hijackthis! Logs
Register for a Free Account

[Fixed] Hijackthis! Logs - [Fixed] msmo again.. posted in the Security & Safety forums; Genie your a devil for punishment but I thank you Do you have my original enquiry ? Basically the problem appears to be in the worm thats atatched itself to ...


Reply
Free PC Performance Scan
Old 10-26-2006   #1
PCHF $ Donor
 
Join Date: Aug 2006
Posts: 43
Smile [Fixed] msmo again..

Genie your a devil for punishment but I thank you

Do you have my original enquiry ?
Basically the problem appears to be in the worm thats atatched itself to my outgoing e-mails. Im afraid to mail anyone now. I passed all my mail into Icredimail, dont know if thats wise. but outlook seems to be the problem, so I emptied it..is that alright do you think ? Of course now I realise that I proberbly transfered an Infected e-mail also..wow what a mess, seems to worse during office hours actually, it didnt do badly tonight,,so far..
over to you..I did go that site you sent to me..bluescreen ? is thats whats happening here you think ?
The other thing is I defrag and it tells me that certain files cant be defraged..is that normal..the PC is almost new and runs fast enough..Im at a loss..I scan and scan with Msfee, spywaredoctor,avast..defrag constantly and everthing is up to date..what more can I do ?
msmo is offline   Reply With Quote
Advertisement - Register to Remove
Old 10-26-2006   #2
Elite Member
 
Join Date: May 2006
Location: New Brunswick,Canada
Posts: 625
Default

hey msmo, can you follow the prework in my signature and post back the avgas and hijackthis log so the security team can take a look at your logs and get your pc clean

and again sorry for all the trouble that i have caused

genie3251
genie3251 is offline   Reply With Quote
Old 10-26-2006   #3
PCHF $ Donor
 
Join Date: Aug 2006
Posts: 43
Default To you genie..msmo

Spyware Doctor Activity Report
Generated on 26/10/2006 16:02:45 Spyware Doctor Homepage PC Tools Homepage Technical Support


Scans (basic information only):

Scan Results:
scan start: 26/10/2006 17:02:07
scan stop: 26/10/2006 17:12:29
scanned items: 132142
found items: 14
found and ignored: 0
tools used: General Scanner, Process Scanner, LSP Scanner, Startup Scanner, Registry Scanner, Hosts Scanner, Browser Scanner, Browser Activity Scanner, Disk Scanner, ActiveX Scanner



Infection Name Location Risk
Worm.Opnis C:\WINDOWS\system32\lhdptnzptd.exe High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Cookies\maureen kimbell@banner.32vegas[2].txt High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\9Z6R6JQH\CAGHEZKT.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\9Z6R6JQH\CAU7WP05.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\9Z6R6JQH\flashwrite_1_2[1].js High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\EJ6JMXUB\CA104JL5.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\EJ6JMXUB\CAGDQ7G1.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\G767QBUZ\1x1[1].gif High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\G767QBUZ\8984170-18[1] High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\G767QBUZ\CAOLMNSP.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\UKXFF21N\1-generic_468x60[1].gif High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\W9OLQFST\CA1TNNEW.swf High
Worm.Opnis D:\System Volume Information\_restore{5FED904E-6E1E-4B49-8681-D5C017BB5784}\RP97\A0008755.exe High
Worm.Opnis D:\System Volume Information\_restore{5FED904E-6E1E-4B49-8681-D5C017BB5784}\RP97\A0008756.pif High

Scan Results:
scan start: 26/10/2006 17:20:18
scan stop: 26/10/2006 17:29:52
scanned items: 132211
found items: 1
found and ignored: 0
tools used: General Scanner, Process Scanner, LSP Scanner, Startup Scanner, Registry Scanner, Hosts Scanner, Browser Scanner, Browser Activity Scanner, Disk Scanner, ActiveX Scanner



Infection Name Location Risk
Worm.Opnis C:\WINDOWS\system32\lhdptnzptd.exe High

Scan Results:
scan start: 26/10/2006 19:00:00
scan stop: 26/10/2006 19:07:09
scanned items: 86522
found items: 6
found and ignored: 0
tools used: General Scanner, Process Scanner, LSP Scanner, Startup Scanner, Registry Scanner, Browser Scanner, Browser Activity Scanner, Disk Scanner, ActiveX Scanner



Infection Name Location Risk
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Cookies\maureen kimbell@banner.32vegas[1].txt High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\6F8ZGN0V\flashwrite_1_2[1].js High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\9Z6R6JQH\CAVFP5XP.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\9Z6R6JQH\CAW5613O.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\EHG7Y1I5\CAA1DD0M.swf High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\EHG7Y1I5\CALW4J5H.swf High

Scan Results:
scan start: 26/10/2006 21:19:01
scan stop: 26/10/2006 21:30:01
scanned items: 133491
found items: 16
found and ignored: 0
tools used: General Scanner, Process Scanner, LSP Scanner, Startup Scanner, Registry Scanner, Hosts Scanner, Browser Scanner, Browser Activity Scanner, Disk Scanner, ActiveX Scanner



Infection Name Location Risk
Worm.Opnis C:\WINDOWS\system32\lhdptnzptd.exe High
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Cookies\maureen kimbell@banner.32vegas[1].txt Low
Advertising D:\Documents and Settings\Maureen Kimbell\Cookies\maureen kimbell@www.burstnet[1].txt Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\6F8ZGN0V\CA32ORBX.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\EHG7Y1I5\CAS56Z4V.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\EJ6JMXUB\CAQ3OZVS.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\GHIPQ9IR\CAGZ2H2H.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\GHIPQ9IR\CANEQTNJ.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\GHIPQ9IR\flashwrite_1_2[1].js Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\KHGNC7GF\CA3IAPNN.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\KHGNC7GF\CAPSVQ73.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\PD7NQSYT\CA8PEJ8H.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\UKXFF21N\CAFUM1ZZ.swf Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\W9OLQFST\10393341-5[2].jpg Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\W9OLQFST\8984170-18[1] Low
Known Bad Sites D:\Documents and Settings\Maureen Kimbell\Local Settings\Temporary Internet Files\Content.IE5\W9OLQFST\flashwrite_1_2[1].js Low


Other Sections:







Copyright © 2003 PC Tools Research Pty Ltd. All rights reserved. Legal Notice



sigs



Click to go back
msmo is offline   Reply With Quote
Old 10-26-2006   #4
PCHF $ Donor
 
Join Date: Aug 2006
Posts: 43
Default

I will TRY Genie..dont hold you breath for a few hours maybe LOL..and YOU didnt do anything wrong..thanks for persevering (with your grandma )

hey..I have a grandaughter in Ontario..and I have visited..what a beautiful country you have byeeeeeee
msmo is offline   Reply With Quote
Old 10-26-2006   #5
PCHF $ Donor
 
Join Date: Aug 2006
Posts: 43
Default

Registry mechanic???? Is this right ?..there was no time or a selection for anything..it started working right away..It found 382 in all sections..now Im afraid to do anything..I dont have the options you suggested..should I just do nothing ?? and close the registry prograsm?? Im afraid of doing wrong ????
msmo is offline   Reply With Quote
Old 10-26-2006   #6
PCHF $ Donor
 
Join Date: Aug 2006
Posts: 43
Default

lean up temporary and unneccesary files and folders:

Please download ATF-Cleaner

And then run ATF-Cleaner:

First check "Select All" , and then remove the tick in front of "History".
After that click Empty Selected.
When you get the "Done Cleaning" message, click OK.

If you use Firefox or Opera as browser:
Click Firefox/Opera at the top, and Select Cookies and Cache from the list.
Click the Empty Selected button.

I didnt get these options..
msmo is offline   Reply With Quote
Old 10-26-2006   #7
PCHF $ Donor
 
Join Date: Aug 2006
Posts: 43
Default

Neither did I get a done cleaning message..help !!!!!!!!
msmo is offline   Reply With Quote

Reply


Bookmarks

Tags
fixed, msmo

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On




All times are GMT. The time now is 01:14 AM.
Powered by vBulletin
Copyright ©2000 - 2009, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.3.2