TechSpot

Potential malware (HJT log attached)

By GameJunkie72792
May 20, 2007
Topic Status:
Not open for further replies.
  1. i just got my parents computer back up today after it was down for a while (psu went out) when i right click on the desktop the computer completely freezes, it can be sluggish at times when nothing is running... my dad insists on running aol safety and security center, when i go to install that it will install but wont open... i go to open windows firewall in the control panel and i get (and i quote) "due to a unspecified error, firewall settings cannot be opened"... ive been through everything with this system, its really pissing me off... attached is a HJT log... Please help!

    EDIT** now the HJT log is attached sorry, forgot to attach first time...
  2. momok

    momok TS Rookie Posts: 2,272

    Hi,

    You are running an outdated version of HijackThis.
    You can obtain the latest version from the link in my signature.

    Also, your HijackThis log appears to be cut off at the end. I can't tell if it is the full log.

    You may wish to copy and paste these instructions on notepad for easier reference later.

    Boot into safe mode under your normal user name. See how HERE

    Next turn on "Show all files and folders, including hidden and system". See how HERE

    Go to start > run and type services.msc. Press the enter key.
    Search for the following services. Double click to select stop if they are running. Set the startup type to disabled. Click apply/ok for each service you disable.

    Viewpoint Manager Service

    Go to start > Control Panel > Add and Remove Programs.
    Remove anything related to the following:

    Viewpoint

    Open your task manager by pressing holding ctrl, alt and pressing del. Alternatively, use ctrl + shift + esc. Go to the processes tab, and end the following processes, if found:

    ALCMTR.EXE
    ViewpointService.exe


    After that, run HijackThis and fix the following entries, if found (do this by placing a tick in the check boxes beside these entries and clicking "Fix checked"):

    O4 - Global Startup: Event Reminder.lnk = ?
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files\Viewpoint\Common\ViewpointService.exe

    Close HJT.


    Navigate in Windows Explorer and delete the following files and folders in bold.

    C:\WINDOWS\ALCMTR.EXE
    C:\Program Files\Viewpoint

    Reboot into normal mode and rehide your protected OS files.

    Thereafter, please post fresh HJT, ComboFix and AVG Antispyware logs from normal mode as attachments into this thread. The utilities can be downloaded from the links in my signature.


    Regards,
    Your friendly Momok =)

    This thread is for the use of GameJunkie72792 only. Please don't post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.
  3. GameJunkie72792

    GameJunkie72792 TS Maniac Topic Starter Posts: 357

    cool thanks, ive never had a problem with the log being cut off though... ill repost!

    EDIT** im having a problem with HJT when i download the .exe it wont save and the partly functioning aol ssc says its a suspect file. when i download the .zip windows blocks me from unzipping, im going to attempt to use winrar to unzip because i know its not a file to be concerned with BTW i dl'd from trend micro...

    ive downloaded all versions i could find, none will unzip using any unzipping tool (i tried the windows unzipping tool, winzip, and winrar) im stuck now... ive just removed 116 cases of malware (dialers, trojans and registry keys) using ad aware, im currently running spybot and after all my testing is complete ill then try hjt again
  4. momok

    momok TS Rookie Posts: 2,272

    Ah I see.
    Well you are at it, I suggest you might as well complete the full instructions from the thread in my signature. It will most definitely facilitate the cleaning process since ad aware detected so many junk ;)

    Do remember to post the requested logs.


    Regards,
    Your friendly Momok =)

    This thread is for the use of GameJunkie72792 only. Please don't post your own virus/spyware problems in this thread. Instead, open a new thread in our security and the web forum.
  5. GameJunkie72792

    GameJunkie72792 TS Maniac Topic Starter Posts: 357

    cool i will the computer doesnt lag on the right click anymore, but ill still post the logs when i get home


    EDIT** the mobo is having problems, so i cant get the log right now, i think its time for a new computer... my parents dont seem to think so, im working on the logs though...
Topic Status:
Not open for further replies.


Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...


Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.