Has anyone seen this website: http://www.hijackthis.de

You run HiJackThis! then paste the log and it analyzes it for you. Then it reports back any nastys, unknowns, or unneccessaries that you have running. :)

It reported some things that I never noticed. :)

Ross, I mentioned in another thread about how easy computers are getting. You like some others , know I was kidding . All the same processes exe. names that spyware and trojan's use to hide them selves, can be pretting confusing. Nice to have the tools ! :)

Finally!

Only Two...

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://filesharingtalk.com/vb3/index.php?
Nasty This entry should be fixed by HijackThis! This entry should be fixed by HijackThis!
:eek: :eek:

O1 - Hosts: 64.91 www.dcsresearch.com
Nasty This entry should be fixed immediately! Must be fixed!
(fkin silly app)
:blink: :blink:

Only Two...

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://filesharingtalk.com/vb3/index.php?
Nasty This entry should be fixed by HijackThis! This entry should be fixed by HijackThis!
:eek: :eek:

O1 - Hosts: 64.91 www.dcsresearch.com
Nasty This entry should be fixed immediately! Must be fixed!
(fkin silly app)
:blink: :blink:

:lol:
ok so its got some errors, but its probably the first version and will improve.
None the less it is a real time saver for all those "hijack this" threads. It did spot one i didn't notice.

I had to come back to this thread . This is neat, fixed my startup problem ( over two minuet's ) and a pause when you open a folder. And I do mean a pause! I tryed everything ,cleaners out the yahoo , virus scan's ,spyware you name it. But the site helped fix it. It was a trojan active x dialer. Kool mabye it should be pinned or linked ? I know I should of tryed a trojan scanner but what the hey ! :D Thanx Ross .

actually i was just gonna post that it wasn't that accurate.

Yesterday someone sent me a link on msn saying to look at this thing it's funny so i clicked it and ended up getting spyware and viruses (it was dumb of me to open the file :lol:).
Anyway that checker didnt find anything but i clearly had things in my log that needed removing.

Hey I'm not being funny ! I 'm too proud to ask for help ,so when a program helps me fix something I like to share ;) I rarely get problems, but I have three little ones on my computer , so was happy to sort it out . :)




Actualy my wife Sabine was complaining her MSN was slow. I did n't notice till I starting giving a closer look . I rarely shutdown my computer anymore , thats when I noticed it.

Hey I'm not being funny ! I 'm too proud to ask for help ,so when a program helps me fix something I like to share ;) I rarely get problems, but I have three little ones on my computer , so was happy to sort it out . :)
ya I know, i'm usually really careful.
I guess yesterday was just bad luck. :(

haha, no nasties for me :P
but of course i already knew this :music:

it is kinda silly like RealitY said though...
it knew sygate and symantec was legit, but....
the ccApp.exe & smc.exe -startgui entries it couldnt decide on :lol:

haha, no nasties for me :P
but of course i already knew this :music:

it is kinda silly like RealitY said though...
it knew sygate and symantec was legit, but....
the ccApp.exe & smc.exe -startgui entries it couldnt decide on :lol:



FKDUP74, I did n't get that tho, just three nasties that were related . :)


Mabye the site has been updated ? ;) All I can say is from my own experience it help'd me . Take it or leave it ! :)

FKDUP74, I did n't get that tho, just three nasties that were related . :)
Mabye the site has been updated ? ;)

cool :)
(not that you had nasties, but that it caught em)
it could be a very helpful resource, just needs some fine tuning

and remember kiddies...
delete that filesharingtalk shit from your start page!!!!!
:P :lol:

Excellent! All green & safe here except 3 yellows which I know are OK. Thanks a bunch rossco.

In hindsite it's not really for rookies , but I 'd like to think I know somewhat about my process exe.'s but must admit still gave me pause . :lol: Like what the hell is O20 - Winlogon Notify: NavLogon - C:\WINDOWS\system32\NavLogon.dll . I'm thinking norton ,but it does n't know either so I don't feel so bad ! :lol:

O20 - Winlogon Notify: NavLogon -C:\WINDOWS\system32\NavLogon.dll .

argh! delete that shit dude!
its not NAV....
http://computercops.biz/postt59456.html
i just found out myself :lol:
setting up this other pc and saw that shit in the hijackthis log
got curious, did some searching ;)

from what it seems, the .dll is legit, but the call to it (the reg entry) isnt
deleting the dll will make symantec want you to reinstall...
so i just restored it from the junk bin and the reg entry wasnt repeated
so everything looks ok, symantec's running fine
maybe try just removing the reg entry in hijackthis, then reboot

-edit- i'm gonna get a trojan scan goin on that pc...
see if the dll is infected or not

Has anyone seen this website: http://www.hijackthis.de

You run HiJackThis! then paste the log and it analyzes it for you. Then it reports back any nastys, unknowns, or unneccessaries that you have running. :)

It reported some things that I never noticed. :)

Nice site :cool:

O1 - Hosts: 64.91 www.dcsresearch.com
Nasty This entry should be fixed immediately! Must be fixed!
(fkin silly app)
Actually my comment regarding silly app was geared at the second find which was created by some shit app I had although now I cant remeber what it was although it was a legit nasty that I didnt know about but is now gone. As for the rest of the log it didnt find anything else and as far as the site it seems very useful for the most part and a good find...

Actually my comment regarding silly app was geared at the second find which was created by some shit app I had although now I cant remeber what it was although it was a legit nasty that I didnt know about but is now gone. As for the rest of the log it didnt find anything else and as far as the site it seems very useful for the most part and a good find...

shush already...i said it was useful...just needs some tweaking :P

argh! delete that shit dude!
its not NAV....
http://computercops.biz/postt59456.html
i just found out myself :lol:
setting up this other pc and saw that shit in the hijackthis log
got curious, did some searching ;)

from what it seems, the .dll is legit, but the call to it (the reg entry) isnt
deleting the dll will make symantec want you to reinstall...
so i just restored it from the junk bin and the reg entry wasnt repeated
so everything looks ok, symantec's running fine
maybe try just removing the reg entry in hijackthis, then reboot

-edit- i'm gonna get a trojan scan goin on that pc...
see if the dll is infected or not



Much appreciated for the time you took. Deleted with no ill affects. Crap looks like now, I need a dedicated trojan scanner . :dry: Thanks again FKDUP74.


Deleted thru hijackthis .

Much appreciated for the time you took. Deleted with no ill affects. Crap looks like now, I need a dedicated trojan scanner . :dry: Thanks again FKDUP74.


Deleted thru hijackthis .

yeah thats basically all i did,
cause i restored the original from the trash bin
then scanned it, nothin came up
startin to wonder if it was a hoax :dry:
symantec runs w/o the entry, so fk it :P

-edit-
ok, i've scanned that fkr with just about every scanner on earth...
none of em found anything :angry:
-adaware
-ewido security suite
-trojanhunter
-pestpatrol
all passed the file off as good, clean, no prob, etc
i may have jumped the gun peat....

This will probably come in handy, so thanks for that.

i have just run hijackthis and done the log checker which has found 12 bad items where and how do i do the repairs . is it in regedit then try and find the files in the registry and delete them in there.

i have just run hijackthis and done the log checker which has found 12 bad items where and how do i do the repairs . is it in regedit then try and find the files in the registry and delete them in there.

hijackthis will remove the entries for you
just select the bad items and hit "fix checked"
but depending on what they were, you may wanna do some additional checking/scanning

thanks for your help

yeah thats basically all i did,
cause i restored the original from the trash bin
then scanned it, nothin came up
startin to wonder if it was a hoax :dry:
symantec runs w/o the entry, so fk it :P

-edit-
ok, i've scanned that fkr with just about every scanner on earth...
none of em found anything :angry:
-adaware
-ewido security suite
-trojanhunter
-pestpatrol
all passed the file off as good, clean, no prob, etc
i may have jumped the gun peat....



No you did n't do anything wrong . I read the link aswell. Funny tho I fixed my slow down. I reinstalled Stardock curser XP . Problem fixed , are not computers wierd ? I was prepaired to format and reinstall this weekend ! :blushing:


I did have some nasties tho that hijack fixed . But was concered about the continued slow down , So put my smart hat on ! :)

thanks for the link rossco_2004 - i found this entry as the only other possible nasty after
I ran "HiJack This" and wanted to know if I can go ahead and fix...or how can I tell if it is legitimate or not
Thanks again
"HKLM\System\CCS\Services\Tcpip\..\{DC6D854C-91D0-442B-9F3C-6F070C328985}: NameServer = 206.47.244.105 206.47.244.87"

I think that was the point about this site . Its not for the Noobs, me included ! :) Have you tryed the hijackthis sites?

no I haven't

no I haven't




How can we help you ? If not sure about about the file? leave alone then. Its not going to matter , till you decide . :)

"HKLM\System\CCS\Services\Tcpip\..\{DC6D854C-91D0-442B-9F3C-6F070C328985}: NameServer = 206.47.244.105 206.47.244.87"
Just curious if you find anything on your pc when searching for "KALVTMS" by any chance.
I think that this entry is related to Sympatico though somehow...

thanks for the updates-my isp is with sympatico - i think i will leave it as it is though - besides that entry every other entry is safe ... but i will continue to do some searching if required.....thanks ppl....