jimihendrix465 Posted June 4, 2009 Ive been getting weird internet browser errors for a few days now so i decided to scan my computer with SAS for any threats and it found a threat called "Browser Hijacker.MJCore" so i tried to remove it and SAS asked to restart so i did. After i rebooted i re-scanned to check if it removed it and it didnt, then i thought the threat mustve re-installed itself somehow, but im not sure, im not too smart at this I tried scanning and removing the threat in safe mode but that still didnt work so i dont know how to get rid of this please help. Share this post Link to post Share on other sites
jimihendrix465 Posted June 5, 2009 SUPERAntiSpyware Scan Log https://www.superantispyware.com Generated 06/04/2009 at 06:49 PM Application Version : 4.26.1004 Core Rules Database Version : 3925 Trace Rules Database Version: 1869 Scan type : Quick Scan Total Scan Time : 00:06:15 Memory items scanned : 466 Memory threats detected : 0 Registry items scanned : 410 Registry threats detected : 3 File items scanned : 5515 File threats detected : 10 Adware.Tracking Cookie C:\Documents and Settings\AG\Cookies\ag@ad.yieldmanager[2].txt C:\Documents and Settings\AG\Cookies\ag@tribalfusion[2].txt C:\Documents and Settings\AG\Cookies\ag@ads.sun[1].txt C:\Documents and Settings\AG\Cookies\ag@msnportal.112.2o7[1].txt C:\Documents and Settings\AG\Cookies\ag@doubleclick[2].txt C:\Documents and Settings\AG\Cookies\ag@atdmt[1].txt C:\Documents and Settings\AG\Cookies\ag@bs.serving-sys[2].txt C:\Documents and Settings\AG\Cookies\ag@serving-sys[1].txt Browser Hijacker.MJCore HKLM\SOFTWARE\Classes\BHO_MyJavaCore.Mjcore HKLM\SOFTWARE\Classes\BHO_MyJavaCore.Mjcore\CLSID HKLM\SOFTWARE\Classes\BHO_MyJavaCore.Mjcore\CurVer Trojan.Unknown Origin C:\WINDOWS\PEV.EXE C:\WINDOWS\Prefetch\PEV.EXE-0CE2BF4A.pf Share this post Link to post Share on other sites
jimihendrix465 Posted June 5, 2009 SUPERAntiSpyware Scan Log https://www.superantispyware.com Generated 06/05/2009 at 03:29 PM Application Version : 4.26.1004 Core Rules Database Version : 3926 Trace Rules Database Version: 1870 Scan type : Complete Scan Total Scan Time : 00:21:58 Memory items scanned : 468 Memory threats detected : 0 Registry items scanned : 5578 Registry threats detected : 3 File items scanned : 20439 File threats detected : 9 Adware.Tracking Cookie C:\Documents and Settings\AG\Cookies\ag@advertising[1].txt C:\Documents and Settings\AG\Cookies\ag@msnportal.112.2o7[1].txt C:\Documents and Settings\AG\Cookies\ag@doubleclick[1].txt C:\Documents and Settings\AG\Cookies\ag@atdmt[1].txt Browser Hijacker.MJCore HKLM\SOFTWARE\Classes\BHO_MyJavaCore.Mjcore HKLM\SOFTWARE\Classes\BHO_MyJavaCore.Mjcore\CLSID HKLM\SOFTWARE\Classes\BHO_MyJavaCore.Mjcore\CurVer Trojan.Unknown Origin C:\SYSTEM VOLUME INFORMATION\_RESTORE{1EBFE7FA-C9E0-4E73-AFB1-88ECC3A6CB05}\RP288\A0043860.EXE C:\SYSTEM VOLUME INFORMATION\_RESTORE{1EBFE7FA-C9E0-4E73-AFB1-88ECC3A6CB05}\RP288\A0043915.EXE C:\SYSTEM VOLUME INFORMATION\_RESTORE{1EBFE7FA-C9E0-4E73-AFB1-88ECC3A6CB05}\RP290\A0044114.EXE Trace.Known Threat Sources C:\Documents and Settings\AG\Local Settings\Temporary Internet Files\Content.IE5\K6H2VPFH\chunks[8].jsp C:\Documents and Settings\AG\Local Settings\Temporary Internet Files\Content.IE5\TGEIWPE3\chunks[8].jsp Share this post Link to post Share on other sites
eL_PuSHeR Posted June 6, 2009 I think you should flush System Restore Points prior to do the scanning. Deleting temporary folders and web browser cache folders is advisable too. Share this post Link to post Share on other sites
jimihendrix465 Posted June 7, 2009 ok i just tried that and it seemed to fix the other threats that i had but the main one ive been trying to remove is still here somehow (BHO_MyJavaCore.Mjcore).. any other suggestions? Share this post Link to post Share on other sites
jimihendrix465 Posted June 8, 2009 it wont let me delete it, and i cant change the permissions either or rename it. Even when logged in as the main computer administrator it wont let me delete it or change permissions. suggestions? Share this post Link to post Share on other sites