Jump to content

Malware which does not get removed by Anti-Malware.


Recommended Posts

First off: Thanks a lot for your software, it helped me clear out a lot of malware and trojans.

However, i discovered that one nasty piece of malware, which isn't picked up by your program but is picked up by Ad-Aware 2008, still remains in my system and i have no idea as to why or how to fix it. My "HijackThis" log is as follows. I hope you'll help me as fast as possible since its a TAI 7 on ad-aware threat index.

EDIT: I added the top of the HijackThis Log.

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 13:57:32, on 2008-07-22

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16674)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program\Vanliga filer\Symantec Shared\ccProxy.exe

C:\Program\Vanliga filer\Symantec Shared\ccSetMgr.exe

C:\Program\Norton Internet Security\ISSVC.exe

C:\Program\Vanliga filer\Symantec Shared\SNDSrvc.exe

C:\Program\Vanliga filer\Symantec Shared\SPBBC\SPBBCSvc.exe

C:\Program\Vanliga filer\Symantec Shared\ccEvtMgr.exe

C:\Program\Lavasoft\Ad-Aware\aawservice.exe

C:\WINDOWS\Explorer.EXE

C:\Program\Roxio\Easy CD Creator 5\DirectCD\DirectCD.exe

C:\Program\Vanliga filer\Symantec Shared\ccApp.exe

C:\Program\ANI\ANIWZCS2 Service\WZCSLDR2.exe

C:\Program\Telia\Supportassistent\bin\sprtcmd.exe

D:\program\Quick time\QTTask.exe

D:\Program\HP Software Update\HPWuSchd2.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program\Windows Media Player\WMPNSCFG.exe

C:\WINDOWS\system32\devldr32.exe

C:\Program\Vanliga filer\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

C:\Program\Symantec\LiveUpdate\ALUSchedulerSvc.exe

C:\WINDOWS\System32\svchost.exe

C:\Program\Vanliga filer\Microsoft Shared\VS7Debug\mdm.exe

C:\Program\Norton Internet Security\Norton AntiVirus\navapsvc.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\ntvdm.exe

C:\WINDOWS\system32\pctspk.exe

C:\WINDOWS\System32\svchost.exe

C:\Program\Vanliga filer\Symantec Shared\CCPD-LC\symlcsvc.exe

D:\Program\Webroot\Spy Sweeper\SpySweeper.exe

C:\Program\iPod\bin\iPodService.exe

C:\Program\Symantec\LiveUpdate\AUpdate.exe

C:\Program\Symantec\LIVEUP~1\LUCOMS~1.EXE

C:\Program\Symantec\LiveUpdate\LuCallbackProxy.exe

C:\Program\Trend Micro\HijackThis\HijackThis.exe

C:\Program\Symantec\LiveUpdate\LuCallbackProxy.exe

C:\Program\Symantec\LiveUpdate\LuCallbackProxy.exe

R1 - HKCU\Software\Microsoft\Internet Explorer,SearchURL = http://66.40.21.70/search.asp

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = L

Link to post
Share on other sites

Since this topic has had no reply for over 5 days it will be closed to prevent other from posting into it. Should you decide to resume with your assistance PM any staff member and we will be happy to reopen the topic.

Note: the fixes in this topic are for this system only. Applying them to your system can cause severe damage and result in utter system failure. If you need help start your own topic and someone will be happy to assist you.

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.