VX2 is killing me

Discussion in 'Malware Help - MG (A Specialist Will Reply)' started by mitgib, Dec 17, 2004.

  1. mitgib

    mitgib Private E-2

    I've never had these two kick my butt as bad as they are, but they are, here are current cwshredder and hyjackthis logs, hopefully someone can assist me to get these off
     

    Attached Files:

    Last edited by a moderator: Dec 17, 2004
    mitgib, Dec 17, 2004
    #1
  2. PhilliePhan

    PhilliePhan Guest

    Hi Mitgib,

    Welcome to MGs :)

    Is that HJT log complete? I don't see these:
    HOSTS: 69.20.16.183 ieautosearch
    HOSTS: 69.20.16.183 ieautosearch
    HOSTS: 69.20.16.183 auto.search.msn.com
    HOSTS: 69.20.16.183 search.netscape.com
    HOSTS: 69.20.16.183 search.netscape.com

    Please locate HijackThis in its own folder - C:\Program Files\HijackThis and then attach a fresh Log.
    Before you scan, Please close all running programs including your web browser, e-mail and items in the system tray.

    Please save your HJT Log as a .txt File and attach it via the "Manage Attachments" tool in the Additional Options section when you post.

    Somebody will check back when they get a chance.

    PP :)
     
    PhilliePhan, Dec 17, 2004
    #2
  3. mitgib

    mitgib Private E-2

    Here is a fresh hijackthis log
     

    Attached Files:

    mitgib, Dec 18, 2004
    #3
  4. PhilliePhan

    PhilliePhan Guest

    Hi Mitgib,

    This thing is nasty! I will copy and paste what I suggested for another person in the same boat:

    I have an option that you can try, but it is strictly a "Do at your own risk proposition."

    If you want to give it a go, please download the following:

    Generic Detection Tool

    Pocket KillBox

    NOW:
    Please run a scan with HijackThis v1.99 and attach that log.

    Then, unzip the Generic Detection Tool to a safe folder of your choice and run "findit.bat" - Allow it as much time as it needs to run. You may get an error message of "File Not Found," but just let it go.

    The tool should generate a long text file. Please attach that along with the HJT log.

    I have tried this before and it didn't give me all of the info needed to proceed, and the same may happen here - but, it's worth a try.

    I will try to check back when time permits.

    PP :)
     
    PhilliePhan, Dec 18, 2004
    #4
  5. mitgib

    mitgib Private E-2

    Thanks Phillie,

    Unfortunatly, my customer didn't want to wait any longer to get that box back, so I formated it and reinstalled, 3 hours and out the door it went. That was one of the nastiest hijackers I have ever run across, and if I ever see it again it will be too soon. 1st one that has beat me :(
     
    mitgib, Dec 18, 2004
    #5
  6. PhilliePhan

    PhilliePhan Guest

    Well, that's one way to do it! :) For further reference, there is now a process for attacking this baddie, though it seems to work best on XP machines.

    PP
     
    PhilliePhan, Dec 19, 2004
    #6

MajorGeeks.Com Menu

Downloads All In One Tweaks \ Android \ Anti-Malware \ Anti-Virus \ Appearance \ Backup \ Browsers \ CD\DVD\Blu-Ray \ Covert Ops \ Drive Utilities \ Drivers \ Graphics \ Internet Tools \ Multimedia \ Networking \ Office Tools \ PC Games \ System Tools \ Mac/Apple/Ipad Downloads

Other News: Top Downloads \ News (Tech) \ Off Base (Other Websites News) \ Way Off Base (Offbeat Stories and Pics)

Social: Facebook \ YouTube \ Twitter \ Tumblr \ Pintrest \ RSS Feeds