Nothing works

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by rwfdragon, Aug 13, 2005.

  1. rwfdragon

    rwfdragon Private E-2

    I tried all the steps outlined in the help section, and my pc is still as slow as a snail. One interesting thing is that sometimes after i run Hijack This, my pc is lightning fast for about 2 minutes. Also my Internet Explorer crashes alot, and it keeps telling me to get this certain security update for Internet Explorer, but when i go to the Windows update it says there are no new critical security downloads to get. I hope you guys can help cause i'm all out of ideas. I'll include my Hijack This log. Please if anyone has any ideas i'm all ears.
     

    Attached Files:

    rwfdragon, Aug 13, 2005
    #1
  2. rwfdragon

    rwfdragon Private E-2

    Here a list of what runs at startup. I noticed that one thing is on there twice and i have a blankspace, with no command. Here the list.
     

    Attached Files:

    rwfdragon, Aug 13, 2005
    #2
  3. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Star,

    I would be more concerned about the below lines:

    O4 - HKLM\..\Run: [Windows Compliant] ciokgo.exe
    O4 - HKLM\..\RunServices: [Windows Compliant] ciokgo.exe
    O4 - HKCU\..\Run: [Windows Compliant] ciokgo.exe
     
    chaslang, Aug 13, 2005
    #3
  4. rwfdragon

    rwfdragon Private E-2

    Anyone got anything else? my startup proccesses are in an earlier post on this thread, could someone double check that they'er ok? I really am dumb when it comes to computers.
    Also almost all of my folders have this thing thats kinda like transparent Gears on it called: Thumbs.db Anyone have a clue what that is?
     
    rwfdragon, Aug 14, 2005
    #4
  5. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    I already posted the problem lines for you. I guess Star17 is not around. Follow the steps below to fix them.

    If you are using WinXP or WinMe, make sure you have system restore disabled (per the tutorial).
    For all OS types, make sure viewing of hidden files is enabled (per the tutorial).

    Run HijackThis and select the following lines but DO NOT CLICK FIX until you exit all browser sessions including the one you are reading in right now:
    O4 - HKLM\..\Run: [Windows Compliant] ciokgo.exe
    O4 - HKLM\..\RunServices: [Windows Compliant] ciokgo.exe
    O4 - HKCU\..\Run: [Windows Compliant] ciokgo.exe


    After clicking Fix, exit HJT.
    Boot into safe mode and use Windows Explorer to delete:
    c:\windows\system32\ciokgo.exe

    If you get an error when deleting a file. Right click on the file and check to see if the read only attribute is checked. If it is, uncheck it and try again. Other wise open Task Manager and kill the process if running then delete the file.

    Now run Ccleaner (installed while running the READ ME FIRST). Now if running Win XP goto c:\windows\Prefetch and delete all files in this folder.

    Now reboot in normal mode and post a new HJT log. And tell us how things are working.
     
    chaslang, Aug 15, 2005
    #5

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds