Member Panel

Remember me ?

Forgot password?   

Sponsors and Ads

Join the Team

Live Tag Cloud
PC Forum PC Help Forum » Security & Safety » [Fixed] Hijackthis! Logs » Could you advise please

[Fixed] Hijackthis! Logs - Could you advise please posted in the Security & Safety forums; I am not sure if this is relevant but last week my pc would not boot, it would post ok then just freeze up you could not even get in ...

JOIN US NOW to remove these Ads

Post New Thread  Reply
  #1  
Old 10-13-2007
Bronze Member
  
Join Date: Oct 2007
Posts: 27
avesta - See this Members User comments on their Profile page
Default Could you advise please
I am not sure if this is relevant but last week my pc would not boot, it would post ok then just freeze up you could not even get in to safe mode. I assumed that the boot record was corrupt and tried to fix it using the windows cd and fixmbr option. After a couple of reboots it came up with ntldr is missing and i fixed this after a bit of searching online.
After doing some reading i thought it might be a virus that caused it but none of these scanners found any thing
Ad-Aware 2007
Windows Defender
Spybot - Search & Destroy
SUPERAntiSpyware
AVG Anti-Spyware 7.5
Kaspersky Anti-Virus 7.0
Trend Micro™ HouseCall online scanner

On a recomendation from a post on this forum i tried "a-squared Free" which found a couple of .EXE program files which i have not used for about a year. It did not find anything in my windows folder but found these few in System Volume Information\_restore

a-squared Free - Version 3.0
Last update: 12/10/2007 18:26:06
Scan settings:
Objects: Memory, Traces, Cookies, C:\, D:\
Scan archives: On
Heuristics: On
ADS Scan: On
Scan start: 12/10/2007 18:30:54

C:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0420406.exe detected: Riskware.PSWTool.Win32.RAS.a
C:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0420663.exe detected: Backdoor.Win32.Ciadoor.13
C:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0420667.exe detected: Trojan.Win32.Obfuscated.fk
C:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0420669.exe detected: Trojan.Win32.Obfuscated.fk
C:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0420672.exe detected: Backdoor.Win32.Ciadoor.13
C:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0420734.exe detected: Riskware.Client-IRC.Win32.mIRC.616
C:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0421789.exe detected: P2P-Worm.Win32.VB.eg
D:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP172\A0421945.exe detected: P2P-Worm.Win32.VB.eg
D:\System Volume Information\_restore{7FD8ECEC-B6D3-471B-B1ED-D1BBDD8372BE}\RP175\A0425783.exe detected: Riskware.Client-IRC.Win32.mIRC.616

i deleted them and the rescanned and it was clean.

I have done the prework, could someone please check my logs for any more problems
Attached Files
File Type: txt AVG Anti-Spyware.txt (250 Bytes, 1 views)
File Type: txt SUPERAntiSpyware Scan Log.txt (462 Bytes, 1 views)
File Type: txt hijackthis.txt (6.3 KB, 3 views)


  #2  
Old 10-14-2007
Pancake's Avatar
Senior Security Analyst
  
Join Date: Jun 2006
Location: Victoria, Australia
Posts: 3,088
PC Experience: Elite PC Guru
Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page Pancake - See this Members User comments on their Profile page
Default Re: Could you advise please
Your log is fine.My only advice would be to get rid of one of your anti virus programs.Two can cause conflicts.


__________________
  • An Australian Member of
  • and
My real name is Eddy
  #3  
Old 10-14-2007
Bronze Member
  
Join Date: Oct 2007
Posts: 27
avesta - See this Members User comments on their Profile page
Default Re: Could you advise please
Thanks for taking the time to read the logs, thats good news



Ad-Aware 2007
Windows Defender
Spybot - Search & Destroy
SUPERAntiSpyware
Trend Micro™ HouseCall online scanner
These 5 are just used as scanners (no realtime protection)


AVG Anti-Spyware 7.5 -uses realtime protection
Kaspersky Anti-Virus 7.0 -uses realtime protection

Should i not be running these two together, i thought the avg was ok as it was for spyware not antivirus (eg AVG antivirus)

Reply
Satellite TV on your PC - over 3000 Channels! Click Here!

Bookmarks

« My HiJackThis Log | [Resolved] Is Everything On My pC OK? »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are On

Contact Us - PC Help Forum - Site Map - Privacy Statement - Top

All times are GMT +1. The time now is 10:55 AM.
Powered by vBulletin
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.
SEO by vBSEO 3.2.0 RC7
All Graphics & Content Copyright © 2004-2008 - PC Help Forum.com


Back to Top
Credit Report
Check your credit report online.

Xbox Mod Chip
Reseller of all types of Xbox mod chips.

Loans
Loans information and advice from the experts at Norton Finance.