Remove-Malware.com Forums
Keeping Malware At Bay...Together
brendo's hijackthis log
If this topic has helped you then please...
- brendo88
- Junior Contributor
- Posts: 29
- Joined: Wed Mar 31, 2010 1:11 pm
- Has thanked: 0 time
- Have thanks: 0 time
Re: brendo's hijackthis log
by FieryDemon » Sun Apr 04, 2010 6:52 pm
I don't think you have any malware left but maybe just some config the malware altered that is preventing you from updating. You combofix and DDS came up ok. Even if there is something, MBAM and combofix should have got it since your problem has been for a long time. You could do a scan with kaspersky while your at it.
Go to Start > my computer > C drive > windows > windowupdate.log
Post the LAST 50 lines or so of the log.
Go to Start > my computer > C drive > windows > windowupdate.log
Post the LAST 50 lines or so of the log.
Real-time protection: Avira, Comodo Firewall and D+, Malwarebytes Pro
Anti-keylogging: KeyScrambler
OS: Vista 32-bit
Anti-keylogging: KeyScrambler
OS: Vista 32-bit
-
FieryDemon - Regular Contributor
- Posts: 567
- Joined: Tue Feb 09, 2010 1:16 pm
- Has thanked: 0 time
- Have thanks: 3 times
Re: brendo's hijackthis log
by Dieselman » Sun Apr 04, 2010 7:45 pm
Your host files also may be altered. Please post a GSI log. Its a Kaspersky program but it shows tons of info.
Download Here.
Download Here.
- Dieselman
Re: brendo's hijackthis log
by FieryDemon » Sun Apr 04, 2010 9:27 pm
And also, one last scan before concluding this is not caused by current malware on the PC but malware alteration before it was cleaned off.
http://oldtimer.geekstogo.com/OTL.exe
# Double click on OTL.exe to run it.
# Under Output, ensure that Minimal Output is selected.
# Under Extra Registry section, select Use SafeList.
# Under the Standard Registry box change it to All.
# Set File Age to 90 days
# Check the boxes beside LOP Check and Purity Check.
# Click Run Scan
NOTE: If this forum give you an error from posting email me the logs.
# Once finish, post both logs
So in your next reply, please include:
Kaspersky scan result
Last 30-50 line of the Window update log
GSI log
OTL logs
http://oldtimer.geekstogo.com/OTL.exe
# Double click on OTL.exe to run it.
# Under Output, ensure that Minimal Output is selected.
# Under Extra Registry section, select Use SafeList.
# Under the Standard Registry box change it to All.
# Set File Age to 90 days
# Check the boxes beside LOP Check and Purity Check.
# Click Run Scan
NOTE: If this forum give you an error from posting email me the logs.
# Once finish, post both logs
So in your next reply, please include:
Kaspersky scan result
Last 30-50 line of the Window update log
GSI log
OTL logs
Real-time protection: Avira, Comodo Firewall and D+, Malwarebytes Pro
Anti-keylogging: KeyScrambler
OS: Vista 32-bit
Anti-keylogging: KeyScrambler
OS: Vista 32-bit
-
FieryDemon - Regular Contributor
- Posts: 567
- Joined: Tue Feb 09, 2010 1:16 pm
- Has thanked: 0 time
- Have thanks: 3 times
Re: brendo's hijackthis log
by brendo88 » Sun Apr 04, 2010 9:49 pm
win update log.
2010-04-04 19:48:07-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:48:07-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:48:28-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:48:28-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:48:49-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:48:49-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:48:49-0600 1708 6c0 DownloadFileInternal failed for http://download.windowsupdate.com/msdownload/update/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:48:49-0600 1708 6c0 Failed to download the Redirector cab on try 1: 0x80072efd
2010-04-04 19:48:49-0600 1708 6c0 Checking for different Redirector at: http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab
2010-04-04 19:49:04-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:04-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:05-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:05-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:06-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:06-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:07-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:07-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:07-0600 1708 6c0 DownloadFileInternal failed for http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:49:07-0600 1708 6c0 Failed to download the Redirector cab on try 2: 0x80072efd
2010-04-04 19:49:07-0600 1708 6c0 Checking for different Redirector at: http://windowsupdate.microsoft.com/v5/redir/wuredir.cab
2010-04-04 19:49:31-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:31-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:52-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:52-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:50:13-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:50:13-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:50:34-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:50:34-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:50:34-0600 1708 6c0 DownloadFileInternal failed for http://windowsupdate.microsoft.com/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:50:34-0600 1708 6c0 Failed to download the Redirector cab on try 3: 0x80072efd
2010-04-04 19:50:34-0600 1708 6c0 Failed to obtain cached cookie with hr = 80072efd.
2010-04-04 19:50:34-0600 1708 6c0 PT: Using serverID {9482F4B4-E343-43B6-B170-9A65BC822C77}
2010-04-04 19:50:34-0600 1708 6c0 Checking for different Redirector at: http://download.windowsupdate.com/msdownload/update/v5/redir/wuredir.cab
2010-04-04 19:50:55-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:50:55-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:16-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:16-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:37-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:37-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:58-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:58-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:58-0600 1708 6c0 DownloadFileInternal failed for http://download.windowsupdate.com/msdownload/update/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:51:58-0600 1708 6c0 Failed to download the Redirector cab on try 1: 0x80072efd
2010-04-04 19:51:58-0600 1708 6c0 Checking for different Redirector at: http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab
2010-04-04 19:51:59-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:59-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:00-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:00-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:01-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:01-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:02-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:02-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:02-0600 1708 6c0 DownloadFileInternal failed for http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:52:02-0600 1708 6c0 Failed to download the Redirector cab on try 2: 0x80072efd
2010-04-04 19:52:02-0600 1708 6c0 Checking for different Redirector at: http://windowsupdate.microsoft.com/v5/redir/wuredir.cab
2010-04-04 19:52:23-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:23-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:44-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:44-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:53:05-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:53:05-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:53:26-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:53:26-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:53:26-0600 1708 6c0 DownloadFileInternal failed for http://windowsupdate.microsoft.com/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:53:26-0600 1708 6c0 Failed to download the Redirector cab on try 3: 0x80072efd
2010-04-04 19:53:26-0600 1708 6c0 Failed to obtain cached url with hr = 80072efd.
2010-04-04 19:53:26-0600 1708 6c0 Failed to upload events with hr = 80072efd.
2010-04-04 19:58:26-0600 3500 da0 Out of proc datastore is shutting down
2010-04-04 19:58:27-0600 3500 da0 Out of proc datastore is now inactive
2010-04-04 19:48:07-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:48:07-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:48:28-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:48:28-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:48:49-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:48:49-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:48:49-0600 1708 6c0 DownloadFileInternal failed for http://download.windowsupdate.com/msdownload/update/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:48:49-0600 1708 6c0 Failed to download the Redirector cab on try 1: 0x80072efd
2010-04-04 19:48:49-0600 1708 6c0 Checking for different Redirector at: http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab
2010-04-04 19:49:04-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:04-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:05-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:05-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:06-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:06-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:07-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:07-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:07-0600 1708 6c0 DownloadFileInternal failed for http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:49:07-0600 1708 6c0 Failed to download the Redirector cab on try 2: 0x80072efd
2010-04-04 19:49:07-0600 1708 6c0 Checking for different Redirector at: http://windowsupdate.microsoft.com/v5/redir/wuredir.cab
2010-04-04 19:49:31-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:31-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:49:52-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:49:52-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:50:13-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:50:13-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:50:34-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:50:34-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:50:34-0600 1708 6c0 DownloadFileInternal failed for http://windowsupdate.microsoft.com/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:50:34-0600 1708 6c0 Failed to download the Redirector cab on try 3: 0x80072efd
2010-04-04 19:50:34-0600 1708 6c0 Failed to obtain cached cookie with hr = 80072efd.
2010-04-04 19:50:34-0600 1708 6c0 PT: Using serverID {9482F4B4-E343-43B6-B170-9A65BC822C77}
2010-04-04 19:50:34-0600 1708 6c0 Checking for different Redirector at: http://download.windowsupdate.com/msdownload/update/v5/redir/wuredir.cab
2010-04-04 19:50:55-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:50:55-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:16-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:16-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:37-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:37-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:58-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:58-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:51:58-0600 1708 6c0 DownloadFileInternal failed for http://download.windowsupdate.com/msdownload/update/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:51:58-0600 1708 6c0 Failed to download the Redirector cab on try 1: 0x80072efd
2010-04-04 19:51:58-0600 1708 6c0 Checking for different Redirector at: http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab
2010-04-04 19:51:59-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:51:59-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:00-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:00-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:01-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:01-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:02-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:02-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:02-0600 1708 6c0 DownloadFileInternal failed for http://download.microsoft.com/windowsupdate/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:52:02-0600 1708 6c0 Failed to download the Redirector cab on try 2: 0x80072efd
2010-04-04 19:52:02-0600 1708 6c0 Checking for different Redirector at: http://windowsupdate.microsoft.com/v5/redir/wuredir.cab
2010-04-04 19:52:23-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:23-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:52:44-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:52:44-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:53:05-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:53:05-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:53:26-0600 1708 6c0 Send failed with hr = 80072efd.
2010-04-04 19:53:26-0600 1708 6c0 SendRequest failed with hr = 80072efd. Proxy List used: <(null)> Bypass List used : <(null)>
2010-04-04 19:53:26-0600 1708 6c0 DownloadFileInternal failed for http://windowsupdate.microsoft.com/v5/redir/wuredir.cab: error 0x80072efd
2010-04-04 19:53:26-0600 1708 6c0 Failed to download the Redirector cab on try 3: 0x80072efd
2010-04-04 19:53:26-0600 1708 6c0 Failed to obtain cached url with hr = 80072efd.
2010-04-04 19:53:26-0600 1708 6c0 Failed to upload events with hr = 80072efd.
2010-04-04 19:58:26-0600 3500 da0 Out of proc datastore is shutting down
2010-04-04 19:58:27-0600 3500 da0 Out of proc datastore is now inactive
- brendo88
- Junior Contributor
- Posts: 29
- Joined: Wed Mar 31, 2010 1:11 pm
- Has thanked: 0 time
- Have thanks: 0 time
Re: brendo's hijackthis log
by FieryDemon » Sun Apr 04, 2010 10:07 pm
Real-time protection: Avira, Comodo Firewall and D+, Malwarebytes Pro
Anti-keylogging: KeyScrambler
OS: Vista 32-bit
Anti-keylogging: KeyScrambler
OS: Vista 32-bit
-
FieryDemon - Regular Contributor
- Posts: 567
- Joined: Tue Feb 09, 2010 1:16 pm
- Has thanked: 0 time
- Have thanks: 3 times
Re: brendo's hijackthis log
by brendo88 » Sun Apr 04, 2010 10:23 pm
Fiery Demon it looks like its my internet connection is blocking me from reading the web page.
- brendo88
- Junior Contributor
- Posts: 29
- Joined: Wed Mar 31, 2010 1:11 pm
- Has thanked: 0 time
- Have thanks: 0 time
Re: brendo's hijackthis log
by brendo88 » Sun Apr 04, 2010 10:26 pm
sorry, i mean in the last post that it's blocking me getting window updates.
- brendo88
- Junior Contributor
- Posts: 29
- Joined: Wed Mar 31, 2010 1:11 pm
- Has thanked: 0 time
- Have thanks: 0 time
Re: brendo's hijackthis log
by Dieselman » Sun Apr 04, 2010 10:26 pm
ISP's do not block Windows Updates. Is that what you mean? Did you read that article of your same error? There are more services then the ones I mentioned.
- Dieselman
Who is online
Users browsing this forum: No registered users and 1 guest