Malware and Virus RemovalProblems removing malware/viruses? Get help from our Malware removal experts.
Mission Statement
WindowsBBS is an online community dedicated to easily accessible technical support for those using Microsoft operating systems and other Windows software.
Our goal is to become the leading resource for computer users that require assistance with their day-to-day computer usage, including full support for networking PC's, virus & malware removal, system upgrades and general support questions.
[Resolved] please take a look at this hijackthis log
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:43:27 AM, on 9/19/2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal
Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - Global Startup: Digital Line Detect.lnk = ?
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program
Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} -
C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O9 - Extra button: The Weather Channel - {2E5E800E-6AC0-411E-940A-369530A35E43} - (no file)
O9 - Extra 'Tools' menuitem: The Weather Channel - {2E5E800E-6AC0-411E-940A-369530A35E43} -
(no file)
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network
Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583}
Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter)
- SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
--
End of file - 12843 bytes
my computer is running at around 85 on up to 100% i really think someone is on here with me. sorry if i did the post backwards,first time i've ever done it.
Last edited by jan roberts; 19th September 2008 at 07:12.
Reason: someone please tell me what to do with trend micro hijack and the log itself right now i've got them min.
Didn't find the information you thought to find? Check out these Similar Threads
gerri thank you so much for answering this post. ran into a small problem with jotti and maybe my fault. you said copy and paste well i just typed it in was i supposed to go to c\windows\system32\cssdll32.dll and copy that and paste it! anything i gave it an hour and aborted when it wasnt moving(the upload part).
i also lost the hijackthis,so did another one and this time unchecked word wrap,and know where it is. so thats where i am now. i plead stupidity,dumbnes or just totally lost.
i do know how to copy and paste,do that on im and it isnt typing into the little box. im going to wait until i hear from on how i think im supposed do it. i was going to just to it but chicken out.i really dont want it blowing up or something equally horrible.
have patience please,im way over my head and i know it
Hi jan
As long as you typed it correctly it should have worked.
Sometimes Jotti is very busy and it takes a while.
Enable the 'Show Hidden Files/Folders' option, like this:
Click Start.
Open My Computer.
Select the Tools menu and click Folder Options.
Select the View Tab. Under the Hidden files and folders heading select Show hidden files and folders.
Uncheck the Hide protected operating system files (recommended) option.
Click Yes to confirm.
Click OK.
Lets try this one.
Upload a File to Virustotal
Please visit Virustotal
Click the Browse... button
Navigate to the file C:\WINDOWS\system32\cssdll32.dll
gerri here is the file? | עברית | | Slovenščina | Dansk | Русский | Română | Türkçe | Nederlands | Ελληνικά | Français | Svenska | Português | Italiano | | | Magyar | Deutsch | Česky | Polski | Español
Virustotal is a service that analyzes suspicious files and facilitates the quick detection of viruses, worms, trojans, and all kinds of malware detected by antivirus engines. More information...
File cscdll.dll received on 09.20.2008 23:02:28 (CET)
Current status: Loading ... queued waiting scanning finished NOT FOUND STOPPED
Result: 0/36 (0%)
Loading server information...
Your file is queued in position: 1.
Estimated start time is between 39 and 56 seconds.
Do not close the window until scan is complete.
The scanner that was processing your file is stopped at this moment, we are going to wait a few seconds to try to recover your result.
If you are waiting for more than five minutes you have to resend your file.
Your file is being scanned by VirusTotal in this moment,
results will be shown as they're generated.
Compact Print results
Your file has expired or does not exists.
Service is stopped in this moments, your file is waiting to be scanned (position: ) for an undefined time.
You can wait for web response (automatic reload) or type your email in the form below and click "request" so the system sends you a notification when the scan is finished.
Email:
ATTENTION: VirusTotal is a free service offered by Hispasec Sistemas. There are no guarantees about the availability and continuity of this service. Although the detection rate afforded by the use of multiple antivirus engines is far superior to that offered by just one product, these results DO NOT guarantee the harmlessness of a file. Currently, there is not any solution that offers a 100% effectiveness rate for detecting viruses and malware.
since last night the cpu usage is down way down. put password on router,(with belkins help) and finally got smart and shut down computer. did some things around the house turned her on and so far usage is like i said way down. knock on wood.
i did have a one time(so far) occurence with a redirect (mediacom but we discussed it).
im back, still have lots of cpu usage,i go to task manager and check applications and nothing is running. am i checking the correct place? what makes the cpu run? i know its a strange question but its at 84% now and all im doing is typing this. i put the task manager in system tray so i could see it i could hear it. im totally confused. what makes it do this? sometimes it sounds like it is going flat out. could it be how i use the computer,icons on desktop,sites in folders,(neatly).but it never did this before. just since we got wireless router so my son in law could go on line. and he and his laptop are in sweden til next month. i really would like to go back to being the only computer on the internet. this is driving me nuts (besides i dont share well with others,especially when my computer is going nine hundred miles an hour)
its my antivirus! sometimes up over 200k! is it supposed to do that?
normally it around 14k. good grief! good thing ip doesnt charge by cpu. what do i do? keep it? get a different kind? wow!
i was using viruskeeper pro by axbx. it sort of went crazy. i tried to open it to take it off automatic run at start. it wouldnt let me,not the one in system tray so i used the one on desktop.opened it and it started running and it wouldnt shut down i had to push the button! started up went to add remove and that said i had last used it aug 07!
yes i am now using comodo av its slower,and please i hope thats okay. i figured firewall av and maybe they would get along. i dont understand any of this,i ran that thing everyday! weird!!!
Hi
Yes that is strange, your HJT log doesn't have it listed.
We should get a on line scan.
If you have ATF Cleaner please run it. if not download and run it.
Download ATF Cleaner by Atribune and save it to your Desktop.
This is a good tool to get rid of the temporary garbage you pick up while surfing the net.
Double click ATF-Cleaner.exe to run the program.
Check the boxes to the left of:
Windows Temp
Current User Temp
All Users Temp
Cookies
Temporary Internet Files
Prefetch
Java Cache
Recycle bin
The rest are optional - if you want it to remove everything check "Select All".
Finally, click Empty Selected. When you get the "Done Cleaning" message, click OK.
Click on “Accept” If your pop –up blocker blocks any windows from opening.
Click Run on the window that opens. Windows Vista users you must open the web browser using the Run as Administrator command.
The program will launch and then begin downloading the latest definition files:
Under Scan on the left side.Click on My Computer
This will start the program and scan your system.
Click the “Scan Report” On the left side.
The scan will take a while so be patient and let it run.
Once the scan is complete it will display if your system has been infected.
Click the Save Report As button, and in the Browse dialog box, type a name for the scan report file that you want to create and select its type Text file. Click OK to save the file.:
Save the text file to your desktop.
Copy and paste that information in your next post.
gerri ran the af cleaner. tried three times to run kaspersky webscan router is knocking me off or something its showing orange light for modem and modem says everything is fine.
this wireless has been nothing but trouble,how do i get rid of it? can i unplug it and go modem i would like to get scan done sometime this year
