Breacuk.E

Hi there. Ive been a longtime reader of your forum and have learned lots by reading here. Thanks for all your hard work.

I had a good dose of Breacuk.E two weeks ago, and after following the advice on the sticky atop this forum, and some specific-to-breacuk.e help I found elsewhere online, like which files to delete, I feel that I have cleansed my system, but wanted your blessing to post a HiJack log just to be sure. May I, please?

Warmly,
Jeff

 

http://www.majorgeeks.com/images/grenade.gif Download HijackThis 1.99.1

http://www.majorgeeks.com/images/grenade.gif Unzip the hijackthis.exe file to a folder you create named C:\Program Files\HJT

http://www.majorgeeks.com/images/grenade.gif Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the ZIP file as your backups will not be safely stored.

http://www.majorgeeks.com/images/grenade.gifBefore running HijackThis: You must close each of the following:your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc. And any other unnecessary running programs.

http://www.majorgeeks.com/images/grenade.gifRun HijackThis and save your log file.

http://www.majorgeeks.com/images/grenade.gif Post your log as an ATTACHMENT to your next post. (Do NOT copy/paste the log into your post as it will be removed).

http://www.majorgeeks.com/images/grenade.gifNeed help with HJT? See this thread: NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

 

Thanks again for helping me with this. PC is still doing strange things. Today, when I turned it on, it went on its own into chkdisk, repaired an index file called Microsoft [1], and then when it fired up, the desktop display was rotated 90 degrees to the right. Additionally, another thing that looked weird to me is all of the connections by c:\program files\ati technologies\ati.ace\cli.exe in my firewall log. Here's the log:

 

hi i do know that all 015 are dodgy

 

Also, Ive got a copies of lsass in system32, servicepackfiles\i386, softwaredistribution\Download\6ca7b3a8efd5a9b6f87fff395a2eb989, and $ntservicepackuninstall$

Are any of these bad news?

I didnt understand the "hi i do know that all 015 are dodgy" could someone plz translate?

Thanks a million again,
Jeff

 

These are ok!

Scan with HijackThis and Check the Boxes for the following:

Make sure All Browser Windows are Closed when you Click FIX.

O15 - Trusted Zone: http://forums.huntnbuds.com
O15 - Trusted Zone: http://www.msn.com
O15 - Trusted Zone: http://cp.uniquewoodworld.com
O15 - Trusted Zone: http://www.weather.com

O16 - DPF: {FE5D6722-826F-11D5-A24E-0060B0F1A5AE} (Tukati Launcher) - http://www.tukati.com/software/4/1.7.20.20/tukati.cab

Again, make sure All Browser Windows are Closed when you Click FIX.

Your log isnt that bad, what problems are you having?

 

Thank you for reviewing my log. I thought I had it pretty well cleaned out but just wanted a second set of (more experienced) eyes.

What kind of problems you ask?

1) Well, first, I had that virus, but I guess Ive cleaned that all out now.
2) I get intermittent connection problems- pages not found that I know are ok. Wont let me log into my router. Wont acknowledge my password/username. When I reset it it wont go back to the default username/password. Ive tried the reset button with the paperclip and powering off for a couple days--nothing works (its a motorola SBG900 btw). Motorola is sending another one under warranty-maybe thats my problem, and Ill admit Im a little gunshy since the virus.

Finally, I have a crazy question, and please bear with me, its kinda abstract:

I'm forming a negative opinion of Norton Anti-Virus. Ive had three hardcore viruses in my life and Norton didnt notice any of them installing, didnt find any of them after searches, and wasnt able to repair any of them after I identified them personally. in Norton's defense, its stopped a handful of minor email viruses over that same time. Here's my opinion--I think that Norton, because it is the household name in virus protection, and because its used by most PCrs, that most viruses are designed with thwarting Norton specifically, and virus writers are successful in averting it. As an example Panda actually located the Breakuc.E where Norton's online scan saw nothing. Not to mention how much of a pig Norton is in terms of hogging system resources... Im thinking that the less expensive Norton alternatives are not a handicap at all, but actually have an advantage in finding and cleansing virii--much like most of the malware out there is designed to specifically attack IE because its in almost every PC, while browsers like Firefox remain largely unscathed.

Thoughts?

 

Personally, I would uninstall Norton as this could be your problem. I would go with one of our free AV we recommend, have a look at the site below. For the other problem, post that into the Networking Forum for best results.

How to Protect yourself from malware!