Have a very very slow boot up time pls look at hijack log
- Thread starter donnakin
- Start date
- Status
Hi donnakin and welcome to TechSpot.:wave:
Your problem doesn't seem to be malware related. I cant see anything nasty in your logs.
Perhaps you should decide what you do and don't need out of the mountain of software your pc seems to be running and uninstall what you don't use.
Your problem doesn't seem to be malware related. I cant see anything nasty in your logs.
Perhaps you should decide what you do and don't need out of the mountain of software your pc seems to be running and uninstall what you don't use.
ok i will check on that. I was running BitDefender and it shows like 43 infected items located here but I cannot find them in the c;/ drive it is this.
C://documents and settings\administrator\application data\earthlink\
but it shows Xxxtoolbar not sure about this I did not download it anyway I will delete it when bitdender finishes.
All I know until last week my computer was working just fine and this happened. Thanks for you help.
donnakin
C://documents and settings\administrator\application data\earthlink\
but it shows Xxxtoolbar not sure about this I did not download it anyway I will delete it when bitdender finishes.
All I know until last week my computer was working just fine and this happened. Thanks for you help.
donnakin
evilfantasy
Posts: 425 +0
You can save and post the BitDefender scan.
BitDefender Online Scanner
Click I Agree to the license and then select Click here to scan
DO NOT CHANGE THE OPTIONS TO SHOW ALL FILES SCANNED.
That will make your logs huge and we don't need to see clean files.
Once Bitdefender completes the scan:
Click-on the Detected Problems tab.
Then select Click here to export the scan report
When the window comes up to save the report, change the Save as type: box to:
Text (Tab Delimited) (*.txt) and then in the File name box enter change to bdscan then click Save
This will save a file named bdscan.txt. I would suggest saving it to the Desktop so you can easily find it.
(take notice of where you save it so you can find it later)
This bdcan.txt file will actually contain HTML code that we can easily view later while reviewing your log. All we have to do is rename the file to bdscan.html.
If you do not follow these step, you will have an incorrect log or worse a log summary which is useless to us
Post the bdscan.txt file as an Attachment.
Also please attach an uninstall log.
How To Create An Uninstall List
1. Start HijackThis
2. Click on the Misc Tools button
3. Click on the Open Uninstall Manager button.
4. Click on the Save list button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file.
5. Save it to your desktop
6. Add the uninstall_list.txt as an attachment in the next post.
BitDefender Online Scanner
Click I Agree to the license and then select Click here to scan
DO NOT CHANGE THE OPTIONS TO SHOW ALL FILES SCANNED.
That will make your logs huge and we don't need to see clean files.
Once Bitdefender completes the scan:
Click-on the Detected Problems tab.
Then select Click here to export the scan report
When the window comes up to save the report, change the Save as type: box to:
Text (Tab Delimited) (*.txt) and then in the File name box enter change to bdscan then click Save
This will save a file named bdscan.txt. I would suggest saving it to the Desktop so you can easily find it.
(take notice of where you save it so you can find it later)
This bdcan.txt file will actually contain HTML code that we can easily view later while reviewing your log. All we have to do is rename the file to bdscan.html.
If you do not follow these step, you will have an incorrect log or worse a log summary which is useless to us
Post the bdscan.txt file as an Attachment.
Also please attach an uninstall log.
How To Create An Uninstall List
1. Start HijackThis
2. Click on the Misc Tools button
3. Click on the Open Uninstall Manager button.
4. Click on the Save list button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file.
5. Save it to your desktop
6. Add the uninstall_list.txt as an attachment in the next post.
momok
Posts: 2,127 +6
I have some concerns on the following files and folders.
C:\WINDOWS\system32\drivers\mvloxbutaqyi.sys
C:\WINDOWS\system32\bdod.bin
C:\23990098.$$$
C:\WINDOWS\Lic.xxx
C:\Program Files\advisor.exe
C:\WINDOWS\{C1FD5FBB-CE37-4C37-AE71-6097104D2BA4}.dat
C:\WINDOWS\system32\yxoebklu.ini2
C:\WINDOWS\system32\{F993CF46-FEF6-4159-8C4F-ED88DD90F09C}.dat
C:\Program Files\MacroVirus\MacroVirus.exe < deemed to be malware HERE
C:\Program Files\MalwareBot < extremely fishy
C:\Program Files\RegistrySmart < I wouldn't trust shady programs, see HERE
C:\Program Files\AdwareAlert < on AdwareAlert's previously dubious repute
Judging from his logs and programs, it appears the user doesn't have very sensible surfing and program installation habits too.
Please exercise extra caution with this computer.
Regards,
momok
C:\WINDOWS\system32\drivers\mvloxbutaqyi.sys
C:\WINDOWS\system32\bdod.bin
C:\23990098.$$$
C:\WINDOWS\Lic.xxx
C:\Program Files\advisor.exe
C:\WINDOWS\{C1FD5FBB-CE37-4C37-AE71-6097104D2BA4}.dat
C:\WINDOWS\system32\yxoebklu.ini2
C:\WINDOWS\system32\{F993CF46-FEF6-4159-8C4F-ED88DD90F09C}.dat
C:\Program Files\MacroVirus\MacroVirus.exe < deemed to be malware HERE
C:\Program Files\MalwareBot < extremely fishy
C:\Program Files\RegistrySmart < I wouldn't trust shady programs, see HERE
C:\Program Files\AdwareAlert < on AdwareAlert's previously dubious repute
Judging from his logs and programs, it appears the user doesn't have very sensible surfing and program installation habits too.
Please exercise extra caution with this computer.
Regards,
momok
Ok here is the bitdefender virus scan. One thing when the scan finished I did not see the Detected Problems tab. So if this is not saved right I may have a different version of bitdefender. But I did save it as a text file. I am going to look at the bitdefender download again and see if I have the correct version if this. Plus I have the uninstall log for highjack also. You can let me know what to do next.
donnakin
donnakin
evilfantasy
Posts: 425 +0
I wanted you to run the online scan for BitDefender, but that is OK.
Please attach a fresh HijackThis log.
Please attach a fresh HijackThis log.
evilfantasy
Posts: 425 +0
OK, that will be good.
Thanks.
I updated the online scan instructions in the above post.
Thanks.
I updated the online scan instructions in the above post.
ok when i went to the online defender scan and then clicked scan when it was updating the virus definitions it said that it failed and wanted to know if i still wanted to scan anyway that the result may not be shown correctly. Do you still want to do it anyway????
donnakin
donnakin
evilfantasy
Posts: 425 +0
No lets do this instead.
----------
Download Superantispyware (SAS) SUPERAntispyware Free Edition
Install it and double-click the icon on your desktop to run it.
* It will ask if you want to Update the program definitions, click Yes.
* Under Configuration and Preferences, click the Preferences button.
* Click the Scanning Control tab.
* Under Scanner Options make sure the following are checked:
* On the left check C:\Fixed Drive.
* On the right, under Complete Scan, choose Perform Complete Scan.
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK.
* Make sure everything in the white box has a check next to it, then click Next.
* It will quarantine what it found and if it asks if you want to reboot, click Yes.
* To retrieve the removal information please do the following:
* Click close and close again to exit the program.
* Please add the log as an attachment along with a new HijackThis log in the next post.
----------
Run this online scan.
Requires Internet Explorer
Use the ESET Nod32 Online Scanner
1. Check the box next to YES, I accept the Terms of Use.
2. Click Start
3. When asked, allow the activex control to install
4. Click Start
5. Make sure that the option Remove found threats and the option Scan unwanted applications is check marked.
6. Click Scan
7. Wait for the scan to finish
8. Use notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
9. Attach the C:\Program Files\EsetOnlineScanner\log.txt log into your next reply
-----------
Next post please attach
Superantispyware log
ESET Online Scan log
New HijackThis log.
----------
Download Superantispyware (SAS) SUPERAntispyware Free Edition
Install it and double-click the icon on your desktop to run it.
* It will ask if you want to Update the program definitions, click Yes.
* Under Configuration and Preferences, click the Preferences button.
* Click the Scanning Control tab.
* Under Scanner Options make sure the following are checked:
- Close browsers before scanning
- Scan for tracking cookies
- Terminate memory threats before quarantining.
- Please leave the others unchecked.
- Click the Close button to leave the control center screen.
* On the left check C:\Fixed Drive.
* On the right, under Complete Scan, choose Perform Complete Scan.
* Click Next to start the scan. Please be patient while it scans your computer.
* After the scan is complete a summary box will appear. Click OK.
* Make sure everything in the white box has a check next to it, then click Next.
* It will quarantine what it found and if it asks if you want to reboot, click Yes.
* To retrieve the removal information please do the following:
- After reboot, double-click the SUPERAntiSpyware icon on your desktop.
- Click Preferences. Click the Statistics/Logs tab.
- Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
- It will open in your default text editor (such as Notepad/Wordpad).
- Save the notepad file to your desktop by clicking (in notepad) "File" "Save As"
* Click close and close again to exit the program.
* Please add the log as an attachment along with a new HijackThis log in the next post.
----------
Run this online scan.
Requires Internet Explorer
Use the ESET Nod32 Online Scanner
1. Check the box next to YES, I accept the Terms of Use.
2. Click Start
3. When asked, allow the activex control to install
4. Click Start
5. Make sure that the option Remove found threats and the option Scan unwanted applications is check marked.
6. Click Scan
7. Wait for the scan to finish
8. Use notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
9. Attach the C:\Program Files\EsetOnlineScanner\log.txt log into your next reply
-----------
Next post please attach
Superantispyware log
ESET Online Scan log
New HijackThis log.
evilfantasy
Posts: 425 +0
You will want to turn the antivirus protection on.
The logs look fine now. Are there any problems still?
-----
Your Java is out of date leaving your system vulnerable.
Older versions have vulnerabilities that malware can use to infect your system.
Updating Java:
* Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
* Check for any item with Java Runtime Environment (JRE or J2SE) in the name.
** The latest version is Java 6 Update 3. Remove all other entries.
* Click the Remove or Change/Remove button.
* Repeat as many times as necessary to remove each of the Java versions.
* Reboot your computer once all Java components are removed.
* Download the latest version of Java Runtime Environment (JRE) 6
* Click the Free Java Download button.
* Click the Download Now button.
* When the Software Installation dialog box opens. Click on the Install Now button.
* Follow the prompts to complete installation.
-----
Go to Start > Run and copy and paste next command in the field:
ComboFix /u
Make sure there's a space between Combofix and /
Then hit Enter.
This will uninstall Combofix, delete its related folders and files, reset your clock settings, hide file extensions, hide the system/hidden files and resets System Restore again
-----
If anything else comes up then just let us know.
To learn more about how to protect yourself while on the internet read this article by Tony Klien: So how did I get infected in the first place?
The logs look fine now. Are there any problems still?
-----
Older versions have vulnerabilities that malware can use to infect your system.
Updating Java:
* Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
* Check for any item with Java Runtime Environment (JRE or J2SE) in the name.
** The latest version is Java 6 Update 3. Remove all other entries.
* Click the Remove or Change/Remove button.
* Repeat as many times as necessary to remove each of the Java versions.
* Reboot your computer once all Java components are removed.
* Download the latest version of Java Runtime Environment (JRE) 6
* Click the Free Java Download button.
* Click the Download Now button.
* When the Software Installation dialog box opens. Click on the Install Now button.
* Follow the prompts to complete installation.
-----
Go to Start > Run and copy and paste next command in the field:
ComboFix /u
Make sure there's a space between Combofix and /
Then hit Enter.
This will uninstall Combofix, delete its related folders and files, reset your clock settings, hide file extensions, hide the system/hidden files and resets System Restore again
-----
If anything else comes up then just let us know.
To learn more about how to protect yourself while on the internet read this article by Tony Klien: So how did I get infected in the first place?
- Status
Similar threads
Latest posts
-
Microsoft is rolling out new Start menu ads to all Windows 11 users despite backlash- captaincranky replied
-
Researchers have unlocked the "Holy Grail" of memory technology- Shawn Knight replied
-
AMD Radeon RX 5700 XT Revisit: How Does It Compare Against the 7700 XT?- i like foxes replied
