please help me

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by moleman, Dec 31, 2004.

  1. moleman

    moleman Private E-2

    Help, I was attacked with a slew of malware and for the most part adaware and hijack this were able to ferret and remove them. Then I ran into a few that could not be removed so I reformated and reinstalled and started anew.
    somewhere during the installation of my new router, sygate personal firewall and win 2k a slew of new entries showed up in my registry and I'm getting requests to outbound connect every 3 minutes. I would love to have someone look at my hijack log and tell me which of these are causing my problems. Thankyou
     
    moleman, Dec 31, 2004
    #1
  2. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You most likely need to get all of your Windows Security updates.

    Are you able to download files? What type of connection do you have to the internet (dial-up, DSL, Cable)?
     
    chaslang, Dec 31, 2004
    #2
  3. moleman

    moleman Private E-2

    I am using DSL through a new lynksys router. And since my first post I was able to research and identify 53, yes 53, malware's via major geeks help info and google searches. Some of them took removing them from the programs folder and subsequently hacking them out of the registry manually.
    But I am left with one persistant bugger "hllcxpa.exe" that neither hijack this, adaware nor manually removing the values in the registry works. As soon as I delete the value, it regenerates. Any ideas?
     
    moleman, Dec 31, 2004
    #3
  4. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    Have you run ALL of the steps in: READ ME FIRST BEFORE ASKING FOR SUPPORT: Basic Spyware, Trojan And Virus Removal

    If so, then follow the guidelines below and post your HJT log as an attachment.

    Make sure you have HijackThis 1.99 and follow the guidelines on where to install it and how to post a log as an attachment. This is all covered in the sticky thread NO HIJACK THIS LOG FILES BEFORE READING THIS: HJT Tutorial & LOG File Posting

    Now post a HijackThis as a .txt file attachment to your message. All running programs should be closed, including your web browser, e-mail. Close before running Hijack This!

    To repeat: Do NOT run Hijack This from the Desktop, a temp folder, or a sub-folder of C:\Documents and Settings, or choose to run it directly from the downloaded ZIP file. Place it in its own folder, for example C:\Program Files\HJT
     
    chaslang, Dec 31, 2004
    #4
  5. moleman

    moleman Private E-2

    Thankyou for your help. Once again if I would just read all of the info on removing malware here at major geeks I would save myself considerable time and frustration. I was able to finally destroy "HLLCXPA" from my registry after stoping it as a runnning proccess. Duh. Now the only things left in there belong there and all on earth is well again. Thanks again. :)
     
    moleman, Dec 31, 2004
    #5
  6. chaslang

    chaslang MajorGeeks Admin - Master Malware Expert Staff Member

    You're welcome. Happy to hear you have it all worked out.
     
    chaslang, Dec 31, 2004
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds