Yes!!! Just glad thats over

Yeah seems to be running fine, On housecall though about a week ago it did find DIALER_BT is this normal,I didn't let it delete incase it was somthing needed for the internet or somthing like that.. Is it safe to let trendmicro/housecall get rid of anything it finds?

Thanks, Jake

I want you to do this; rename hjt.exe to lotus.exe, and run it again, and post another log. Some malware will spot hijackthis.exe and hide themselves accordingly. Then post another log, please.

Thanks,

v

Ok then, I did a full system scan with spysweeper of C for viruses and spyware I think, and it found nothing. Then I chose a custom scan of C for rootkits, system restore folder, direct disk sweeping, and verify excutable programs, and it found perfect keylogger again. I didn't quarantine and delete it becuase its just found it again after already having done that.


Thanks, Jake

Attached Files

Spy Sweeper Session Log 5.3.07.txt (39.0 KB, 0 views)

Should I turn off system restore? or should I do a system restore?
I think that it may be a rootkit becuase of the scan before. so far this is the only scanner of mine that picks it up, apart from spyware doctore which only scans, but I will scan with that. Would you reccomend I do Housecall?
Im going to try using pest patrl becuase it has perfect keylogger in the encyclopedia eTrust® PestPatrol® Anti-Spyware

don't worry about system restore, for now (we'll create a new one once we get you clean) but yes, let's run a rootkit scan.

Download GMER from here:
GMER - Files

Unzip it to the desktop.

Open the program and click on the Rootkit tab.
Make sure all the boxes on the right of the screen are checked, EXCEPT for ‘Show All’.
Click on Scan.
When the scan has run click Copy and paste the results (if any) into this thread.

I have attached the hjt log with lotus.exe, and a normal one when called hjt.exe
I couldn't spot any difference apart from hjt name change.

this keylogger doesn't seem to be doing anything that I would sespect. Apart from one thing, Somtimes when I am looking through folders the icons all change to a different veiw, e.g it would change the nveiw from- files to thumbnails, or what it normall was to another.
I think it might of done this before I re-formatted ages ago because of a bad trojan.

Attached Files

	hjt with lotus 5.3.07.log (6.5 KB, 0 views)
	hijackthis 5.3.07.log (6.5 KB, 0 views)

did you run the gmer yet?