Please analyze my hijackthis log

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by greenbmw530i, Dec 16, 2004.

  1. greenbmw530i

    greenbmw530i Private E-2

    Ok, so, I've used the usualy Ad-Aware and what-not, but i still get these random (not IE generated pop-ups).

    and, ad-aware catches it, but it still appears when i reboot my machine.

    here's my log, tell me anything and everything thats funky please
     

    Attached Files:

    Last edited by a moderator: Dec 16, 2004
    greenbmw530i, Dec 16, 2004
    #1
  2. PhilliePhan

    PhilliePhan Guest

    Hi Greenbmw530i,

    I suggest that you Uninstall Virtual Bouncer via Add/Remove Programs.

    These are the items that jump out at me from your log:

    C:\WINDOWS\System32\catthk32.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://www.popupsearches.com/sidesearch.html

    R3 - Default URLSearchHook is missing

    O2 - BHO: SDWin32 Class - {40FFEEF7-F593-40CB-912E-6024CD4DAE78} - C:\WINDOWS\System32\fpzgw.dll (file missing)

    O2 - BHO: SDWin32 Class - {9F3CD728-1069-463E-A5AD-2B8B347CD414} - C:\WINDOWS\System32\rfbwm.dll (file missing)

    O4 - HKLM\..\Run: [Yantert] C:\WINDOWS\bruzmoh.exe

    O4 - HKLM\..\Run: [VBouncer] C:\PROGRA~1\VBouncer\VirtualBouncer.exe

    O4 - HKCU\..\Run: [Jwq7Rgd5Q] catthk32.exe

    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)

    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)


    Here is the canned speech:
    Generally, it is a good idea to start with the Cleanup Tutorial HERE:
    READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan and Virus Removal

    There are only a few of us Volunteers who regularly offer advice in this forum. Running through the above Tutorial will remove a lot of stuff that would otherwise clog a HijackThis Log and save us valuable time.

    Please let us know the steps that you are able to complete and the ones that give you problems. Note that you need to be in Safe Mode with System Restore OFF (if you have it - you didn't give OS) and have the Viewing of Hidden Files ENABLED as per the instructions in the link. Make sure to do the Online Scans.

    Post back and let us know how you fared. Also, send us a HijackThis Log. Be sure to follow the instructions below:

    Note that your HijackThis should be up-to-date (v1.99) and MUST be extracted to its own safe folder – C:\Program Files\HijackThis!

    If you need a Fresh Download of HJT, get it HERE: HijackThis v1.99

    Also note that, before you scan, you MUST close all running programs including your web browser, e-mail and items in the system tray.

    **Please save your HJT Log as a .txt File and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

    I’ve been pretty busy with work lately, but somebody will try to take a look when they get a chance.

    Best luck :)
    PP
     
    PhilliePhan, Dec 16, 2004
    #2

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds