New
#21
Yeah, nothing that sticks out. But Hijack this is basically a useless program, as far as I'm concerned, besides giving you a quick glance at browser helper objects and some other auto run entries. Process Explorer and Autoruns from sys internals offers a welath of insight. But here are some tools that might be good at determing if you are still infected, too.
(Disclaimer: If you have not burned an Anti Virus Live Boot CD and scanned your system with it yet, what might you be waiting on?) Have you installed Avast and then let it do a pre-boot scan? ) I suspect you have a more academic interest in this virus, so you might enjoy these tools. And these great tools, too.
From Root Kit Analytics:
SpyDLLRemover v3: SpyDLLRemover is the standalone tool to effectively detect and delete spywares from the system. It comes with advanced spyware scanner which quickly discovers hidden Rootkit processes as well suspcious/injected DLLs within all running processes. It not only performs sophisticated auto analysis on process DLLs but also displays them with various threatlevels, which greatly helps in quick identification of malicious DLLs. The DLL search feature helps in finding DLL within all running processes using just partial or full name. Then user can choose to remove the dll from single process or from all loaded processes with just one click.
One of the unique feature of SpyDLLRemover is its capability to free the DLL from remote process using advanced DLL injection method which can defeat any existing Rootkit tricks. It also uses sophisticated low level anti-rootkit techniques to uncover hidden userland Rootkit processes as well as to terminate them.
Stream Armor: StreamArmor is the sophisticated tool for discovering hidden alternate data streams (ADS) as well as clean them completely from the system. It's advanced auto analysis coupled with online threat verification mechanism makes it the best tool available in the market for eradicating the evil streams. StreamArmor comes with fast multi threaded ADS scanner which can recursively scan over entire system and quickly uncover all hidden streams. All such discovered streams are represented using specific color patten based on threat level which makes it easy for human eye to distinguish between suspicious and normal streams. ( If you haven't heard of Alernate Data Streams in NTFS, read up about it. You'll love it. )
Actually, you should check out all the tools from: Spyware Analytics Forums - The Front Page . These guys are amazing at what they do, and they make modern tools that are relevant to todays threats.