HijackThis logfile, plus the two virus scan results

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by Bluebirds, Apr 4, 2006.

  1. Bluebirds

    Bluebirds Private E-2

    Houston, I have a problem.

    Ever since last night, my PC has been running a little slower than usual and I feel this is due to a virus and/or spyware etc.

    Having completed everything in the 'Run and Read me first' post, my suspicions have been confirmed for certain after the Panda scanner came up with Spyware.

    I was just wondering if one of you kind guys could take a look at my three attached files and come up with some sort of solution please.

    Thank you very much.
     

    Attached Files:

    Bluebirds, Apr 4, 2006
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You have a Spyware Quake problem which is covered in another sticky thread (which was mention in the READ & RUN ME). Run the below and attach the requested log:

    SpywareQuake Removal Procedure


    Also tell me how things are working now!
     
    chaslang, Apr 4, 2006
    #2
  3. Bluebirds

    Bluebirds Private E-2

    Thanks for helping mate.

    Two little things when doing that - there was no 'Spyware Quake' to remove in Add/Remove Programs, and I couldn't find 'stickrep.dll' at all.

    The smitfiles.txt is attached.

    Things are running a little better, but am I entirely clean now? :confused:
     

    Attached Files:

    Bluebirds, Apr 5, 2006
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    O2 - BHO: (no name) - {4da4616d-7e6e-4fd9-a2d5-b6c535733e22} - (no file)

    After clicking Fix, exit HJT.
    Boot into safe mode and use Windows Explorer to delete     (you may not find any of these! I'm just double checking!):
    C:\WINDOWS\SYSTEM32\ld66C8.tmp
    C:\WINDOWS\SYSTEM32\ot.ico
    C:\WINDOWS\system32\1024 <--- The whole folder


    Now reboot in normal mode and make sure you tell me how things are working now. If you are sill having any problems, please explain them in detail.
     
    chaslang, Apr 5, 2006
    #4
  5. Bluebirds

    Bluebirds Private E-2

    Thanks again.

    When I ran HJT, there was no 'O2 - BHO: (no name) - {4da4616d-7e6e-4fd9-a2d5-b6c535733e22} - (no file)' to fix.

    I also couldn't find any the files/folders you mentioned in Safe mode.

    I have attached the HJT log I just ran.

    Please let me know if I have to do anything else. :)
     

    Attached Files:

    Bluebirds, Apr 5, 2006
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Your log is clean. If you are not having any other malware problems, it is time to go back to step 1 of the READ & RUN ME to Disable System Restore which will flush your Restore Points. Then reboot and enable System Restore to create a new clean Restore Point.

    After that, you should work thru the below link:

    How to Protect yourself from malware!
     
    chaslang, Apr 5, 2006
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds