Home > Hijackthis Log > HiJackThis Log - Download.Trojan - Pmnnn.dll

HiJackThis Log - Download.Trojan - Pmnnn.dll

Back to top #11 mlott132 mlott132 Topic Starter Members 8 posts OFFLINE Local time:12:24 PM Posted 30 July 2007 - 07:47 PM Here are the results from the antivirus scan It's too big to paste in its entirety so I just copied the first portion. Using the site is easy and fun. Checkers - http://download2.games.yahoo.com/games/clients/y/kt4_x.cabO16 - DPF: Yahoo! More about the author

Where have you been playing? Click OK 5. Proceeding with your instructions. Do NOT Reboot/logoff when prompted. * CleanUp!

Pyramids - http://download2.games.yahoo.com/games/clients/y/pyt1_x.cabO16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=48835O16 - DPF: {1EF9F042-C2EB-4293-8213-474CAEEF531D} (TmHcmsX Control) - http://www.trendsecure.com/framework/contr...vex/TmHcmsX.CABO16 - DPF: {24D1BDCE-D835-11D6-BF84-0050047EA0E7} (BlueStream_Flash Class) - http://www.rovion.com/Controls/Rovion.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Quote Report Back to top Post a reply Unread posts or replies No unread posts or replies Unread Posts (Read Only Forum) No Unread Posts (Read Only Forum) Forum Sorry, well the important thing is that the implib.dll is gone now I deleted it with no problems. Now use the Norton tools you downloaded as suggested in the page you printed, you don't have to do step 4 of course!5.

Click "Apply all actions" to place the files in Quarantine.IMPORTANT! I have tried so many things and am getting frustrated. Back to top #5 __RiP_ChAiN_ __RiP_ChAiN_ Eh, whatever goes here. Click Apply. 6.

Once it's done scanning, click the Remove Vundo button. But really thanks For further reference . Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll O3 - Toolbar: SearchToolbar - {08BEC6AA-49FC-4379-3587-4B21E286C19E} - C:\WINDOWS\system32\bcihy.dll (file missing) O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\SYMANT~1\vptray.exe O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft read this post here Copy everything on the Results window to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it on your

Please ignore any entry it finds and the offer to buy the program to remove the entry, as we will address this later. Which version of Norton did you have installed?I have no idea, all i know is that i recently had the harddrive replaced by hp invent, so it sould be pretty recent. When completed, it will prompt that it will shutdown your computer, click OK. I did notice that before I di the hijackthis fixes, atf cleaner, and otmoveit that the vundo warning was popping up.

button. click site If you are having problems with the updater, you can use this link to manually update Ewido When you have finished updating, EXIT Ewido. After reboot, (in case it asks to reboot), please post the following reports/logs into your next reply:Combofix.txt A new HijackThis log.We need to upload a file to Jotti1. To unblok firefox look in the rules of the anti-hacker if you didn't block anything: settings->anti-hacker->rules for applications->firefox.As for the virus issue please post a hijackthis log here.

There might be something else apart from Vundo on the PC. my review here Members 1,592 posts OFFLINE Gender:Male Location:Omaha, Nebraska U.S.A Local time:12:24 PM Posted 28 July 2007 - 12:14 PM Hello mlott132,Please download Combofix to your desktop.Doubleclick combo.exe to launch the application.Follow Attempting to delete C:\WINDOWS\Microsoft.NET\avajpi.ini C:\WINDOWS\Microsoft.NET\avajpi.ini Has been deleted! It will remove all of the items found.

o Now click on the Save as Text button: Save the file to your desktop.I need to see another log from HijackThis. Ewido Please disable Ewido Security Suite's Guard, as it may hinder the removal of some entries. Now run CCleaner, first use the cleaner, next the regcleaner in it and remove/fix everything it finds.6. http://newsgrouphosting.com/hijackthis-log/please-help-my-hijackthis-log.php I read other posts about this and tried some techniques but still no luck.

Ran Vundo twice. Privacy Policy & Cookies Legal Terms ERROR The requested URL could not be retrieved The following error was encountered while trying to retrieve the URL: http://forum.bullguard.com:81/forum/10/Cannot-remove-mlljidll-and-pmn_24626.html Connection to 91.231.212.51 failed. Click on the link to download Windows Offline Installation with or without Multi-language and save to your desktop. Go to Start > Control Panel

Here is what I have tried so far.

Inc. - C:\WINDOWS\system32\YPCSER~1.EXE--End of file - 7731 bytes Back to top #7 mlott132 mlott132 Topic Starter Members 8 posts OFFLINE Local time:12:24 PM Posted 28 July 2007 - 07:39 PM opium 22.07.2006 01:43 QUOTE(Don Pelotas @ 22.07.2006 00:32)What version of Kaspersky are you using? 5.0 / 6.0 the suite or just the AV?6.0 of course. Post the contents of that log in your next reply with a new hijackthis log. Do not save the report before you have clicked the Apply all actions button.

They will be deleted. Open the program from the tray-icon, does it look like this: opium 22.07.2006 01:56 QUOTE(lucianbara @ 22.07.2006 00:53)I meant this application: http://www.merijn.org/files/hijackthis.zipwow you guys are fast here's the hijackthis log.Logfile of Pyramids - http://download2.games.yahoo.com/games/clients/y/pyt1_x.cabO16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=48835O16 - DPF: {1EF9F042-C2EB-4293-8213-474CAEEF531D} (TmHcmsX Control) - http://www.trendsecure.com/framework/contr...vex/TmHcmsX.CABO16 - DPF: {24D1BDCE-D835-11D6-BF84-0050047EA0E7} (BlueStream_Flash Class) - http://www.rovion.com/Controls/Rovion.cabO16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter navigate to this website Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn3\yt.dllO2 - BHO: Yahoo!

I don't know what you mean by AV or suite, I don't know what those terms mean. Updated the Java. Thanks for help bartsdadhomer18-10-2005, 08:04 PMTry The Ewido Suite http://www.ewido.net/en/ Make sure you update the definitions after installing and Trojan Remover http://www.simplysup.com/ Make sure you update the definitions after installing Speedy In the 'Your security status' section, toggle the ewido Guard realtime protection 'off' by clicking 'active' which will then change the protection status to 'inactive'.

Click Start.2. Attempting to delete C:\WINDOWS\system32\hhkmp.bak2 C:\WINDOWS\system32\hhkmp.bak2 Has been deleted! PS : Most of the popups are regarding secuity alearts Logfile of HijackThis v1.99.1 Scan saved at 1:01:59 PM, on 4/21/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 There are three options in the window to clear the cache - Leave ALL 3 CheckedDownloaded Applets Downloaded Applications Other Files Click OK on Delete Temporary Files Window Note: This deletes

However, we will warn you that engaging in this activity and having this kind of software installed on your machine will always make you more susceptible to re-infections. Search in the list for all previous installed versions of Java. (J2SE Runtime Environment.... ) Select it and click Remove. and yes it was updated. When turning off System Restore, the existing restore points will be deleted.

Then Download and install the newest version from here: http://www.java.com/en/download/manual.jsp After the reboot, go back into the Control Panel and double-click the Java Icon. My HJT Log Logfile of HijackThis v1.99.1 Scan saved at 7:55:56 PM, on 5/4/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe Double click on combo.exe & follow the prompts. 2.