TechSpot

Have a very very slow boot up time pls look at hijack log

By donnakin
Dec 8, 2007
Topic Status:
Not open for further replies.
  1. ok here are the attached logs that you need. Plus panda rootkill did not find anything at all.

    Computer takes around 7 mins before i can use my computer when i start it in the mornings. I have ran all the steps needed before i post here and I still got problems.

    Attached Files:

  2. Rik

    Rik Banned Posts: 4,985

    Hi donnakin and welcome to TechSpot.:wave:

    Your problem doesn't seem to be malware related. I cant see anything nasty in your logs.
    Perhaps you should decide what you do and don't need out of the mountain of software your pc seems to be running and uninstall what you don't use.
  3. donnakin

    donnakin TS Rookie Topic Starter

    ok i will check on that. I was running BitDefender and it shows like 43 infected items located here but I cannot find them in the c;/ drive it is this.

    C://documents and settings\administrator\application data\earthlink\

    but it shows Xxxtoolbar not sure about this I did not download it anyway I will delete it when bitdender finishes.

    All I know until last week my computer was working just fine and this happened. Thanks for you help.

    donnakin
  4. evilfantasy

    evilfantasy Banned Posts: 428

    You can save and post the BitDefender scan.

    BitDefender Online Scanner
    Click I Agree to the license and then select Click here to scan
    DO NOT CHANGE THE OPTIONS TO SHOW ALL FILES SCANNED.
    That will make your logs huge and we don't need to see clean files.

    Once Bitdefender completes the scan:
    Click-on the Detected Problems tab.
    Then select Click here to export the scan report

    When the window comes up to save the report, change the Save as type: box to:
    Text (Tab Delimited) (*.txt) and then in the File name box enter change to bdscan then click Save

    This will save a file named bdscan.txt. I would suggest saving it to the Desktop so you can easily find it.
    (take notice of where you save it so you can find it later)

    This bdcan.txt file will actually contain HTML code that we can easily view later while reviewing your log. All we have to do is rename the file to bdscan.html.

    If you do not follow these step, you will have an incorrect log or worse a log summary which is useless to us

    Post the bdscan.txt file as an Attachment.


    Also please attach an uninstall log.

    How To Create An Uninstall List

    1. Start HijackThis
    2. Click on the Misc Tools button
    3. Click on the Open Uninstall Manager button.
    4. Click on the Save list button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file.
    5. Save it to your desktop
    6. Add the uninstall_list.txt as an attachment in the next post.
  5. momok

    momok TS Rookie Posts: 2,272

    I have some concerns on the following files and folders.

    C:\WINDOWS\system32\drivers\mvloxbutaqyi.sys
    C:\WINDOWS\system32\bdod.bin
    C:\23990098.$$$
    C:\WINDOWS\Lic.xxx

    C:\Program Files\advisor.exe
    C:\WINDOWS\{C1FD5FBB-CE37-4C37-AE71-6097104D2BA4}.dat
    C:\WINDOWS\system32\yxoebklu.ini2
    C:\WINDOWS\system32\{F993CF46-FEF6-4159-8C4F-ED88DD90F09C}.dat
    C:\Program Files\MacroVirus\MacroVirus.exe < deemed to be malware HERE
    C:\Program Files\MalwareBot < extremely fishy
    C:\Program Files\RegistrySmart < I wouldn't trust shady programs, see HERE
    C:\Program Files\AdwareAlert < on AdwareAlert's previously dubious repute

    Judging from his logs and programs, it appears the user doesn't have very sensible surfing and program installation habits too.

    Please exercise extra caution with this computer.

    Regards,
    momok
  6. donnakin

    donnakin TS Rookie Topic Starter

    ok here is the bitdefender virus scan. One thing when the scan finished i did not see the Detected Problems tab. So if this is not saved right I may have a different version of bitdefender. But i did save it as a text file. I am going to look at the bitdefender download again and see if i have the correct version if this. Plus i have the uninstall log for highjack also. You can let me know what to do next.

    donnakin

    Attached Files:

  7. evilfantasy

    evilfantasy Banned Posts: 428

    I wanted you to run the online scan for BitDefender, but that is OK.

    Please attach a fresh HijackThis log.
  8. donnakin

    donnakin TS Rookie Topic Starter

    ok I can still run the online scanner for bitdenfer that is no problem at all. I want to do it the correct way. My bad for not reading sorry. I will run it then I will post it and then the new hijack log also.

    donnakin
  9. evilfantasy

    evilfantasy Banned Posts: 428

    OK, that will be good.

    Thanks.

    I updated the online scan instructions in the above post.
  10. donnakin

    donnakin TS Rookie Topic Starter

    ok here is the hijack log . I will go run the online scanner now and post it as soon as it gets finished. Thanks for all your help.

    Donna
  11. donnakin

    donnakin TS Rookie Topic Starter

    ok when i went to the online defender scan and then clicked scan when it was updating the virus definitions it said that it failed and wanted to know if i still wanted to scan anyway that the result may not be shown correctly. Do you still want to do it anyway????

    donnakin
     
  12. evilfantasy

    evilfantasy Banned Posts: 428

    No lets do this instead.

    ----------

    Download Superantispyware (SAS) SUPERAntispyware Free Edition

    Install it and double-click the icon on your desktop to run it.
    * It will ask if you want to Update the program definitions, click Yes.
    * Under Configuration and Preferences, click the Preferences button.
    * Click the Scanning Control tab.
    * Under Scanner Options make sure the following are checked:
    • Close browsers before scanning
    • Scan for tracking cookies
    • Terminate memory threats before quarantining.
    • Please leave the others unchecked.
    • Click the Close button to leave the control center screen.
    * On the main screen, under Scan for Harmful Software click Scan your computer.
    * On the left check C:\Fixed Drive.
    * On the right, under Complete Scan, choose Perform Complete Scan.
    * Click Next to start the scan. Please be patient while it scans your computer.
    * After the scan is complete a summary box will appear. Click OK.
    * Make sure everything in the white box has a check next to it, then click Next.
    * It will quarantine what it found and if it asks if you want to reboot, click Yes.
    * To retrieve the removal information please do the following:
    • After reboot, double-click the SUPERAntiSpyware icon on your desktop.
    • Click Preferences. Click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • It will open in your default text editor (such as Notepad/Wordpad).
    • Save the notepad file to your desktop by clicking (in notepad) "File" "Save As"
    * Save the log somewhere you can easily find it. (normally the desktop)
    * Click close and close again to exit the program.
    * Please add the log as an attachment along with a new HijackThis log in the next post.

    ----------

    Run this online scan.

    Requires Internet Explorer

    Use the ESET Nod32 Online Scanner
    1. Check the box next to YES, I accept the Terms of Use.
    2. Click Start
    3. When asked, allow the activex control to install
    4. Click Start
    5. Make sure that the option Remove found threats and the option Scan unwanted applications is check marked.
    6. Click Scan
    7. Wait for the scan to finish
    8. Use notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
    9. Attach the C:\Program Files\EsetOnlineScanner\log.txt log into your next reply

    -----------

    Next post please attach
    Superantispyware log
    ESET Online Scan log
    New HijackThis log.
  13. donnakin

    donnakin TS Rookie Topic Starter

    ok here are the logs you wanted.

    donnakin
  14. evilfantasy

    evilfantasy Banned Posts: 428

    You will want to turn the antivirus protection on.

    The logs look fine now. Are there any problems still?

    -----

    [​IMG] Your Java is out of date leaving your system vulnerable.
    Older versions have vulnerabilities that malware can use to infect your system.

    Updating Java:
    * Go to Start > Control Panel double-click on Add/Remove programs and remove all older versions of Java.
    * Check for any item with Java Runtime Environment (JRE or J2SE) in the name.
    ** The latest version is Java 6 Update 3. Remove all other entries.
    * Click the Remove or Change/Remove button.
    * Repeat as many times as necessary to remove each of the Java versions.
    * Reboot your computer once all Java components are removed.

    * Download the latest version of Java Runtime Environment (JRE) 6
    * Click the Free Java Download button.
    * Click the Download Now button.
    * When the Software Installation dialog box opens. Click on the Install Now button.
    * Follow the prompts to complete installation.

    -----

    Go to Start > Run and copy and paste next command in the field:

    ComboFix /u

    [​IMG]

    Make sure there's a space between Combofix and /
    Then hit Enter.

    This will uninstall Combofix, delete its related folders and files, reset your clock settings, hide file extensions, hide the system/hidden files and resets System Restore again

    -----

    If anything else comes up then just let us know.

    To learn more about how to protect yourself while on the internet read this article by Tony Klien: So how did I get infected in the first place?
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.