MajorGeeks Support Forums

Go Back   MajorGeeks Support Forums > ----------= PC, Desktop and Laptop Support =---------- > Malware Removal
Register FAQ Members List Calendar Casino Mark Forums Read

Malware Removal Malware removal forum. Please see the READ ME FIRST thread before you post. Forum is staffed by a small number of volunteers, please be patient.


Reply
 
Thread Tools Display Modes
  #1  
Old 04-22-08, 04:59
demon1300 demon1300 is offline
Private E-2
 
Join Date: Jan 2008
Posts: 3
Thanks: 0
Thanked 0 Times in 0 Posts
Default Win32/Loodok!generic.2 - Need Help!!

Guys,

My brother has given me his PC recently as it ammounted quite a number of viruses etc. I decided to blow away the machine, and full format it.

Now upon re-installing windows, ive gotten to installing Java and it appears that my antivirus (VET by CA) has picked up this:

Win32/Loodok!generic.2

Now it says that its located here

C:\documents & settings\%username%\local settings\Temp\nsjiE.tmp\System.dll

This seems to be displayed when ever i try and run an executable, and is really pissing me off because i can't install AVG, Spybot etc to get rid of it.

I've done a quick hijackthis log and also ran combofix, but that's about all i can come up with. Hopefully somone can help me with the info provided.

Hope to hear from someone shortly!!
Cheers, Rob
Attached Files
File Type: txt ComboFix.txt (10.0 KB, 14 views)
File Type: log hijackthis.log (3.7 KB, 6 views)
Reply With Quote
Sponsored links
  #2  
Old 04-22-08, 12:11
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,425
Thanks: 430
Thanked 4,578 Times in 4,332 Posts
Default Re: Win32/Loodok!generic.2 - Need Help!!

Welcome to Major Geeks!

This is definitely not the place to install HJT: F:\Antivirus\HiJackThis.exe

Please uninstall HJT as it will be properly installed when you do the following:

Please follow the instructions in the below link and attach the requested logs when you finish these instructions.

READ & RUN ME FIRST. Malware Removal Guide
Reply With Quote
  #3  
Old 04-22-08, 19:28
demon1300 demon1300 is offline
Private E-2
 
Join Date: Jan 2008
Posts: 3
Thanks: 0
Thanked 0 Times in 0 Posts
Default Re: Win32/Loodok!generic.2 - Need Help!!

i didn't think that it mattered where HJT was run from? It was run of a USB key. Would this have any effect on teh scan?

I've followed as much of the requested guide, its just that i can't scan anything becuase i can't install it!! All .exe's error and won't run.

Cheers, Rob
Reply With Quote
  #4  
Old 04-22-08, 20:26
TimW's Avatar
TimW TimW is offline
MajorGeeks Administrator - Jedi Malware Expert
 
Join Date: Jan 2005
Location: The recesses of my mind!
Posts: 46,425
Thanks: 430
Thanked 4,578 Times in 4,332 Posts
Default Re: Win32/Loodok!generic.2 - Need Help!!

HJT should be downloaded to C:\Program Files\HJT\analyse.exe .....malware can hide from it if not renamed.
What happens if you try to remove:
C:\documents & settings\%username%\local settings\Temp\nsjiE.tmp\System.dll

ComboFIx downloads to your desktop....will that not run?

Can you get on the web ---if so, Go to Bitdefender agree to the license and then select Scan. DO NOT CHANGE THE OPTIONS TO SHOW ALL FILES SCANNED. That will make your logs huge and we don't need to see clean files. Once Bitdefender completes the scan:

Click-on the Detected Problems tab. Then select Click here to export the scan report

When the window comes up to save the report, change the Save as type: box to Text (Tab Delimited) (*.txt) and then in the File name box enter change to bdscan then click save. This will save a file named bdscan.txt in whatever folder you are currently in when you save the file (take notice of where you are at so you can find it later). This bdcan.txt file will actually contain HTML code that we can easily view later while reviewing your log. All we have to do is rename the file to bdscan.html.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Win32/Generic.worm!p2p... can't get rid of it! clashcity19 Malware Removal 4 04-23-07 00:19
Generic win32 has encountered a problem funky munky Software 11 08-13-06 13:59
Win32?Clspring!generic PaddyP Malware Removal 3 02-09-06 11:54
Generic Host Process for Win32 Services tritonobx Software 11 04-03-05 15:11
Generic host for Win32 ? senilejester Software 1 01-22-05 07:02


All times are GMT -5. The time now is 09:36.

MajorGeeks.Com Menu

MajorGeeks.Com \ All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ NEW! PC Games \ System Tools \ Macintosh \ Demonews.Com \ Top Downloads

MajorGeeks.Com \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds


Powered by vBulletin® Version 3.8.4
Copyright © 2009 vBulletin Solutions, Inc. All rights reserved.
Ad Management by RedTyger