Tech Support Forum - View Single Post - Unwanted popups and malware in the system

**chemist** · 11-13-2008, 09:16 AM

Hello jmash.

One or more of the identified infections is a backdoor trojan.

This type of infection allows hackers to remotely control your computer, log keystrokes, steal critical system information, and download and execute files without your knowledge.

If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation.

Please read this: How Do I Handle Possible Identify Theft, Internet Fraud, and CC Fraud?

------------------------------------------------------

Please read this: When should I re-format? How should I reinstall?

------------------------------------------------------

If you decide to reformat, stop now and let me know.

If you wish to continue to try to clean this computer, please do the following:

HijackThis is already on your system. RSIT renamed it to Cav.Bal.exe

Go Start > Run and copy/paste the following into the Run box and click OK:

C:\users\Mah\software\Cav.Bal.exe

Click on 'Do a System Scan and Save a Logfile'. Save the logfile and post it here.

Please close HijackThis now.

------------------------------------------------------

Open Notepad and copy/paste the entire contents of the codebox below into Notepad:

Code:

vfind -ltf "%systemdrive%\svchost.exe" >log.txt
notepad log.txt
del peek.bat

Save this as peek.bat and choose to Save as type: - All Files then close the Notepad file.
It should look like this:

Double-click on peek.bat and allow it to run. A Notepad file will open. Post the contents of log.txt in your next reply.

------------------------------------------------------

11-13-2008, 09:16 AM	#5 (permalink)
chemist Moderator, Analyst, Security Team; Rangemaster, TSF Academy Join Date: Oct 2007 Location: Georgia Posts: 10,286 OS: XP SP3	Re: Unwanted popups and malware in the system Hello jmash. One or more of the identified infections is a backdoor trojan. This type of infection allows hackers to remotely control your computer, log keystrokes, steal critical system information, and download and execute files without your knowledge. If you do any banking or other financial transactions on the PC or if it should contain any other sensitive information, please get to a known clean computer and change all passwords where applicable, and it would be wise to contact those same financial institutions to apprise them of your situation. Please read this: How Do I Handle Possible Identify Theft, Internet Fraud, and CC Fraud? ------------------------------------------------------ Please read this: When should I re-format? How should I reinstall? ------------------------------------------------------ If you decide to reformat, stop now and let me know. If you wish to continue to try to clean this computer, please do the following: HijackThis is already on your system. RSIT renamed it to Cav.Bal.exe Go Start > Run and copy/paste the following into the Run box and click OK: C:\users\Mah\software\Cav.Bal.exe Click on 'Do a System Scan and Save a Logfile'. Save the logfile and post it here. Please close HijackThis now. ------------------------------------------------------ Open Notepad and copy/paste the entire contents of the codebox below into Notepad: Code: vfind -ltf "%systemdrive%\svchost.exe" >log.txt notepad log.txt del peek.bat Save this as peek.bat and choose to Save as type: - All Files then close the Notepad file. It should look like this: Double-click on peek.bat and allow it to run. A Notepad file will open. Post the contents of log.txt in your next reply. ------------------------------------------------------ __________________ Our help is free but please donate Proud member of ASAP Proud member of UNITE