Hi Guys

I've read the malware removal and run the root anylser (nothing is shown) but 008k still hijacks my host file addresses.

I'm a bit worried about seeing the keylogger and hijacking files on the S&D log and but yet Bullguard - Spybot S&D - CCleaner -AD-Aware don't work to remove or find .008K

It's hijacked - Google Talk plugin and my Windows host process and Firefox and Ad-Aware browsing protection.

Also - is your remote host meant to be the same as the local host? I've someone sharing my broadband and they are listed as the remote host???? Why??


--- Spybot - Search & Destroy version: 1.6.2 (build: 20090126) ---

2009-01-26 blindman.exe (1.0.0.8)
2009-01-26 SDFiles.exe (1.6.1.7)
2009-01-26 SDMain.exe (1.0.0.6)
2009-01-26 SDShred.exe (1.0.2.5)
2009-01-26 SDUpdate.exe (1.6.0.12)
2009-01-26 SDWinSec.exe (1.0.0.12)
2009-01-26 SpybotSD.exe (1.6.2.46)
2009-03-05 TeaTimer.exe (1.6.6.32)
2011-11-03 unins000.exe (51.49.0.0)
2009-01-26 Update.exe (1.6.0.7)
2009-11-04 advcheck.dll (1.6.5.20)
2007-04-02 aports.dll (2.1.0.0)
2008-06-14 DelZip179.dll (1.79.11.1)
2009-01-26 SDHelper.dll (1.6.2.14)
2008-06-19 sqlite3.dll
2009-01-26 Tools.dll (2.1.6.10)
2009-01-16 UninsSrv.dll (1.0.0.0)
2011-03-18 Includes\Adware.sbi
2011-08-29 Includes\AdwareC.sbi
2010-08-13 Includes\Cookies.sbi
2010-12-14 Includes\Dialer.sbi
2011-03-08 Includes\DialerC.sbi
2011-02-24 Includes\HeavyDuty.sbi
2011-03-29 Includes\Hijackers.sbi
2011-10-04 Includes\HijackersC.sbi
2010-09-15 Includes\iPhone.sbi
2010-12-14 Includes\Keyloggers.sbi
2011-09-27 Includes\KeyloggersC.sbi
2004-11-29 Includes\LSP.sbi
2011-10-31 Includes\Malware.sbi
2011-11-08 Includes\MalwareC.sbi
2011-02-24 Includes\PUPS.sbi
2011-10-11 Includes\PUPSC.sbi
2010-01-25 Includes\Revision.sbi
2011-02-24 Includes\Security.sbi
2011-05-03 Includes\SecurityC.sbi
2008-06-03 Includes\Spybots.sbi
2008-06-03 Includes\SpybotsC.sbi
2011-10-18 Includes\Spyware.sbi
2011-10-18 Includes\SpywareC.sbi
2010-03-08 Includes\Tracks.uti
2011-09-28 Includes\Trojans.sbi
2011-11-09 Includes\TrojansC-02.sbi
2011-11-09 Includes\TrojansC-03.sbi
2011-10-28 Includes\TrojansC-04.sbi
2011-11-03 Includes\TrojansC-05.sbi
2011-11-09 Includes\TrojansC.sbi
2008-03-04 Plugins\Chai.dll
2008-03-05 Plugins\Fennel.dll
2008-02-26 Plugins\Mate.dll
2007-12-24 Plugins\TCPIPAddress.dll


--- System information ---
Unknown Windows version 6.1 (Build: 7600) (6.1.7600)

I'm using Windows 7

Thanks Guys

Hello keithwhitty,



I'm a bit worried about seeing the keylogger and hijacking files on the S&D log
The log you posted above is just the detection updates. ;)


Spybot-S&D Log

If Spybot-S&D has detected items it cannot remove and you have the latest version and detections, please produce the top of the log showing only the items flagged. Please see the forum sticky which includes guidelines and instructions in post #2 on how to provide preliminary "DDS" logs used for analysis.

"BEFORE You POST"(Please read this Procedure Before Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)

Then start a new topic providing the logs and a volunteer analyst will advise you when available. :)

Best regards.

Hi - I did

Is that not the fist thing I said?

Keith

The log I posted is the top - there is nothing highlighted above that.

.008k is hijacking my host processes that's all I know from my firewall network activity.

I have no idea what your telling me to do. post 2# ???

Thanks

Keith

Hello keithwhitty,

The top of the log is requested if it shows items that Spybot-S&D detected. If the program did not detect anything then there is no need to post the top of the log. :)

But please start a new topic providing the DDS logs. "BEFORE You POST"(Please read this Procedure Before Requesting Assistance) (http://forums.spybot.info/showthread.php?t=288)

Post #2: http://forums.spybot.info/showpost.php?p=1150&postcount=2

Best regards.