| Forum Home | ||||
| Press F1 | ||||
| Thread ID: 128965 | 2013-01-25 23:04:00 | computer is insane ,_ | Vince (406) | Press F1 |
| Post ID | Timestamp | Content | User | ||
| 1324928 | 2013-01-25 23:04:00 | Here is a Hijack this log file, hope you can help. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 11:38:02 a.m., on 26/01/2013 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe F:\Program Files\Comodo\COMODO\COMODO Internet Security\cmdagent.exe C:\WINDOWS\system32\svchost.exe F:\Program Files\Tools\Avast Antivirus\AvastSvc.exe C:\WINDOWS\Explorer.EXE F:\Program Files\Tools\Ava Find\AvaFind.exe F:\Program Files\Comodo\COMODO\COMODO Internet Security\cfp.exe C:\WINDOWS\system32\spoolsv.exe F:\PROGRA~1\SYSTEM~1\WScheduler.exe C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe F:\Program Files\Tools\Avast Antivirus\avastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe F:\Program Files\Tools\TaskBar Shuffle\Taskbar Shuffle\taskbarshuffle.exe F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe F:\Program Files\IObit SmartDefrag\Smart Defrag 2\SmartDefrag.exe F:\Program Files\FreeCountdownTimer\FreeCountdownTimer.exe C:\Program Files\Skype\Phone\Skype.exe F:\PROGRA~1\Tools\Cacheman\CACHEM~1\CachemanXP.exe F:\Program Files\AZZ CARDFILE\azzCardfile\azzCardfile.exe F:\Program Files\Click-n-Type\Click-N-Type.exe C:\WINDOWS\System32\CTsvcCDA.exe C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler. exe F:\Program Files\Password Safe\pwsafe.exe F:\Program Files\Todo Backup\Todo Backup\bin\Agent.exe F:\Program Files\Todo Backup\Todo Backup\bin\GuardAgent.exe C:\Program Files\Java\jre7\bin\jqs.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\MsPMSPSv.exe F:\Program Files\Chameleon Clock\ChamClock.exe C:\Program Files\Microsoft Works\WksDB.exe C:\Program Files\Microsoft Works\MSWorks.exe C:\WINDOWS\SYSTEM32\SOL.EXE C:\WINDOWS\SYSTEM32\FREECELL.EXE C:\WINDOWS\SYSTEM32\spider.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\NOTEPAD.EXE C:\WINDOWS\system32\wuauclt.exe F:\Program Files\Firefox\firefox.exe F:\Program Files\Firefox\plugin-container.exe F:\Program Files\Mozilla Thunderbird\thunderbird.exe C:\WINDOWS\Explorer.EXE H:\EXE FILES\TOOLS and UTILITYS\HiJackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = g.xtramsn.co.nz R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = go.microsoft.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = go.microsoft.com R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = go.microsoft.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - F:\Program Files\Canon Printer\Easy-WebPrint\EWPBrowseLoader.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - F:\Program Files\Tools\Avast Antivirus\aswWebRepIE.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - F:\Program Files\Canon Printer\Easy-WebPrint\Toolband.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - F:\Program Files\Tools\Avast Antivirus\aswWebRepIE.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [AvaFind] F:\Program Files\Tools\Ava Find\AvaFind.exe /minimized O4 - HKLM\..\Run: [COMODO Internet Security] "F:\Program Files\Comodo\COMODO\COMODO Internet Security\cfp.exe" -h O4 - HKLM\..\Run: [LWS] C:\Program Files\Logitech\LWS\Webcam Software\LWS.exe -hide O4 - HKLM\..\Run: [WScheduler] F:\PROGRA~1\SYSTEM~1\WScheduler.exe /LOGON O4 - HKLM\..\Run: [avast] "F:\Program Files\Tools\Avast Antivirus\avastUI.exe" /nogui O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming O4 - HKLM\..\Run: [DWQueuedReporting] "C:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t O4 - HKCU\..\Run: [Taskbar Shuffle] F:\Program Files\Tools\TaskBar Shuffle\Taskbar Shuffle\taskbarshuffle.exe O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [FreeCT] F:\Program Files\FreeCountdownTimer\FreeCountdownTimer.exe -autorun O4 - HKCU\..\Run: [Xvid] C:\Program Files\Xvid\CheckUpdate.exe O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-21-147154750-2098032870-524798645-500\..\Run: [Sonic RecordNow!] (User 'Administrator') O4 - HKUS\S-1-5-21-147154750-2098032870-524798645-500\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User 'Administrator') O4 - HKUS\S-1-5-18\..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x0825 -f video -m logitech -d 13.25.1014.0 (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [WUAppSetup] C:\Program Files\Common Files\logishrd\WUApp32.exe -v 0x046d -p 0x0825 -f video -m logitech -d 13.25.1014.0 (User 'Default user') O4 - Startup: azzCardfile.lnk = F:\Program Files\AZZ CARDFILE\azzCardfile\azzCardfile.exe O4 - Startup: Click-N-Type.LNK = F:\Program Files\Click-n-Type\Click-N-Type.exe O4 - Startup: Password Safe.lnk = F:\Program Files\Password Safe\pwsafe.exe O4 - Global Startup: Mozilla Firefox.lnk = F:\Program Files\Firefox\firefox.exe O4 - Global Startup: Mozilla Thunderbird.lnk = F:\Program Files\Mozilla Thunderbird\thunderbird.exe O8 - Extra context menu item: Easy-WebPrint Add To Print List - res://F:\Program Files\Canon Printer\Easy-WebPrint\Toolband.dll/RC_AddToList.html O8 - Extra context menu item: Easy-WebPrint High Speed Print - res://F:\Program Files\Canon Printer\Easy-WebPrint\Toolband.dll/RC_HSPrint.html O8 - Extra context menu item: Easy-WebPrint Preview - res://F:\Program Files\Canon Printer\Easy-WebPrint\Toolband.dll/RC_Preview.html O8 - Extra context menu item: Easy-WebPrint Print - res://F:\Program Files\Canon Printer\Easy-WebPrint\Toolband.dll/RC_Print.html O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - F:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing) O14 - IERESET.INF: START_PAGE_URL=http://www.paradise.net.nz/ O16 - DPF: ppctlcab - O16 - DPF: {01FE8D0A-51AD-459B-B62B-85E135128B32} - O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} - O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - O16 - DPF: {19E28AFC-EAE3-4CE5-AC83-2407B42F57C9} (MSSecurityAdvisor Class) - O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} - O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} - O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} - O16 - DPF: {2FC9A21E-2069-4E47-8235-36318989DB13} - O16 - DPF: {3451DEDE-631F-421C-8127-FD793AFC6CC8} - O16 - DPF: {44990200-3C9D-426D-81DF-AAB636FA4345} - O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} - O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} - O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - www.update.microsoft.com O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} - O16 - DPF: {9B03C5F1-F5AB-47EE-937D-A8EDA626F876} - O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} (ActiveDataInfo Class) - O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} - O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpda teService.exe O23 - Service: avast! Antivirus - AVAST Software - F:\Program Files\Tools\Avast Antivirus\AvastSvc.exe O23 - Service: AVEPCOYVYOKME - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\AVEPCOYVYOKME.e xe (file missing) O23 - Service: BJDW - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\BJDW.exe (file missing) O23 - Service: CachemanXP (CachemanXPService) - Outertech - F:\PROGRA~1\Tools\Cacheman\CACHEM~1\CachemanXP.exe O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - F:\Program Files\Comodo\COMODO\COMODO Internet Security\cmdagent.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\System32\CTsvcCDA.exe O23 - Service: DGRPGF - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\DGRPGF.exe (file missing) O23 - Service: EaseUS Agent Service (EaseUS Agent) - CHENGDU YIWO Tech Development Co., Ltd - F:\Program Files\Todo Backup\Todo Backup\bin\Agent.exe O23 - Service: GFK - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\GFK.exe (file missing) O23 - Service: Guard Agent Service (Guard Agent) - CHENGDU YIWO Tech Development Co., Ltd - F:\Program Files\Todo Backup\Todo Backup\bin\GuardAgent.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: HHBBYQGCDZ - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\HHBBYQGCDZ.exe (file missing) O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\Program Files\Java\jre7\bin\jqs.exe O23 - Service: KTID - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\KTID.exe (file missing) O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: LHCFBI - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\LHCFBI.exe (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: PRJDHPYM - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\PRJDHPYM.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe O23 - Service: UMVPFSrv - Logitech Inc. - C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe O23 - Service: YPPNSYUZIEB - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\YPPNSYUZIEB.exe (file missing) O23 - Service: YXNJIBZ - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\YXNJIBZ.exe (file missing) -- End of file - 14042 bytes |
Vince (406) | ||
| 1324929 | 2013-01-25 23:17:00 | I would run ccleaner on it, there's a few suss files in the temp folder O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) I would uninstall Java for the time being O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [SpybotSD TeaTimer] F:\Program Files\Spybot - Search & Destroy\TeaTimer.exe FF and TB dont have to run on startup O4 - Global Startup: Mozilla Firefox.lnk = F:\Program Files\Firefox\firefox.exe O4 - Global Startup: Mozilla Thunderbird.lnk = F:\Program Files\Mozilla Thunderbird\thunderbird.exe O16 - DPF: {01FE8D0A-51AD-459B-B62B-85E135128B32} - O16 - DPF: {0E8D0700-75DF-11D3-8B4A-0008C7450C4A} - O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - O16 - DPF: {2359626E-7524-4F87-B04E-22CD38A0C88C} - O16 - DPF: {2BC66F54-93A8-11D3-BEB6-00105AA9B6AE} - O16 - DPF: {2E28242B-A689-11D4-80F2-0040266CBB8D} - O16 - DPF: {2FC9A21E-2069-4E47-8235-36318989DB13} - O16 - DPF: {3451DEDE-631F-421C-8127-FD793AFC6CC8} - O16 - DPF: {44990200-3C9D-426D-81DF-AAB636FA4345} - O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} - O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} - O16 - DPF: {74D05D43-3236-11D4-BDCD-00C04F9A3B61} - O16 - DPF: {9B03C5F1-F5AB-47EE-937D-A8EDA626F876} - O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} - O16 - DPF: {E77C0D62-882A-456F-AD8F-7C6C9569B8C7} - I think this has or had malware on it. Whatever they are, they shouldnt run from the temp folder or have a service O23 - Service: AVEPCOYVYOKME - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\AVEPCOYVYOKME.e xe (file missing) O23 - Service: BJDW - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\BJDW.exe (file missing) O23 - Service: DGRPGF - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\DGRPGF.exe (file missing) O23 - Service: GFK - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\GFK.exe (file missing) O23 - Service: HHBBYQGCDZ - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\HHBBYQGCDZ.exe (file missing) O23 - Service: KTID - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\KTID.exe (file missing) O23 - Service: LHCFBI - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\LHCFBI.exe (file missing) O23 - Service: PRJDHPYM - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\PRJDHPYM.exe (file missing) O23 - Service: YPPNSYUZIEB - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\YPPNSYUZIEB.exe (file missing) O23 - Service: YXNJIBZ - Unknown owner - C:\DOCUME~1\VINCEN~1\LOCALS~1\Temp\YXNJIBZ.exe (file missing) I would check this folder and if those files are still there delete them |
Speedy Gonzales (78) | ||
| 1324930 | 2013-01-26 06:59:00 | This looks highly suspect to me: C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler. exe I might be barking up the wrong tree, but note the space between the . and exe Lots of malware uses tricks like this, and names of trusted sources (such as Google) to try to avoid being singled out as trouble. Also when doing a HJT scan it's good practice to shut down all unnecessary programs, like the 3 games, the 4 Notepads... they just clutter up an already busy screen of results. |
Paul.Cov (425) | ||
| 1324931 | 2013-01-26 07:08:00 | This looks highly suspect to me: C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler. exe I might be barking up the wrong tree, but note the space between the . and exe Lots of malware uses tricks like this, and names of trusted sources (such as Google) to try to avoid being singled out as trouble. Also when doing a HJT scan it's good practice to shut down all unnecessary programs, like the 3 games, the 4 Notepads... they just clutter up an already busy screen of results. Good point, I will try to remember it. |
Vince (406) | ||
| 1324932 | 2013-01-26 23:55:00 | I may be mistaken but it looks like you've got two antivirus progs running (Avast and Comodo), these will interfere with each other. | feersumendjinn (64) | ||
| 1324933 | 2013-01-26 23:59:00 | This looks highly suspect to me: C:\Program Files\Google\Update\1.3.21.123\GoogleCrashHandler. exe I might be barking up the wrong tree, but note the space between the . and exe Lots of malware uses tricks like this, and names of trusted sources (such as Google) to try to avoid being singled out as trouble. Plausible, although it could just as well be a formatting error when the text was copied to the forum. Vince: What do you mean by "computer is insane" ? |
Agent_24 (57) | ||
| 1324934 | 2013-01-27 00:11:00 | On a side note, I wonder if computers have their own forum, filled with posts titled "Help, my user is insane!" :P | fred_fish (15241) | ||
| 1324935 | 2013-01-27 01:51:00 | Well spotted, I Googled that; nobody else spotted it. Did you notice the one that went .e xe? |
Vince (406) | ||
| 1324936 | 2013-01-27 01:53:00 | LOL! | Vince (406) | ||
| 1324937 | 2013-01-27 01:58:00 | That space is in the original Hijack This log. Insane = lots of problems. |
Vince (406) | ||
| 1 2 3 4 | |||||