possibly more hijacks...

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by RayJay, Jul 14, 2006.

  1. RayJay

    RayJay Private E-2

    Hey fellas,

    i've followed all the steps mentioned in your sticky posts, did a couple of online scans and removed some spyware and hijackers that were nested deeply into my pc. However, i know this kind of stuff and from experience i guess that there may be some remains. I did not want to post my hijack this log right awas, nevertheless, i DO kindly ask you to check my log and see if there's anything else that needs to be done...

    Thanks in advance!,
    Ray
     
  2. DavidGP

    DavidGP MajorGeeks Forum Administrator - Grand Pooh-Bah Staff Member

    Hi Ray and welcome,

    Sadly you didnt attach any logs?
     
  3. RayJay

    RayJay Private E-2

    I did not attach any logs on purpose, since you kind of need permission to post them... Was only being polite and following forum rules. I suppose it's ok to post my hjt log then... here we go.

    thanx
     

    Attached Files:

  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    No you don't! But you do need to follow the directions in the READ & RUN ME before attaching a HijackThis log. All steps must be complete which includes attaching the two logs requested in step 6 of the READ ME.
     
  5. RayJay

    RayJay Private E-2

    I followed all the steps, allthough i must admit that bitdefender did not work out properly, don't exactly know what the problem is (i did have latest java i believe). It said "this web site is not authorized to host this ActiveX control"... I did manage to scan with panda, did all the safe-booted non-online scans aswell (in the right order) and still believe there are some malicious processes runnning. Please take a look at my panda report.

    Thanx,
    Ray

    p.s. during all the scan, my updated mcafee on-acces scanner found some stuff aswell, i've added a screeny of it. One of the files, in the quarantaine folder, i cannot delete.
     

    Attached Files:

  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    What McAfee found is in System Restore which we will fix when all other malware is removed. The last item on McAfee's list was in a quarantine folder and remember step 0 of the READ ME said to empty all Quaratine folders???

    You need to run the below and attach the smitfiles.txt log

    SpywareQuake & SpyFalcon Removal Procedure
     
  7. RayJay

    RayJay Private E-2

    I've tried m8, but i'm no pro spyware killer and therefore not entirely aware of what happens if i turn of mcafee's on-scanner (which eventually was the program preventing me from deleting the file, caus' it immediately detected the virus and therefore the file was "in use") and access infected of malicious files. Finally i just did it and succesfully deleted the file.

    I've followed the entire procedure, but could not find ANY of the files mentioned in the process description. I did attach the log, as you required me to do, though...

    Thanx,
    Ray
     

    Attached Files:

  8. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Okay that SpywareQuake procedure already deleted some of the bad stuff before you looked for them. The log looks OK now.

    Are you having any other malware problems?
     
  9. RayJay

    RayJay Private E-2

    Don't know exactly, i wasn't even experiencing drastic pc behaviour before, but it sure was infected... Actually i was hoping for you to tell me according to, for example, my hjt log?

    In any case, thanx a bunch for helping me this far!

    Ray
     
  10. RayJay

    RayJay Private E-2

    Ow and btw..., i suppose i'll just have to disable system restore, reboot and enable it again to get rid of the malicious files in the system restore folder right?
     
  11. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    HijackThis logs are not a proper indication of whether a PC is infected of clean. That is why it is the last step of our cleaning procedures and not the first. If you really want to know if your PC is clean, then follow ALL of the steps below. Wait on toggling System Restore until we have determine that you are clean.

    • Run ALL the steps in this Sticky thread READ & RUN ME FIRST Before Asking for Support
    • Make sure you check version numbers and get all updates.
    • Very Important: Make sure you tell us the results from running the tutorial...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.
    • After doing ALL of the above you still have a problem make sure you have booted to normal mode and run the steps in the below link to properly use HijackThis and attach a log:
    • When you return to make your next post, make sure you attach the following logs and that you have run these scans in the following order too (these scans are covered in steps 6 & 7 of the READ & RUN ME sticky)
      • Bitdefender
      • Panda Scan
      • HijackThis
     

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds