Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

hijak taskmanger,regedit etc


  • This topic is locked This topic is locked
5 replies to this topic

#1 mikanFREA

mikanFREA

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:06:00 PM

Posted 29 November 2011 - 01:54 AM

hi im new here so i just want to ask for a help if anyone here can assist me to remove this hijak virus that always disabling my task manager regedit etc..... i found your guide using combofix at this site also... im sorry but i perform it without you telling me... xD.. i thought it would fix it but it give me only a log.txt ... then i found this topic where can i post my log.txt and wait for 5days to help me right?? heheh ill be patient dont worry, i just hope that this virus will be remove and my computer will be fix... thanks alot advance...

Attached Files



BC AdBot (Login to Remove)

 


#2 rigacci

rigacci

    Fiorentino


  • Members
  • 2,604 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 AM

Posted 02 December 2011 - 07:53 AM

Hello and welcome to the forum. :welcome:

I apologize for the delay in responding to your request for help but it is very busy here and we can get overwhelmed at times.

If you have since resolved the original problem you were having, we would appreciate you letting us know.

If you still do need our help, please note the following:
  • While working we us, please refrain from running tools or applying updates other than those we suggest while we are cleaning your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please perform all steps in the order received and do not proceed if you need clarification.
  • Please also include a clear description of the problems you're having.
  • After 5 days if your topic is not replied I will assume it has been abandoned and will close it.

Please be patient while I analyze your logs. All of my fixes are checked by higher level forum members before posting.

Thank you.

DR


#3 rigacci

rigacci

    Fiorentino


  • Members
  • 2,604 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 AM

Posted 02 December 2011 - 08:44 AM

Hi mikanFREA!

Before starting to clean I would like to get a DDS log, to see what else might be in there


Please download DDS from either of these links

DDS.com
DDS.scr
and save it to your Desktop.
  • Disable any script blocking protection
  • Double click dds.scr to run the tool.
  • When done, two DDS text files will be produced.DDS.txt and Attach.txt
  • Save both text files to your Desktop.

Please Copy/Paste both files into your next post. Please do not attach the Attach.txt log.


Now please download GMER from one of the following locations and save it to your desktop:
  • Main Mirror
    This version will download a randomly named file (Recommended)
  • Zipped Mirror
    This version will download a zip file you will need to extract first. If you use this mirror, please extract the zip file to your desktop.
  • Disconnect from the Internet and close all running programs.
  • Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.
  • Double-click on the randomly named GMER file (i.e. n7gmo46c.exe) and allow the gmer.sys driver to load if asked.
  • Note: If you downloaded the zipped version, extract the file to its own folder such as C:\gmer and then double-click on gmer.exe.

    Posted Image
  • GMER will open to the Rootkit/Malware tab and perform an automatic quick scan when first run. (do not use the computer while the scan is in progress)
  • If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
  • Now click the Scan button. If you see a rootkit warning window, click OK.
  • When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
  • Click the Copy button and paste the results into your next reply.
  • Exit GMER and be sure to re-enable your anti-virus, Firewall and any other security programs you had disabled.
-- If you encounter any problems, try running GMER in safe mode.
-- If GMER crashes or keeps resulting in a BSODs, UNCHECK Devices on the right side before scanning.

Once I have these logs, I will be able to better determine what your problem is.

  • Please include a clear description of the problems you're having.
  • Please also refrain from running tools or applying updates other than those we suggest while we are cleaning your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.
  • Please be patient while I analyze your logs, as you post them.
  • Note also that all of my fixes are checked by higher level forum members before posting.
  • After 5 days if your topic is not replied to, I will assume it has been abandoned and will close it.
  • Now, please perform all of the steps requested above.

Thank you.

DR
:thumbup2:

#4 rigacci

rigacci

    Fiorentino


  • Members
  • 2,604 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 AM

Posted 04 December 2011 - 07:55 AM

Hello! hello! :welcome:

Are you still in need of our help? :busy:


Dave

#5 rigacci

rigacci

    Fiorentino


  • Members
  • 2,604 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:06:00 AM

Posted 06 December 2011 - 02:24 PM

Hello! :hello:

We will need to close this topic if you are not in need of our help.

Regards! :busy:

Dave

#6 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,449 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:12:00 PM

Posted 09 December 2011 - 02:00 AM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft

 

animinionsmalltext.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users