Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

cant run hijackthis

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: cant run hijackthis

Unread postby Trigger » October 29th, 2009, 6:54 am

Hey Wingman, i had no problems with your instructions i have the eset scanner log posted in the next reply, the comptuter is running great having no problems at all apart from having no space on my hard drive and the net running slow but those two things are related, one thing that came up tonight was avira poped up with an alert about this quote

"Virus or unwanted program 'TR/Drop.Agent.bcyv [trojan]'
detected in file 'C:\MGtools.exe.
Action performed: Delete file"

i ended up deleting it as you can see i think it may have ben a tool we used but i cant remember :roll: .
cheers Trigger
Trigger
Regular Member
 
Posts: 55
Joined: September 16th, 2009, 7:05 am
Advertisement
Register to Remove

Re: cant run hijackthis

Unread postby Trigger » October 29th, 2009, 6:55 am

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=6
# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6050
# api_version=3.0.2
# EOSSerial=1ed0b52572007648903717759f8e5b94
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2009-10-16 05:20:56
# local_time=2009-10-16 03:20:56 (+1000, E. Australia Standard Time)
# country="United States"
# lang=9
# osver=6.0.6001 NT Service Pack 1
# compatibility_mode=1797 61 100 100 886969015247
# compatibility_mode=5889 61 66 100 547876766231841
# scanned=85404
# found=2
# cleaned=0
# scan_time=1569
E:\Downloads\gamingharbor_installer.exe a variant of Win32/Adware.DoubleD.AB application 00000000000000000000000000000000 I
E:\Downloads\setup.exe a variant of Win32/Kryptik.AKL trojan 00000000000000000000000000000000 I
# version=6
# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6050
# api_version=3.0.2
# EOSSerial=1ed0b52572007648903717759f8e5b94
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2009-10-21 04:50:36
# local_time=2009-10-21 02:50:36 (+1000, E. Australia Standard Time)
# country="United States"
# lang=9
# osver=6.0.6001 NT Service Pack 1
# compatibility_mode=1797 61 100 100 850189971296
# compatibility_mode=5889 61 66 100 552178567187890
# scanned=110341
# found=2
# cleaned=0
# scan_time=1766
C:\_OTM\MovedFiles\10182009_141030\Downloads\gamingharbor_installer.exe a variant of Win32/Adware.DoubleD.AB application 00000000000000000000000000000000 I
C:\_OTM\MovedFiles\10182009_141030\Downloads\setup.exe a variant of Win32/Kryptik.AKL trojan 00000000000000000000000000000000 I
# version=6
# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6050
# api_version=3.0.2
# EOSSerial=1ed0b52572007648903717759f8e5b94
# end=finished
# remove_checked=false
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=true
# antistealth_checked=true
# utc_time=2009-10-29 04:28:32
# local_time=2009-10-29 02:28:32 (+1000, E. Australia Standard Time)
# country="United States"
# lang=9
# osver=6.0.6001 NT Service Pack 1
# compatibility_mode=1797 61 100 100 750347800000
# compatibility_mode=5889 61 66 100 559077325016594
# scanned=115244
# found=0
# cleaned=0
# scan_time=1957
Trigger
Regular Member
 
Posts: 55
Joined: September 16th, 2009, 7:05 am

Re: cant run hijackthis

Unread postby Wingman » October 29th, 2009, 10:04 am

Hello Trigger,

Great... your logs looks good, ESET scan came back clean. :)

Congratulations... you system appears clean :cheers:
I am providing the recommendations again, for ease of access and reading. Please execute the 2 steps presented, below.
See last line of post please.

Step 1.
Create a System Restore Point
  1. Right-click on Computer ... select Properties.
  2. In the left pane under Tasks ... click System protection.
    If UAC prompts for an administrator password or approval, type the password or give your "permission to continue".
  3. Select System Protection ...then choose Create.
  4. In the System Restore dialog box, type a description for the restore point ... click Create, again.
    A window will pop up with "The Restore Point was created successfully" confirmation message.
  5. Click OK ...then close the System Restore dialog.
Now you have a clean restore point to use if you need to restore your system.

Step 2.
Perform Disk Cleanup
Let's do some housekeeping now...
Note: You have to have administrative rights to run Disk Cleanup for all users.
  1. Click the Vista Start... button. Type "disk" (without the quotes) in the Start Search text entry box.
  2. Double click the Disk Cleanup entry, from the matching program list.
  3. In the Disk Cleanup options...select "Files from all users on this computer"
    If the Disk Cleanup: Drive Selection dialog box appears:
    • Select the drive where Windows Vista is installed. (Normally, this would be C:\ drive)
    • Press the "OK"...button.
    Disk Cleanup will begin space saving calculations.
  4. When the calculations are finished... Press the More Options tab.
  5. In the "System Restore and Shadow Copies" section... select "Clean up" button.
  6. Press the "Delete"... button, at the "Are you sure..." prompt.
    Disk Cleanup will begin cleaning up old files and restore points.
  7. Exit Disk Cleanup.
This will remove all restore points except the one you just created..

Update your Antivirus programs and other security products regularly.
Avoid new threats that could infect your system. You can also check if any application updates are needed for your PC.
Secunia Software Inspector - Copyright © Secunia.
F-secure Health Check - Copyright © F-Secure Corporation.

Visit Microsoft often.
Keep on top of critical updates , as well as other updates for your computer.
Using Windows Update in Windows Vista
What is Windows Update?
Microsoft Update Home

You can try...some free programs, that will help improve your computer's security.
These kinds of protection programs (adware, spyware, etc...) tend to overlap in coverages.
Many feel that having a "layered" protection scheme, is beneficial. Each individual has to decide what works best for their situation.
There are many available...here are a few you can look into, if you want. :)

Malwarebytes' Anti-Malware
You have this installed... This is a good scanner to use regularly. Always check for updates before running a scan.
Tutorials are available for installing and running, Malwarebytes' Anti-Malware.
For real-time protection you will have to purchase the product.

Spybot Search and Destroy
Do not enable Spybot's Teatimer protection, if you have WinPatrol installed. System conflicts can occur.
Download it from © Safer Networking Ltd. Just choose a mirror and off you go.
A Spybot tutorial can be found Here.

SpywareBlaster
If using Internet Explorer 8 and using the SmartScreen Filter, do not install. Can inhibit browser performance.
Download it from © Javacool Software LLC.
A SpywareBlaster knowledgebase can be found Here.

WinPatrol
Do not install if you have installed Spybot Search & Destroy and enabled Teatimer protection. System conflicts can occur.
Download it from Copyright © BillP Studios
Information about how WinPatrol works, is available Here

Firetrust SiteHound
You can find information and download it from © Firetrust Ltd

Firewall
I don't see any evidence of a third party firewall installed. If you do have one installed or are using Windows built in firewall, that's fine.
If you don't please continue reading.
As the term conveys, a firewall is an extra layer of security installed onto computers, which restricts access to systems from the outside world.
Firewalls protect against hackers and malicious intruders.
If you do not have a firewall installed...
I strongly recommend you download a free (for personal use) firewall NOW that monitors traffic in both directions... from one of these excellent vendors:
  1. Comodo (Is now bundled with AV software, toolbar and search provider. Opt to install only the firewall software... uncheck the rest)
  2. ZoneAlarm (uncheck ZoneAlarm Spy Blocker during installation if you choose this one)
  3. Ashampoo
  4. Agnitum
  5. Sunbelt/Kerio ... (30 day free trial)

Read - stay informed.
Please check out these articles:
Tony Klein's "How did I get infected in the first place?"
How to prevent Malware:© miekiemoes - Microsoft MVP - Consumer Security .

Please let me know you performed the 2 steps above successfully and have read the these recommendations. Once you reply, I will request that this topic be closed, as resolved.

Stay Safe! 8)
Wingman
User avatar
Wingman
Admin/Teacher
Admin/Teacher
 
Posts: 14115
Joined: July 1st, 2008, 1:34 pm
Location: East Coast, USA

Re: cant run hijackthis

Unread postby NonSuch » October 30th, 2009, 10:26 pm

As this issue appears to be resolved, this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
NonSuch
Administrator
Administrator
 
Posts: 27304
Joined: February 23rd, 2005, 7:08 am
Location: California
Advertisement
Register to Remove

Previous

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 48 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware