Home > Hit By > Hit By Trojan.32.looksky

Hit By Trojan.32.looksky

Thank you!!!Logfile of Trend Micro HijackThis v2.0.2Scan saved at 4:19:43 PM, on 8/10/2007Platform: Windows XP SP2 (WinNT 5.01.2600)MSIE: Internet Explorer v7.00 (7.00.6000.16473)Boot mode: NormalRunning processes:C:\WINDOWS\System32\smss.exeC:\WINDOWS\system32\winlogon.exeC:\WINDOWS\system32\services.exeC:\WINDOWS\system32\lsass.exeC:\WINDOWS\system32\Ati2evxx.exeC:\WINDOWS\system32\svchost.exeC:\Program Files\Windows Defender\MsMpEng.exeC:\WINDOWS\System32\svchost.exeC:\Program Files\Common Files\Symantec Shared\ccSetMgr.exeC:\Program Files\Common Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll (file missing)O18 - Protocol: XBasic - (no CLSID) - (no file)O21 - SSODL: wmpconf - {1F0AF005-F296-47F3-9E45-8A53B3542353} - Still running the SUPERAntiSpyware. Back to top #3 the_girl_1982 the_girl_1982 New Member Members 3 posts Posted 29 August 2007 - 12:43 PM thanks.. his comment is here

Need Help Pls by wed123(m): 10:57pm On Oct 14, 2007 or better still, try reinstalling windows and avoid doing activites that likely caused your pc to get this virus.Re: Trojan.w32.looksky Infected Username Password I've forgotten my password Remember me This is not recommended for shared computers Sign in anonymously Don't add me to the active users list Privacy Policy Please click here I have pctools Registry Mechanic. C:\WINDOWS\System32\dmmbt.exe Deleted .... Misc files.

Trojan.w32.looksy is just one of the more recent variants. ..Microsoft MVP Consumer Security 2007-2015 Microsoft MVP Reconnect 2016Windows Insider MVP 2017Member of UNITE, Unified Network of Instructors and Trusted EliminatorsIf I Next select the Start Update button, the update will start and a progress bar will show the updates being installed. I haven't seen a popup or home page redirect since anyway.But I was wondering if you could look at my newest logs to double check in case there was anything else answer Y (yes) and hit Enter in order to remove the Desktop background and clean registry keys associated with the infection.

Everyone else please begin a New Topic. Do NOT post the ComboFix-quarantined-files.txt unless I ask.Also post a new Hijackthis log please. o Click Preferences. Invisus - old firewall that I cancelled and they uninstalled?

Since this is a protected directory your tools cannot access to delete these files, they sometimes can reinfect your system if you use an old restore point.Following rookie147's instructions should resolve Pool 2 - http://download.game...ts/y/potf_x.cab O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://www.creative....030/CTSUEng.cab O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft....k/?linkid=39204 O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (YInstStarter Class) - Here is the log, followed by the new HijackThis log.ComboFix log:ComboFix 07-08-13.3 - "Jerry McCaberton" 2007-08-13 10:42:57.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.461 [GMT -5:00] * Created a new restore Date: Saturday, 11 February 2017 at 12:12 AM Trojan.w32.looksky Infected My System.

Let me explain every step that I did to get rid of the virus so far and then hopefully I can get some help on how to get rid of it However, I am still getting an alert from my anti-virus program that says Possible Virus Threat. Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #2 rookie147 rookie147 Members 5,321 posts OFFLINE Local time:12:12 AM Posted 26 September 2007 - 01:51 Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Does anyone have any suggestions?? http://finitesolutions.blogspot.com/2009/01/how-to-remove-trojanw32looksky-virus.html Open HJT Scan and Save a Log File, it will open in Notepad Go to Format and make sure Wordwrap is UncheckedGo to Edit> Select All.....Edit > Copy and Paste the It will scan and the log should open in notepad. Please open Notepad (Start > Run > in the Open field type: notepad) Click: OK Copy/ paste the blue text below to Notepad: File:: C:\DOCUME~1\CHRIST~1\LOCALS~1\Temp\7.tmp.exe C:\WINDOWS\syscy32.exe C:\WINDOWS\system32\panel_its.exe C:\WINDOWS\qwe.exe C:\WINDOWS\system32\atlnb32.exe C:\WINDOWS\system32\ipjz32.exe C:\WINDOWS\system32\dmnar.exe

Need Help Pls - Computers - NairalandNairaland Forum / Science/Technology / Computers / Trojan.w32.looksky Infected My System. Thread Status: Not open for further replies. Back to top #3 quietman7 quietman7 Bleepin' Janitor Global Moderator 47,355 posts ONLINE Gender:Male Location:Virginia, USA Local time:06:12 PM Posted 26 September 2007 - 09:18 AM Welcome to BC flyer84The Next, on the Desktop, double click on show.bat and post the contents of the file in your reply.

If that is all, then all I can say is "THANK YOU VERY MUCH!" Probably not the place for it , but while I am here, just wondering, do the free Thank you guys SO much for providing me with much needed help!!! 0 Back to top #8 don77 Posted 19 August 2007 - 10:54 AM don77 Malware Expert Retired Staff 18,526 pls advise next step. Antivirus programs cannot distinguish between "good" and "malicious" use of such programs, therefore they may alert the user.http://www.beyondlog...processutil.htmHas SmitFraudFix helped you?

What exactly did the trojan.w32.looksy virus do to my computer? It will create a HijackThis icon on the desktop. Chaos 2007-08-12 09:22

d-------- C:\Program Files\bfgclient 2007-08-12 09:22 d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\BigFishGamesCache 2007-08-12 08:10 d-------- C:\Program Files\Democracy_at 2007-08-12 08:10 d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\SpinTop Games 2007-08-12 08:09 d-------- C:\Program Files\Capitalism II

Jump to content Sign In Create Account Search Advanced Search section: This topic Forums Members Help Files Calendar View New Content Forum Rules BleepingComputer.com Forums Members Tutorials Startup List

Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - The report can be found at the root of the system drive, usually at C:\rapport.txt Clean: Reboot your computer in Safe Mode (before the Windows icon appears, tap the F8 key Select the Scanner icon at the top and then the Scan tab then click on Complete System Scan. Then I deleted all possible threats.

Please consider a donation to S!Ri so he can continue his hard work. Click on the Programs tab then click the Reset Web Settings button. Trojan.W32.Looksky Started by the_girl_1982 , Aug 29 2007 06:30 AM Please log in to reply 5 replies to this topic #1 the_girl_1982 the_girl_1982 New Member Members 3 posts Posted 29 August Viewing this topic: 1 guest(s)(Go Up) Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health religion celebs tv-movies music-radio literature webmasters programming

Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:56:32 PM, on 9/3/2007 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe Please re-enable javascript to access full functionality. [Resolved]Ucleaner, Udefender, Smitfraud, Trojan W.32.looksky Started by flwriter , Sep 03 2007 03:21 PM This topic is locked 14 replies to this topic #1