1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Got HackTool.Win32.AntiAV.d and GAOBOT.BB

Discussion in 'Malware and Virus Removal Archive' started by content28, 2008/03/30.

  1. 2008/03/30
    content28

    content28 Inactive Thread Starter

    Joined:
    2008/03/28
    Messages:
    6
    Likes Received:
    0
    Hi list,

    Im new here. :)

    I was hoping to get some help before to fix mblast kind of infection. I thought by installing NOD32 it will get better but my laptop just went horribly slow - takes an hour to load everything and 2 minutes of response for each app or click I do.

    Due to some urgency I had to use a clone of my hdd using Ghost from my last back up from 4 years ago :( Sigh.

    I used Kaspersky online scanner and it found a virus called HackTool.Win32.AntiAV.d on HijackReader.exe that I downloaded when I was in panic situation on Thursday so I can read HJT logs and do some actions (despite I have no clue what will happen). ZoneAlarm also flagged it as a virus.

    Tried to google the said "virus" but I only got 2 links saying if it's from a good source then it's a false alarm. IS IT really?

    HJTreader also found GaoBot.BB on msmsgr which I " fixed " using HJT.

    I haven't launched Office yet and checked the Registry setting as per TrendMicro but I did not find any that will trigger the worm.

    Any thoughts on what I should do?

    btw, I'm sticking with AVGFree for now and ZoneAlarm Internet security suite.

    Thanks for your thoughts on this.
     
    content28,
    #1
  2. 2008/03/30
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Welcome to WindowsBBS content28 :)

    Start with reading this topic, then posting a log from Deckard's System Scanner here.
     
    noahdfear,
    #2


  3. to hide this advert.

  4. 2008/03/31
    content28

    content28 Inactive Thread Starter

    Joined:
    2008/03/28
    Messages:
    6
    Likes Received:
    0
    HJT Log

    Hi noahdfear,

    I did not see the .txt files generated by DSS. So I picked up the one most likely created by dss and hjt.

    Thanks for inspecting below.

     
    content28,
    #3
  5. 2008/03/31
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Please run dss again. It should open a log named main.txt when it completes. Post that log here.
     
    noahdfear,
    #4
  6. 2008/04/02
    content28

    content28 Inactive Thread Starter

    Joined:
    2008/03/28
    Messages:
    6
    Likes Received:
    0
    Hi noahdfear

    Zonealarm and AVG have deleted the HJT reader. It's a self executable file so I guess it did not leave anything on the registry. And so far, ZA, AVG, spybot, Kaspersky, MS online scanner and SE have not flagged anything malicious files in my laptop.

    I will not get the HJTreader again just to be on the safe side. I still have yet to install other apps that Ive lost during the reblasting. When I'm done with that I will surely do the DSS and HJT recommendation and post in a new thread if anything comes up.

    Please close this thread for now. :)

    Sorry to bother you guys.
     
    content28,
    #5
  7. 2008/04/02
    noahdfear

    noahdfear Inactive

    Joined:
    2003/04/06
    Messages:
    12,178
    Likes Received:
    15
    Works for me. :)

    No bother at all.

    Surf safe!
     
    noahdfear,
    #6

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...