Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Unbelievable Virus/trojan Closes Any Hjt Webpage...


  • This topic is locked This topic is locked
2 replies to this topic

#1 david gonzo

david gonzo

  • Members
  • 12 posts
  • OFFLINE
  •  
  • Local time:09:07 AM

Posted 21 June 2007 - 08:23 AM

I am posting because I need serious help. I have a virus/trojan in my computer that will not allow me to open HJT or any webpages with the word hijackthis. The webpages simply close. I even tried to open the HJT topic here and it closes. I am relegated to using my laptop in safe mode only and the triangle with exclamation point still pops up in the task bar every twenty minutes. I ran a Panda online scan and came up with the following log. Please forgive but I cannot post anywhere else because it closes the webpage. Please help



Incident Status Location

Adware:Adware/SystemDoctor Not disinfected c:\windows\system32\ibebcvol.exe
Adware:Adware/SystemDoctor Not disinfected c:\windows\system32\rurcpapy.exe
Adware:Adware/SystemDoctor Not disinfected c:\windows\system32\qvmtmbap.exe
Potentially unwanted tool:Application/Processor Not disinfected C:\Documents and Settings\User1\Desktop\SmitfraudFix\Process.exe
Virus:Trj/Shutdown.Z Disinfected C:\Documents and Settings\User1\Desktop\SmitfraudFix\restart.exe
Potentially unwanted tool:Application/UltimateFixer Not disinfected C:\fbksrfbj1.exe
Potentially unwanted tool:Application/UltimateDefender Not disinfected C:\fbksrfbj2.exe
Adware:Adware/UltimateCleaner Not disinfected C:\fbksrfbj3.exe
Hacktool:HackTool/Cain.B Not disinfected C:\Program Files\Cain\Abel.dll
Spyware:Spyware/Virtumonde Not disinfected C:\Program Files\Common Files\{DCF06CDB-063B-1033-0201-051114200001}\services.dll
Spyware:Spyware/Virtumonde Not disinfected C:\Program Files\Common Files\{DCF06CDB-063C-1033-0201-051114200001}\services.dll
Potentially unwanted tool:Application/Processor Not disinfected C:\WINDOWS\system32\Process.exe
Adware:Adware/SystemDoctor Not disinfected C:\WINDOWS\system32\urgbmlqj.exe

BC AdBot (Login to Remove)

 


#2 WISDOM01

WISDOM01

  • Members
  • 26 posts
  • OFFLINE
  •  
  • Local time:07:37 PM

Posted 21 June 2007 - 08:29 AM

hi, try to run HJT after closing explorer.exe
Go to windows task manager, close explorer.exe and then go to file>run and type the exact path where HijackThis.exe is stored eg. C:\HijackThis.exe and press enter.

This is the only help that I can do. Better specify the proble that u r having and then follow as experts here guide you.

Good Luck. U may want to try VundoFix etc. Just visit this thread - http://www.bleepingcomputer.com/forums/t/95291/may-be-its-mr-vundo/

If u can get any useful info. from there, great! Good Luck.

#3 rigel

rigel

    FD-BC


  • BC Advisor
  • 12,944 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:South Carolina - USA
  • Local time:10:07 AM

Posted 21 June 2007 - 02:49 PM

David,

You have posted multiple topics for the same problem. That causes major confusion and can trash your computer due to the wrong actions taken. Please stick to your original topic found here: Topic. If you have any questions, please feel free to PM me.

rigel
BleepingComputer Forums Moderator

This topic is now closed.

"In a world where you can be anything, be yourself." ~ unknown

"Fall in love with someone who deserves your heart. Not someone who plays with it. Will Smith





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users