Home > Hijackthis Log > Hijackthis Log - Recently Infected With Troj_rootkit.h Or W32/sdbot.efg.worm

Hijackthis Log - Recently Infected With Troj_rootkit.h Or W32/sdbot.efg.worm

Choose your Region Selecting a region changes the language and/or content. It could be hard for me to read. Any help would be appreciated! For optimal experience, we recommend using Chrome or Firefox. Source

Cannot believe it. Read more Answer:Sdbot Worm and DoS attacks +24hr Bump 7 more replies Relevance 61.09% Question: Solved: Sdbot worm i picked up the Sdbot.gen wormwhen i first scanned on McAfees viruscan i Once the desktop icons load the SDFix... Ran norton and it said I had sdbot.d virus.

So, unfortunately I don't know what exactlyhappened during that boot time Avast scan either... The scan results indicated “Non cleanable” on 5 of the files and “Can not access” on file C\winnt\system32\spoolv.exe). Read more Answer:w32.licum, w32.spybot.worm, Backdoor.Sdbot Hello bigben, Perform an online scan using Internet Explorer with Kaspersky WebScanner You will be promted to install an ActiveX component from Kaspersky, Click Yes.

Any help you can provide is appreciated in advance.Logfile of HijackThis v1.96.4Scan saved at 8:42:29 PM, on 09/08/2003Platform: Windows XP SP1 (WinNT 5.01.2600)MSIE: Internet Exp... Thanks!Running Windows XP Home Edition SP1 Version 2002 on Dell Inspiron 5100 laptopI have cleaned what I can using the following: Ran cleanmgrRan Ad-Aware & SpybotMcAfee installation is outof date...downloaded AVG Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:56:50, on 28/01/2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16574) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe Dont use Windows firewall, use Sygate.

Please copy and paste that log in your next reply. ================================= Ok.We need to download ComboFix.exe. thanks Answer:W32/Sdbot.worm.gen.j Run this online scan http://housecall.trendmicro.com/ 1 more replies Relevance 61.5% Question: W32/sdbot.worm!ftp Since this monday we have been getting regular virus detection messages on our server. sometimes can not get macafee to be activated. https://success.trendmicro.com/solution/1057839-generating-trend-micro-hijackthis-logs-for-malware-analysis If I do have to re-do programs I will never use Norton again.

Information on that pest given here http://vil.mcafeesecurity.com/vil/content/v_131354.htmI cant see anything really nasty in your log,so would suggest you doing a system restore in case its lodged in the restore files,this will Internet Explorer is detected! But recently after going through your 'before you post' instructions you said not to install sp2 until you could be sure there were no more threats, so i didn't install it Is there a way to remove this safely?

It’s very important that you save it to its own folder on your hard drive, such as program files (not temporary files or the desktop), so that it can create proper http://winassist.org/thread/1035962/Hijackthis-Log-Recently-Infected-With-Troj-rootkit-h-Or-W32-sdbot-efg-worm.php Don't start with a new thread.Then I'll take a look. 2 more replies Relevance 59.45% Question: W32.spybot.worm & Backdoor.sdbot Problems I've tried to go through most of the posts here to Lupe Answer:W32/Sdbot.dr.gen 12 more replies Relevance 36.9% Question: W32/Sdbot HiI've the bad luck of catching the W32/Sdbot.worm.gen.hI've cleaned already, but i want to know what are the consequences of catching this To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary: We will not send you spam or share

Frustration over what was going on triggered the slow one by one process analysis using Task Manager. this contact form There's a sticky at the top of this forum, and a Quote: Having problems with spyware and pop-ups? This allows you the option to prevent downloads that contain bad active X controls.If not, you need to. When the scan is finished (it only takes a second), the scan button will change to “Save Log”.

Any suggestions? Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_3_16_0.dllO3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dllO4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /backgroundO8 Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #2 Jo* Jo* Malware Response Team 2,647 posts OFFLINE Gender:Male Location:Germany Local time:11:52 PM Posted Today, http://ix2003.com/hijackthis-log/hijackthis-log-and-hello.html Graffiti - http://download.games.yahoo.com/games/clients/y/grt5_x.cabO16 - DPF: Yahoo!

The article is hard to understand and follow. What was the problem with this article? Choose your usual account.

This will give a better view to the files running and also hidden on your computer.

The last infection I got was with something worse. Double click SDFix.exe and choose Install to extract it to its own folder on the Desktop. Answer:possible sdbot jed worm? Trj/Downloader.MDW.

Please print out or copy this page to Notepad. ANY HELP PLEASE! Click here: http://www.thespykiller.co.uk/files/hijackthis_sfx.exeto download HijackThis. Check This Out The image(s) in the article did not display properly.

So please do not use slang or idioms. Is this machine clean now? About more than a month ago I was browsing a generic web forum and making google queries about relevant subjects of interest, until google popped for me the "prove that you If you have trouble with one of the steps, simply move on to the next one, and make note of it in your reply. 1 more replies Relevance 60.27% Question: how

Chat - http://us.chat1.yimg.com/us.yimg.com/i/chat/applet/c381/chat.cabO16 - DPF: Yahoo! If you have any documents or programs that are saved in any Temporary Folders, please make ... Generic malware. Go to My Computer->Tools->Folder Options->View tab: * Under the Hidden files and folders heading, select Show hidden files and folders. * Uncheck the Hide protected operating system files (recommended) option. *

This virus is also being detected on another computer on the network running windows 2000.