Welcome to the TechSpot OpenBoards. Please read the FAQ if you have any questions. Login to participate.
|
|||||||
HJT entry interpretation
 |
|
|
|
Thread Tools |
|
#1
08-28-2008
|
|||
|
|||
|
HJT entry interpretation
Hi,
Can anyone advise whether the following HJT entries are suspicious: O4 - HKLM\..\Policies\Explorer\Run: [qX8MXgD0xj] C:\Documents and Settings\All Users\Application Data\qbgnwnir\kzyzajat.exe O21 - SSODL: ApiMnt - {3BEC3050-8B2F-5E91-FCBF-08891E626AE7} - C:\Program Files\eylqvab\ApiMnt.dll Many thanks, |
|
#2
08-28-2008
|
|||
|
|||
|
I consider both items suspicious.
HJT changes are reversible. Castlecops site indicates listing o21 findings means it does not appear on the whitelist. I suggest that you follow Malware Removal Procedure in this forum. |
|
|
#4
08-28-2008
|
||||
|
||||
|
How do you figure it's not suspicious?
qX8MXgD0xj ... qbgnwnir\kzyzajat.exe ( All random file names & entries. Most legitimate programs use recognizable file names) C:\Program Files\eylqvab\ApiMnt.dll Is suspicious to me because after searching it, it turns up only 2 Results in Google. This post, and one other HJT Log. No legitimate files. Either it's a new program, or a new malware. I would recommend fixing both those items. If problems persist, post the log, or try undoing the actions. |
|
| Thread Tools | |
|
|
| Similar Topics | ||||
| Topic | Category | Replies | Last Post | |
| Unknown HJT Entry | Virus & Malware removal | 5 | 09-30-2007 08:49 PM | |
| BSOD - polite request for minidump interpretation. | Device Drivers | 3 | 07-22-2007 08:34 AM | |
| Strange win.ini entry | Windows OS | 9 | 04-16-2006 07:52 PM | |
| BSOD on DELL 9100--minidump interpretation | BSOD Help & Support | 1 | 03-08-2006 10:54 AM | |
| Which entry-level CPU should I get ? | Processors, Chipsets and Motherboards | 12 | 08-28-2005 06:46 PM | |
All times are GMT -4. The time now is 02:22 PM.