Welcome to the TechSpot OpenBoards. Please read the FAQ if you have any questions. Login to participate.
HJT entry interpretation
|
|||||||
 |
|
Thread Tools |
|
#1
08-28-2008
|
|||
|
|||
|
HJT entry interpretation
Hi,
Can anyone advise whether the following HJT entries are suspicious: O4 - HKLM\..\Policies\Explorer\Run: [qX8MXgD0xj] C:\Documents and Settings\All Users\Application Data\qbgnwnir\kzyzajat.exe O21 - SSODL: ApiMnt - {3BEC3050-8B2F-5E91-FCBF-08891E626AE7} - C:\Program Files\eylqvab\ApiMnt.dll Many thanks, 
|
|
#2
08-28-2008
|
|||
|
|||
|
I consider both items suspicious.
HJT changes are reversible. Castlecops site indicates listing o21 findings means it does not appear on the whitelist. I suggest that you follow Malware Removal Procedure in this forum.
|
| You can remove this banner by registering, join the TS Community for free. |
|
|
|
|
#4
08-28-2008
|
||||
|
||||
|
How do you figure it's not suspicious?
qX8MXgD0xj ... qbgnwnir\kzyzajat.exe ( All random file names & entries. Most legitimate programs use recognizable file names) C:\Program Files\eylqvab\ApiMnt.dll Is suspicious to me because after searching it, it turns up only 2 Results in Google. This post, and one other HJT Log. No legitimate files. Either it's a new program, or a new malware. I would recommend fixing both those items. If problems persist, post the log, or try undoing the actions.
|
|
| Thread Tools | |
|
| Similar Topics | ||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Unknown HJT Entry | Daveskater | Security and the Web | 5 | 09-30-2007 08:49 PM |
| BSOD - polite request for minidump interpretation. | hightime | Device Drivers | 3 | 07-22-2007 08:34 AM |
| Strange win.ini entry | altheman | Windows OS | 9 | 04-16-2006 07:52 PM |
| BSOD on DELL 9100--minidump interpretation | Gabbon | Windows OS | 1 | 03-08-2006 10:54 AM |
| Which entry-level CPU should I get ? | puncrawcboi92 | CPUs, Chipsets and Mobos | 12 | 08-28-2005 06:46 PM |
All times are GMT -4. The time now is 06:38 AM.
