Zlob Trojan - hijackthis log [RESOLVED]
Started by
captredsquare
, Mar 07 2008 03:30 PM
#31
Posted 25 March 2008 - 05:22 PM
#32
Posted 26 March 2008 - 11:31 AM
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"
"{d4c51fa4-9192-4a9a-8d2a-a0690c92f171}"="dikage"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"
"{d4c51fa4-9192-4a9a-8d2a-a0690c92f171}"="dikage"
#33
Posted 29 March 2008 - 04:43 AM
Hi,
Delete the old look.txt file from C:\
Save text below as fixme.bat in Notepad. Under Save as type, select All Files and save it on your Desktop.
Locate fixme.bat on your Desktop and double-click on it. It should look like this ->
Notepad should open with text on your screen, post or upload that into a reply.
Delete the old look.txt file from C:\
Save text below as fixme.bat in Notepad. Under Save as type, select All Files and save it on your Desktop.
regedit /e C:\look.txt "HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes"
Locate fixme.bat on your Desktop and double-click on it. It should look like this ->
Notepad should open with text on your screen, post or upload that into a reply.
#35
Posted 31 March 2008 - 04:17 PM
Hi,
Launch Notepad, and copy/paste everything in the codebox below into the new document, including the word REGEDIT4. Go up to "File Save As" and click the drop-down box to change the "Save As Type" to "All Files" and save it to your desktop as fixme.reg
Locate fixme.reg on your Desktop. It should look like this -->
Double-click on it. You will receive a prompt similar to: "Do you wish to merge the information into the registry?" Answer Yes and wait for a message to appear similar to Merged Successfully.
Open ATF Cleaner, click on select all for Internet Explorer and the same for any other browser you use. Rescan with Spy Hunter and tell me if any infections are found.
Launch Notepad, and copy/paste everything in the codebox below into the new document, including the word REGEDIT4. Go up to "File Save As" and click the drop-down box to change the "Save As Type" to "All Files" and save it to your desktop as fixme.reg
REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"=- [-HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{DAED9266-8C28-4C1C-8B58-5C66EFF1D302}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler] "{d4c51fa4-9192-4a9a-8d2a-a0690c92f171}"=-
Locate fixme.reg on your Desktop. It should look like this -->
Double-click on it. You will receive a prompt similar to: "Do you wish to merge the information into the registry?" Answer Yes and wait for a message to appear similar to Merged Successfully.
Open ATF Cleaner, click on select all for Internet Explorer and the same for any other browser you use. Rescan with Spy Hunter and tell me if any infections are found.
#36
Posted 01 April 2008 - 01:01 PM
You are a genius. Scanned with spyhunter and nothing showed up. Thank you so much for your help! Is there anything else I need to do?
#37
Posted 01 April 2008 - 01:55 PM
Please download OTCleanIt from HERE to your desktop.
Double click to run it. It will clean up the assortment of tools used during malware removal. When it has finnished, it will ask you to reboot so it can remove itself.
Congratulations, your log is now clean.
A well protected computer should have at least an Anti Virus and Firewall, an Anti Spyware is also great addition to your computers security. Here is a list of tools I like to recommend to people that will help ensure safe surfing on the internet, and to help you from getting infected again.
Note: DO NOT install more than one antivirus or Firewall program. They will conflict, and provide less protection, not more. Uninstall any existing Anti Virus\Firewall programs if you're going to install a new one.
Free Online Scans:
Free Active X and Java based online scans. You can use these scans from other companies and it will not interfere with your current Anti Virus. If you find that you are infected, post a Hijack This log in the forums.
Free Temp Cleaners:
Use these tools to clean temporary files from IE and Windows, empties the recycle bin and more. Great tool to help speed up your computer and knock out those nasties that like to reside in the temp folders. ATF cleaner recommended.
Free Firewall Downloads:
You must have a Firewall installed on your computer. This helps stop anything from leaving or entering your computer without your permission.
Free Anti Spyware Downloads:
An Antispyware is a great tool that can help remove infections along side your Anti Virus. Some include real time protection, scheduled scans and automatic definition updates.
Free Anti Virus Downloads:
A must have for all computers. Avast! recommended.
Other:
To find out more information about how you got infected in the first place and some great guidelines to follow to prevent future infections you can read THIS article by Tony Klein.
If you have any other problems or questions be sure to ask.
Double click to run it. It will clean up the assortment of tools used during malware removal. When it has finnished, it will ask you to reboot so it can remove itself.
Congratulations, your log is now clean.
A well protected computer should have at least an Anti Virus and Firewall, an Anti Spyware is also great addition to your computers security. Here is a list of tools I like to recommend to people that will help ensure safe surfing on the internet, and to help you from getting infected again.
Note: DO NOT install more than one antivirus or Firewall program. They will conflict, and provide less protection, not more. Uninstall any existing Anti Virus\Firewall programs if you're going to install a new one.
Free Online Scans:
Free Active X and Java based online scans. You can use these scans from other companies and it will not interfere with your current Anti Virus. If you find that you are infected, post a Hijack This log in the forums.
- Kapersky online scan
- Panda Online Scan
- F-Secure Online Scan
- TrendMicro HouseCall online scan
- Bit Defender online scan
Free Temp Cleaners:
Use these tools to clean temporary files from IE and Windows, empties the recycle bin and more. Great tool to help speed up your computer and knock out those nasties that like to reside in the temp folders. ATF cleaner recommended.
Free Firewall Downloads:
You must have a Firewall installed on your computer. This helps stop anything from leaving or entering your computer without your permission.
Free Anti Spyware Downloads:
An Antispyware is a great tool that can help remove infections along side your Anti Virus. Some include real time protection, scheduled scans and automatic definition updates.
- AVG Antispyware
- A-Squared Antispyware
- SpywareGuard
- SpywareBlaster
- SpywareTerminator
- Spybot Search & Destroy
- Ad Aware
Free Anti Virus Downloads:
A must have for all computers. Avast! recommended.
- SpywareTerminator With ClamAV Enabled.
- AntiVir
- Avast!
- Grisoft AVG
- Bit Defender Free
- a² Free
- Comodo BOClean
- SuperAntiSpyware
Other:
- SpywareGuard
Works as a Spyware "Shield" to protect your computer from getting malware in the first place. - IE-SpyAd
This tool puts over 5000 sites in your restricted zone so you'll be protected when you visit innocent-looking sites that aren't actually innocent at all. - Memtest86
Great memory testing software. - CPU-Z
This application gives detailed information about your system in a nice layout - Speedfan
Returns and monitors system temperatures. - Windows Updates
It is very important to make sure that both Internet Explorer and Windows are kept current with the latest critical security patches from Microsoft. To do this just start Internet Explorer and select Tools > Windows Update, and follow the online instructions from there.
To find out more information about how you got infected in the first place and some great guidelines to follow to prevent future infections you can read THIS article by Tony Klein.
If you have any other problems or questions be sure to ask.
#38
Posted 13 April 2008 - 12:57 PM
Since this issue appears to be resolved ... this Topic has been closed. Glad we could help.
If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.
Everyone else please begin a New Topic.
If you're the topic starter, and need this topic reopened, please contact a staff member with the address of the thread.
Everyone else please begin a New Topic.
Similar Topics
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users