HJT Log - Mope
With the help of this automatic analyzer you are able to get some additional support. If your computer reboots, run Rkill again before continuing on to the next step. C:\WINDOWS\system32\svchost.exe No streams found. Thanks Back to top #9 sdiggory sdiggory Member Members 11 posts Posted 02 January 2008 - 07:56 PM Followed your instructions.
Thank you and have a great day. Kaspersky Scanned file: smrs.exe - Infected smrs.exe - infected by Backdoor.Win32.SdBot.aad Scanned file: rsvp.exe - Clean Scanned file: aolserver.exe - Infected aolserver.exe - infected by Backdoor.Win32.SdBot.aad ==================================================== VirusTotal Scanned File - The two logs that you sent me have this content: -
HijackThis Log Started by sdiggory , Dec 31 2007 12:06 PM Page 1 of 2 1 2 Next This topic is locked 21 replies to this topic #1 sdiggory sdiggory Member Run the ESET Online scan as instructed in this post.Please copy and paste both the RKill log and the ESET Online Scan log (if there are detections) into your next reply. I have the log from Ad-Aware SE here I'll copy/paste. spent way too much tim on it already.Thanks for your input.RickHi,You have a Vundo infection:Please download VundoFix.exe to your desktop.Double-click VundoFix.exe to run it.Click the Scan for Vundo button.Once it's done
Using the site is easy and fun. Choose your usual account. Thank you and have a great day. That & I already told you the USB (remove safely) has disappeared several times, so it looks like things from that taskbar area are disappearing 2.
Before running the ESET Online scan, please do the following: . Though the Trojan has been identified and can be killed, because of it's backdoor functionality, your PC is very likely compromised and there is no way to be sure your computer Sorry, it was not clear to me how to post without quoting the previous message in its entirety. I would suggest that should be your next step.
Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt (Report.txt will also be copied to Clipboard ready for posting Here are few sites and downloadable tools that can automatically analyze HijackThis log file for you and gives you recommendations based on the analysis. Performing miscellaneous checks: * No issues found. Is there an option to "clean"?
I tried naming it that as well and it still gave me the error. We are no longer supporting your browser. Please pardon me, but as I said, I have never purchased or installed ESET Smart Security on my computer. I feel so stupid to download programs without really looking into them.
Press any Key and it will restart the PC. By default it will install HijackThis in the Program Files\Trendmicro folder and create a desktop shortcut. Double click ComboFix.exe & follow the prompts.3. For certain, it should not take seven hours to just scan one or more boot sectors.
Program finished at: 01/22/2017 11:08:43 PM Execution time: 0 hours(s), 4 minute(s), and 34 seconds(s) Back to top #54 garioch7 garioch7 RCMP Veteran Malware Response Team 1,874 posts OFFLINE Gender:Male It's not healthy for my HD to run the scan 3 days in a row so I'm just going to wait until you tell me what to do before I run Register now!
That means I'll have to run the scan again before I go to bed.
Thanks Back to top #5 sdiggory sdiggory Member Members 11 posts Posted 01 January 2008 - 01:15 PM Happy New Year! Service & Support HijackThis.de Supportforum Deutsch | English Forospyware.com (Spanish) www.forospyware.com Malwarecrypt.com www.malwarecrypt.com Computerhilfen www.computerhilfen.com Log file Show the visitors ratings © 2004 - 2017 In a rush of my own sadness, I posted an Ad-Aware SE log here, but read that I don't think logs are allowed here. Back to top #8 Simon9one Simon9one Self-Proclaimed Dictator of the World Anti-Spyware Brigade 4,311 posts Gender:Male Location:The Capital Wasteland Posted 20 July 2007 - 09:15 AM Silly me, I didn't even
It’s a security thing, nothing personal. Just paste your complete logfile into the textbox at the bottom of this page. See 3rd SS. Thanks Back to top #4 pskelley pskelley In Remembrance ..Rest in Peace Phil Trusted Malware Techs 1,767 posts Location:Clearwater, Florida Posted 31 December 2007 - 04:55 PM OK, we will proceed
Now b/c I need this computer again I'm going to have to do another "no action" on the scan. Please note that many features won't work unless you enable it. Obviously they weren't threats even though they were .exe files, so I guess those were false positives. You may reverse this for safety when we are finished.
It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot. Several functions may not work. Please do not worry, that is normal. Back to top #10 Simon9one Simon9one Self-Proclaimed Dictator of the World Anti-Spyware Brigade 4,311 posts Gender:Male Location:The Capital Wasteland Posted 20 July 2007 - 09:30 AM That's great that HijackThis works.
They do not show that all files and folders were scanned. Read and follow the instructions carefully, the tools will not work unless you do. And of course I'm going to contact them. I've been working with computers since '84 & I've been online full time since '98. 5.
I have issues with it on my cell phone. Use one or more of these free online scan and post the results: http://virusscan.jotti.org/ http://www.kaspersky.com/scanforvirus http://www.virustotal.com/ These are the files to scan: C:\WINDOWS\repair\smrs.exe C:\WINDOWS\System32\rsvp.exe C:\WINDOWS\System32\dllcache\aolserver.exe 1) Please download ATF Cleaner by After that is completed, please fun the System File Checker scan that I requested in this post. Click Yes to confirm.