Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Hijack This Log Scanning


  • This topic is locked This topic is locked
4 replies to this topic

#1 unknown_help

unknown_help

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:28 PM

Posted 26 January 2008 - 02:56 PM

New User of Hijack this. Need help to verify which files need to be deleted to prevent spying. Uploading the Output log of the HijackThis file.
Thanks,
ur help is appreciated.

Attached Files



BC AdBot (Login to Remove)

 


#2 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:28 PM

Posted 08 February 2008 - 04:25 PM

unknown_help,

Welcome to the Bleeping Computer forum, sorry for the delay but we get quite busy around here.

You can uninstall any program that has to do with Viewpoint, at the present time its not malicious but installs without your knowledge or consent, uses system resources and is not needed for anything. You can uninstall it via the Add Remove programs in the Control Panel

The rest of your log looks fine :thumbsup: but its a littel old so post a new log please.

Go Gators

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#3 unknown_help

unknown_help
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Local time:05:28 PM

Posted 09 February 2008 - 03:39 PM

Hey Fellow gator!!

Thanks for the reply....Was really happy to see a gator helping out another Gator.....I graduated recently from Warrington College of Business....Anyways.....I have uploaded the new file as requested.
Once again thanks for the reply!!

Go Gators!!

Attached Files



#4 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:28 PM

Posted 09 February 2008 - 05:36 PM

Hello,

Off Topic, I am a Gator by marriage, my wife graduated from the Warrington College of Business also in 1982, been in and out of Gainsville for years, nothing like going to a Gator Game when its 105* in the shade :thumbsup: We are both from the NE and up in CT where we live there is a Gator Alumni Club, we have around 300 members and we get together for football viewing parties and BBQs . Lots of fun

On the other side of the coin, you never uninstalled Viewpoint,

C:\Program Files\MySearch <--this is also another program that falls in the gray area. So its your call to unintall this one also.

After you uninstall both programs, do this

Open HijackThis > Do a System Scan Only, close your browser and all open windows including this one, the only program or window you should have open is HijackThis, check the following entries and click on Fix Checked.

O2 - BHO: My Search BHO - {014DA6C1-189F-421a-88CD-07CFE51CFF10} - C:\Program Files\MySearch\bar\1.bin\S4BAR.DLL
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe


Delete these folders
C:\Program Files\MySearch
C:\Program Files\Viewpoint



Download CCleaner from here to clean temp files from your computer.
  • Double click on the file to start the installation of the program.
  • Select your language and click OK, then next.
  • Read the license agreement and click I Agree.
  • Click next to use the default install location. Click Install then finish to complete installation.
  • Double click the CCleaner shortcut on the desktop to start the program.
  • On the "Windows" tab, under "Internet Explorer," uncheck "Cookies" if you do not want them deleted. (If deleted, you will likely need to reenter your passwords at all sites where a cookie is used to recognize you when you visit).
  • If you use either the Firefox or Mozilla browsers, the box to uncheck for "Cookies" is on the Applications tab, under Firefox/Mozilla.
  • Click on the "Options" icon at the left side of the window, then click on "Advanced."
    deselect "Only delete files in Windows Temp folders older than 48 hours."
  • Click on the "Cleaner" icon on the left side of the window, then click Run Cleaner to run the program.
  • Caution: It is not recommended that you use the "Issues" feature unless you are very familiar with the registry as it has been known to find legitimate items.
  • After CCleaner has completed its process, click Exit.
*NOTE* CCleaner deletes EVERYTHING out of temp/temporary folders. If you have anything in a temp folder, back it up or move it to a permanent folder prior to running CCleaner!



  • Your Java is out of date and leaving your system vulnerable.
  • Go to your Add-Remove Programs in the Control Panel and uninstall any previous versions of Java (J2SE Runtime Environment)
  • It should have an icon next to it:
    Posted Image
    Select it and click Remove.
  • Reboot your system.
  • Then go to the Sun Microsystems and install the update
  • Java Runtime Environment (JRE) 6 Update 4 <--This is what you need to download and install.
  • If you chose the online installation, it will prompt you to run the program.
  • If you chose the offline installation, you will be prompted to save the file and you can run it from wherever you saved it.
  • Then after install you can verify your installation here Sun Java Verify
I like to to do the offline installation and save the setup file in case I may need it in the future



The rest of your log looks fine :blink: Are you having any issues that make you think your infected with malware or a virus ??

Ken

mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days


#5 ken545

ken545

    Malware Response Team


  • Malware Response Team
  • 1,685 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:The Space Coast of Florida
  • Local time:07:28 PM

Posted 25 February 2008 - 02:26 PM


mvp_host.pngConsumer Security 2007-2008-2009-2010-2011-2012-2013-2014



donate.gif Please consider a donation to help me keep up my fight against malware.

 

Just a reminder that threads will be closed if no response in 3 days





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users