Home   News  Product reviews  Website reviews  Forums   Competitions  Subscribe 
Search
You are not logged in.
Login | New user registration 		Main Index | Search | Active Topics | Who's Online | FAQ / HELP

Security >> HijackThis logs help and analysis
Previous thread Previous   View all threads Index   Next thread Next   Flat Mode Flat  

 |  Print Thread
Joe_LondonModerator
HijackThis Helper


Reg'd: Tue
Posts: 10783
Loc: London
Re: help with father-in-laws hijack this log please
      Sat Feb 16 2008 06:23 PM
Reply to this post Reply   Reply to this post Quote  

Still not worked Jim.

Please ensure TeaTimer is disabled, it can be re-activated at the end of this fix.
  • Open Spybot Search & Destroy.
  • In the Mode menu click "Advanced mode" if not already selected.
  • Choose "Yes" at the Warning prompt.
  • Expand the "Tools" menu.
  • Click "Resident".
  • Uncheck the "Resident "TeaTimer" (Protection of overall system settings) active." box.
  • In the File menu click "Exit" to exit Spybot Search & Destroy.


I'll make a couple of changes in case that dll file is still on the hard drive.

Copy this page to *Notepad* and save to your desktop for reference as you will not have any browsers open while you are carrying out portions of these instructions.

It's IMPORTANT to carry out the instructions in the sequence listed below.


1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.


Open *notepad*

Copy and paste all the text in the quotebox below into it:

Quote:


KillAll::

rootkit::
c:\windows\system32\append.dll

Registry::
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll,"




Save this as CFScript.txt, in the same location as ComboFix.exe which is on the Desktop.




If the image isn't visible Click Here to view.

Refering to the picture above, drag CFScript.txt into ComboFix.exe

This reactivates Combofix. Again follow the prompts.

It will create another System restore point.

When finished, it shall produce a log for you at C:\ComboFix.txt

Copy and paste the ComboFix.txt in your next reply.


*Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall*


Joe.

--------------------
If I have helped you in any way, please consider a donation:

Joe's WebSite.

Member of UNITE and ASAP.

Post Extras Print Post   Remind Me!     Notify Moderator
Rate this thread

Jump to


Entire topic
Subject Posted by Posted on
* help with father-in-laws hijack this log please jimmyf Tue Feb 12 2008 11:06 AM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Tue Feb 12 2008 02:28 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Tue Feb 12 2008 06:08 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Wed Feb 13 2008 05:23 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Thu Feb 14 2008 10:17 AM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Thu Feb 14 2008 10:40 AM
. * * Re: help with father-in-laws hijack this log please jimmyf   Fri Feb 15 2008 09:38 AM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Fri Feb 15 2008 01:23 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Fri Feb 15 2008 02:31 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Fri Feb 15 2008 04:06 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Sat Feb 16 2008 11:19 AM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Sat Feb 16 2008 06:23 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Sun Feb 17 2008 10:01 AM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Sun Feb 17 2008 07:09 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Mon Feb 18 2008 01:05 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Mon Feb 18 2008 02:38 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Tue Feb 19 2008 04:41 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Tue Feb 19 2008 04:44 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Tue Feb 19 2008 08:56 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Tue Feb 19 2008 10:08 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Thu Feb 21 2008 07:42 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Fri Feb 22 2008 09:26 AM
. * * Re: help with father-in-laws hijack this log please jimmyf   Fri Feb 22 2008 08:35 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Fri Feb 22 2008 09:04 PM
. * * Re: help with father-in-laws hijack this log please jimmyf   Fri Feb 22 2008 09:24 PM
. * * Re: help with father-in-laws hijack this log please Joe_LondonModerator   Wed Feb 13 2008 09:11 AM

Extra information
0 registered and 20 anonymous users are browsing this forum.

Moderator:  putasolutions, greysts, bricat, AndrewC, Joe_London, John_McKenna, Mouse, Hello_There, TheFatControlleR, Nanook, Noviciate 


Print Thread
Forum Permissions
      You cannot start new topics
      You cannot reply to topics
      HTML is disabled
      Mark-up is enabled

Rating:
Thread views: 0

Contact Us | Privacy statement Main website
Hitwise Top 10 Award Winner - Jan-Mar 2005

About us | Contact us | Link to us | Terms & Conditions | Privacy Policy
© Copyright IPC Media Limited, All rights reserved