Home > Trojan Horse > Trojan Horse (HJT Log Included) HELP!

Trojan Horse (HJT Log Included) HELP!

Ashampoo is the better of the two you listed so that is what I'd suggest you use unless you don't like it for some reason. what can i do? Several functions may not work. Copy and paste the content of 'hijackthis.log' and post the log file in any forums that offers HijackThis analysis.Most of what it lists will be harmless, so do not fix anything http://gsdclb.org/trojan-horse/trojan-horse-hj-log-included.php

Here it is uploaded. Back to top #17 Tomk_ Tomk_ WTT Teacher Trusted Malware Techs 1,599 posts Gender:Male Posted 27 August 2012 - 11:18 AM Thread has been reopened for the last time. Click here to join today! Completion time: 2012-08-01 21:29:25 - machine was rebooted ComboFix-quarantined-files.txt 2012-08-01 20:29 .

What do you think?Thnks again for the information. AVG is stating that the file in question is c:\Windows\System32\services.exe and that tyhe infection is a Trojan horse Dropper. The firewall warns me that I'm then not protected until I restart. Trojan horse Dropper.Generic_c.MMI - HJT log included Started by Rios_SK , Jul 30 2012 01:16 PM Page 1 of 2 1 2 Next This topic is locked 24 replies to this

C:WindowsassemblyGAC_64Desktop.ini moved successfully. ==== End of Fixlog ==== Back to top #6 Tomk_ Tomk_ WTT Teacher Trusted Malware Techs 1,599 posts Gender:Male Posted 01 August 2012 - 02:26 PM Good. Style Default Style Contact Us Help Home Top RSS Terms and Rules Copyright © TechGuy, Inc. Back to top #12 Rios_SK Rios_SK Member Members 33 posts Posted 02 August 2012 - 03:21 AM Please see the threats log below: C:QooboxQuarantineCWindowsInstaller{694b1084-27a1-1215-289d-65ef56d651e7}[email protected] Win64/Agent.BA trojan C:QooboxQuarantineCWindowsInstaller{694b1084-27a1-1215-289d-65ef56d651e7}[email protected] Win64/Conedex.B trojan C:QooboxQuarantineCWindowsInstaller{694b1084-27a1-1215-289d-65ef56d651e7}[email protected] Win64/Sirefef.AE I will post my next log tonight after work.

I've run ad-aware and Norton full system scans and they don't pick anything up. Can someone please decipher my Log.. Powered by Volunteers. I have run AVG and the PC Pitstop scanner and they can't remove the threat.

If you're not already familiar with forums, watch our Welcome Guide to get started. Nov 24, 2007 #5 (You must log in or sign up to reply here.) Show Ignored Content Topic Status: Not open for further replies. Back to top #14 Tomk_ Tomk_ WTT Teacher Trusted Malware Techs 1,599 posts Gender:Male Posted 06 August 2012 - 08:49 PM Are you still there? Also is a really bad idea to post your e-mail address in a public forum for a number of reasons, one of them being spam.

  • Just in case anyone is able to help me get rid of an incredibly nasty trojan horse that's infected my Thread Tools Search this Thread 12-02-2008, 08:35 AM #1
  • C:WindowsSystem32User32.dll => MD5 is legit C:WindowsSysWOW64User32.dll => MD5 is legit C:WindowsSystem32userinit.exe => MD5 is legit C:WindowsSysWOW64userinit.exe => MD5 is legit C:WindowsSystem32Driversvolsnap.sys => MD5 is legit ==================== EXE ASSOCIATION ===================== HKLM....exe: exefile
  • If you do not wish to post logs to let me check, Please check out Tony Klein's article "How did I get infected in the first place?" And miekiemoes' "How to
  • Join our site today to ask your question.

Turn off the real time scanner of any existing antivirus program while performing the online scanTick the box next to YES, I accept the Terms of Use.Click StartWhen asked, allow the Please don`t post your own virus/spyware problems in this thread. I cannot run DDS as I am using the 64bit version of Windows 7. Also verify your firewall permissions as stated in this http://free.avg.com/ww.faq.num-1334.

Put your HijackThis.exe there, and double click to run it.Click 'Scan' button. weblink I also tried to move into the recycle bin and it tells me that it is being used by another user etc.My question is why did Norton not catch it (what's Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site. Problem persists March 31, 2009 16:46 Re: Update fails #3 Top kateline Novice Join Date: 31.3.2009 Posts: 31 You didn't provide us all the information that we

Nov 24, 2007 #3 howard_hopkinso TS Rookie Posts: 24,177 +19 Your HJT log still shows signs of infection. Thank you. March 31, 2009 16:46 Re: Update fails #5 Top jonath Senior Join Date: 31.3.2009 Posts: 32 Sorry for omissions - now collected here I hope. Please start a New Thread if you're having a similar issue.View our Welcome Guide to learn how to use this site. navigate here TechSpot Account Sign up for free, it takes 30 seconds.

Back to top #7 Rios_SK Rios_SK Member Members 33 posts Posted 01 August 2012 - 03:34 PM I have run ComboFix and it found the infected file and restored it. Other programmes trigger Ashampoo for authorisation of programmes however AVG8 does not trigger Ashampoo Firewall permission box. Big Issue with Ads/Pop-Ups how to config the DNS (win2012) to... [SOLVED] My laptop exponentially slows down...

CAUTION: Do not mouse-click ComboFix's window while it is running.

All rights reserved. Regards Howard This thread is for the use of rainyhands only. Join the community here. About CNET Privacy Policy Ad Choice Terms of Use Mobile User Agreement Help Center

Yes, my password is: Forgot your password? If you have similar symptoms create own topic instead of following instructions given to some other, please. I'm hoping that someone here can come to the rescue and the 'fix' will be just as simple. his comment is here Later, Norton detected the virus as a Trojan Horse, but said that it could not be accessed, and offered no solution to fix it.

Flag Permalink This was helpful (0) Collapse - Trojan Cachecachekit by cookin / October 1, 2005 1:12 PM PDT In reply to: It sounds like you are pretty Thanks so much Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before following the steps below. Advertisement Tech Support Guy Home Forums > Security & Malware Removal > Virus & Other Malware Removal > Home Forums Forums Quick Links Search Forums Recent Posts Members Members Quick Links Site Changelog Community Forum Software by IP.Board Sign In Use Facebook Use Twitter Need an account?

Back to top #16 Rios_SK Rios_SK Member Members 33 posts Posted 22 August 2012 - 05:38 AM TomK_, Sorry about that, I didn't see the message that you sent regarding the Follow all the instructions exactly. Are you looking for the solution to your computer problem? Save it on the flashdrive as fixlist.txt C:WindowsInstaller{694b1084-27a1-1215-289d-65ef56d651e7} C:UsersUserAppDataLocal{694b1084-27a1-1215-289d-65ef56d651e7} C:WindowsassemblyGAC_32Desktop.ini C:WindowsassemblyGAC_64Desktop.ini NOTICE: This script was written specifically for this user, for use on that particular machine.

If you have similar symptoms create own topic instead of following instructions given to some other, please. Blogs Advanced Search Forums Spyware Help Trojan horse Generic5.JMY problem, HJT log included.