Help,little help!

Hi There,

Well recently I did routine Spyware/Virus scan on my PC like I do every week, I have Ad-aware and Norton Internet security,SpyWare guard and blocker running and,When i ran Ad-aware today it found somehting interesting h@tkeysh@@k.dll and with my luck it's a keylogger...

Well i changed most of my passwords on a virus free PC but now i'm afraid that won't be enough I hope I got rid of it completly I Cleared all my History,Cookies,Temporary Internet folders,System resotre folder then deleted it.

But it didn't detect nor did i find the usual .exe that's droped in with it,Does that make it less effective without one?

imean just having a .dll there with no real way of connecting to it doesn't seem so effective but i could be wrong,but i hope not,I have so many passwords and info that would Super costly if lost.

Any help...Or a link to a Special tool that deals with these type of Trojans.

 

First, please follow ALL the steps in this Sticky thread READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal
If you already have any of the programs linked in the tutorial please double check your version to make sure you have the latest one and that you have any/all updates for the programs. TIP: Create a folder on your C:\ drive for the tools/utilities you will need to use. For example: Navigate to your Program Files directory, right click on a blank spot in the window > choose New > Folder. Name this folder Spyware Tools. Now you can save the needed tools to this folder and if you prefer, create sub-folders named for each individual utility.

NOTE: In order to resolve the issues you are having it is very important that you at least try to perform all the steps as outlined. If you have any difficulty please post back letting us know what steps you have completed, what you found while doing the scans if anything and details about any problems you have encountered in completing the steps. The more details you can provide the better.


After doing ALL of the above if you still have a problem:

Make sure you have HijackThis 1.99.1 and follow the guidelines on where to install it and how to post a log as an ATTACHMENT.
All instructions are covered in the sticky thread NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting


Now post a Hijack This log as an ATTACHMENT to your message (Do NOT copy/paste the log into your post). Please close unnecessary running programs before you run HijackThis. You must close each of the following: your web browser, e-mail client, instant messenger, and programs like notepad, wordpad, MS Word etc.

DO NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file. Place it in its own folder, for example C:\Program Files\HJT

To Repeat: Please be sure to reply in this thread if you need further assistance or have any questions. Someone WILL be along to help you as soon as they can. You can help us help you by following the above instructions and providing detailed information as to the difficulties you are having and/or continuing to have after you have completed the Basic Spyware, Trojan And Virus Removal tutorial. Just telling us you followed the tutorial does not give us enough information. You need to let us know the results...was anything found? Were you unable to complete any of the scans?...Were you unable to download any of the tools?...Did you do the on-line scans as suggested? etc.

We all recognize that if you are here asking for help you are probably frustrated and maybe even angry that your computer has been taken over by some malicious program. Rest assured, we want to help you but that we get frustrated too when we are not given the requested information or when instructions are not followed. Don't be afraid to ask for additional help if you don't understand something! There is no such thing as a dumb question and we do not expect everyone who comes here to have vast computer knowledge, however you will be more educated and better prepared to prevent re-infestation when you leave here!

Good luck!

 

Ok here you go...

 

I dont see any baddies in your log. You can have HJT fix these entries but thats about it. As far Ad-Aware goes, was it removed?


O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)

 

Yeah it removed no problem,It's in quarintine really incase i need it to send to someone to get a better look at it,From what i understand it's a fairly new virus was discovered in 05 last month.I'm just wondering if it ever got anything or if it ever ran.

EDIT sorry here's a new one forgot to show hidden files and folders.

 

I would go ahead and run Spybot S&D as new updates were released this morning.

Also, to be sure your clean from any "hidden" trojans that will not show up in a HJT log. You can run TrojanHunter.

1) Download TrojanHunter

2) Install TrojanHunter, At the end of the install setup will prompt you to update definitions. Please do so!

3) Once installed and updated, select drive C:\ and do a Full Scan. Remove all found infections.

 

All clear with both,Hmm,Well I guess that's good. I'm not sure what else to think I hope no info was stolen though.

Thanks for you're help and time BJ,Much appreciated.

 

Your Welcome!

You should see this article on How to Protect yourself from malware!

Browse Safely!

 

Sorry to be a thorn in the side,With a dumb question But when I ran Trojan Hunter before it was clear of trojans and it didn't bring up a mess of things it scanned,But this one is too but now it show's files it tried to scan but failed to do so.

I don't think it's anything to worry about but who am I to know =\

 

These are just SpyBot S&D's backups. Nothing to worry about.