Trend Micro HijackThis 2.0.2 + ComboFix
Quote:
HijackThis lists the contents of key areas of the Registry and hard drive--areas that are used by both legitimate programmers and hijackers. The program is continually updated to detect and remove new hijacks. It does not target specific programs and URLs, only the methods used by hijackers to force you onto their sites. As a result, false positives are imminent, and unless you're sure about what you're doing, you always should consult with knowledgable folks before deleting anything.
|
PHP Code:
ComboFix specifically targets SurfSideKick, QooLogic, Look2Me or any combination of that group.
It also nicely picks out Vundo infections and clears some, but not all.
One of the better things it does is pick files recently created which can give clues to other infections. It's very robust too. You can use it to unhook any dll in the system32 folder. You can use it to delete up to as many as 8 files using its command line functions.
It deletes a bunch of files related to the infections above automatically and is updated fairly regularly.
There is more but that's it in a nutshell.
If you think you are infected please run this HijackThis and post the log file. Combofix is one of the programs that the gold shields use and as far as I know it should not have any rootkits in it.
To download HJTsetup.exe from TrendSecure To Download HijackThis go to the following at the File Repository
Click on the link below to Download HijackThis Self Installer:
http://www.trendsecure.com/portal/en...HJTInstall.exe
Save the file to your desktop.
Double click on the HJTsetup.exe icon on your desktop.
By default it will install to C:Program FilesHijackThis.
Continue to click Next in the setup dialog boxes until you get to the Select Additional Tasks dialog.
Put a check by Create a desktop icon then click Next again.
Continue to follow the rest of the prompts from there.
At the final dialog box click Finish and it will launch Hijack This.
Click on the Do a system scan and save a log file button. It will scan and then ask you to save the log.
Click Save to save the log file and then the log will open in notepad.
At the top of the Notepad HJT log screen, hit Edit then Select All then click Edit and then click Copy doing that copies the text to the clipboard, you won't see it yet....
Come back here to this thread and Paste the log in your next reply.
DO NOT have Hijack This fix anything yet. Most of what it finds will be harmless or even required.
A security expert with a gold shield to the right of their name should take a look at your log - please be patient.
PHP Code:
http://rapidshare.com/files/67700520/AntiSpy.rar
Similar Threads
Linear Mode
