Home > General > Downloader.conhook.aa

Downloader.conhook.aa

Staff Online Now cybertech Moderator valis Moderator cwwozniak Trusted Advisor Advertisement Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware Removal > Home Forums Forums The help you receive here is free. When the scan is complete place a check mark next to the following entries: O2 - BHO: (no name) - {8c3d99b1-9f82-4731-8d1c-196d27785762} - C:\WINDOWS\system32\dpnprf.dll (file missing) O20 - Winlogon Notify: dpnprf - Thanks.No, but it is always a good idea to disable system restore before you clean an infected system, this way you can always reenable it after cleaning and are making you http://libraryonlineweb.com/general/conhook.php

My Website: UnSpyMe! Advertisement Recent Posts IPad will not connect to... The rest of this fix must be done in safe mode. Click OK, reboot and run a scan with Kav.Do you use Kav 5.0 or 6.0? http://www.bleepingcomputer.com/forums/t/57374/downloaderconhookaa-dpw775dll-geebyexe/

Download Hijack This! I ran a HijackThis log and am pasting it below. a name then click "Create".

  1. After all, my WinXP box is stable, and reboots are rare.
  2. I quit using CCleaner when they starting using the Yahoo!
  3. And two, I am always concerned about so-called security/Windows experts who choose to remain anonymous.Ron « Next Oldest · Virus-related issues · Next Newest » 2 Pages 12>
  4. It points to C:\Programs\MSXML 4.0; but doesn't seem to actually have a target.Through the use of Spybot, Adaware, TrojanHunter and Ewido, I have fixed most of my problems, so I come
  5. If you still need some help, please start with posting a new hijackthislog in this thread.

Unzip Process Explorer and double click on procexp.exe In the top section of the Process Exlporer screen double-click on winlogon.exe to bring up the winlogon.exe properties screen. Services - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O12 - Plugin Search - file:///C:\Program Files\Yahoo!\Common/ycsrch.htm O8 - Extra context menu item: Yahoo! &Dictionary - file:///C:\Program Files\Yahoo!\Common/ycdict.htm O8 - Extra context menu item: Yahoo! &Maps - file:///C:\Program Files\Yahoo!\Common/ycmap.htm O8 - Extra context menu There is a lot of misinformation out there.Debunking yet another bogus Windows tip - Ed BottWindows XP: Kernel Improvements Create a More Robust, Powerful, and Scalable OS - see the section

I booted back into safe mode and went through the scan again, perhaps I hit something wrong last time because this time it says something different on the log. IE Services Button - {5BAB4B5B-68BC-4B02-94D6-2FC0DE4A7897} - C:\Program Files\Yahoo!\Common\yiesrvc.dll O2 - BHO: (no name) - {8c3d99b1-9f82-4731-8d1c-196d27785762} - C:\WINDOWS\system32\dpnprf.dll (file missing) O2 - BHO: CNavExtBho Class - {BDF3E430-B101-42AD-A544-FADC6B084872} - C:\Program Files\Norton Internet Security\Norton Next run Hijack This! Olivier Back to top #3 stonangel stonangel Members 595 posts OFFLINE Location:France Local time:02:45 PM Posted 04 July 2006 - 04:39 AM Hi atorabli,* Updating Java:Go to Start > Control

Click the "More Options" Tab. 6. When VundoFix re-opens, click the "Scan for Vundo" button. 5. couldn't find info on this, so I figured this is where I should ask... dawgg View Member Profile 25.06.2006 14:08 Post #13 Helper Group: Moderators Posts: 9309 Joined: 6.04.2006 From: London are viruses or worms in system restore a cause for condern...

Here is my new log after following your instructions... Mozilla Firefox To Keep away from Malicious Sites Install this Program SiteAdvisor For some good reading Malware Prevention sjpritch25, Jul 26, 2006 #9 Sponsor This thread has been Locked Port being used by process aim.exe/PID 3684) (Tell me more about port alerts...)Memory scanNo trojans found in memoryFile scanFound trojan file: C:\WINDOWS\system32\issearch.exe (TrojanDownloader.Zlob.473)Found trojan file: C:\WINDOWS\system32\ixt0.dll (TrojanDownloader.Zlob.459)2 files identifiedIt cleaned Agent.100 Then select the items you wish to clean up.

Click Apply. 6. this page Click Start.2. Download and scan with CCleaner 1. It WORKS !!!!!!

Contacts About Web User Contact Us Advertising Info Top 10 Website - HitWise 2008 Follow Web User on Twitter Join the Web User Facebook group Watch the Web User Youtube channel Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\Program Files\Yahoo!\Messenger\YahooMessenger.exeO16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky...can_unicode.cabO16 - DPF: {38EDBA0A-4A1D-6B60-81E1-75932B9ED82D} - http://85.255.113.214/1/gdnUS2218.exeO16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitd...can8/oscan8.cabO16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} (Trend Micro ActiveX Join the ClassRoom and learn how. http://libraryonlineweb.com/general/downloader-awm-gen.php Graphics & Imaging Music & audio Video & CGI Hardware Tablets, smartphones and e-readers Computer components and accessories Other Hardware All

Lucian,There has been a recent discussion in alt.comp.virus about the value of Windows System Restore. m.kh replied Jan 24, 2017 at 7:38 AM Razer Core Graphics Card Issues DavisMcCarn replied Jan 24, 2017 at 7:29 AM A-Z Occupations #4 Gr3iz replied Jan 24, 2017 at 7:23 Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe O4 - HKLM\..\Run: [Apoint] "C:\Program Files\Apoint2K\Apoint.exe" O4 - HKLM\..\Run: [hpWirelessAssistant] "C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" O4 - HKLM\..\Run: [ccApp]

Thanks in advance.

A confirmation dialog box will be shown before clearing the information.* Clean other Temporary files + Recycle bin Go to start > run and type: cleanmgr and click ok. My computer is slow!---My Blog---Follow me on Twitter. log file into this thread. When completed, it will prompt that it will shutdown your computer, click "OK".winrkp32.dll 9.

And the more that I read about Windows prefetching, the more I don't understand why CCleaner has the option to clean out the prefetch folder.BTW, my Windows Task Scheduler broke, and sjpritch25, Jul 25, 2006 #2 DestnySuks Thread Starter Joined: Aug 13, 2003 Messages: 44 The Vundo ran and said that I had no infected files. Want to help others? useful reference Any help is most appreciated.

Since System Restore is a protected directory, your tools can not access it to delete files, trapping viruses inside. upload the suspect file from the temp folder to jotti for analysys ... Thread Tools Search this Thread Display Modes #1 26-06-06, 05:19 Louder Newbie Join Date: Jun 2006 Posts: 2 Downloader.ConHook.aa hijackthis-ML-289852-ML- wrong forum Louder View Public Profile Send a Thread Status: Not open for further replies.

Logfile of HijackThis v1.99.1 Scan saved at 2:05:50 AM, on 7/25/2006 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe Any emails without the subject "Reopen" will be deleted without being looked at. Give the R.P. Free malware removal help and training has remained a constant.

As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged Group: Gold beta testers Posts: 56947 Joined: 28.01.2006 From: Timisoara, Romania this could happen because of system resotre, but there are also trojans who are yet unknown that could always download