#128 Please analyze my log file

v1.0_(example)
closed
None
5
2013-09-23
2013-08-29
Cloud
No

Hi,

Please analyze my log file. I want to know if my laptop is infected.

Thank you.

1 Attachments

Discussion

  • Loucif Kharouni

    Loucif Kharouni - 2013-08-29
    • status: open --> pending
    • assigned_to: Loucif Kharouni
     
  • Loucif Kharouni

    Loucif Kharouni - 2013-08-29

    please delete the following:
    C:\Program Files\Knoa\KnoaAgent5\tKnoa.exe
    C:\WINDOWS\system32\RVHOST.exe
    C:\WINDOWS\system32\RVHOST.exe
    C:\WINDOWS\system32\RVHOST.exe
    F2 - REG:system.ini: Shell=Explorer.exe RVHOST.exe
    O4 - HKCU..\Run: [Yahoo Messengger] C:\WINDOWS\system32\RVHOST.exe
    O4 - HKUS\S-1-5-18..\Run: [Yahoo Messengger] C:\WINDOWS\system32\RVHOST.exe (User 'SYSTEM')
    O4 - HKUS.DEFAULT..\Run: [Yahoo Messengger] C:\WINDOWS\system32\RVHOST.exe (User 'Default user')
    O23 - Service: tKnoa-sm-194FB1F5 - Knoa Software Inc. - C:\Program Files\Knoa\KnoaAgent5\tKnoa.exe

     
  • Cloud

    Cloud - 2013-08-30

    I deleted all the files you told me to and my machine was able to perform faster.

    BTW, may I know what the tKnoa.exe does?

    Thank you.

     
  • Loucif Kharouni

    Loucif Kharouni - 2013-09-11

    I'm not sure about what it does, but it looked suspicious and i prefered you to remove it than keeping it. It seems to be part of a software called Knoa Software. It probably came bundle with another program.

     
  • Loucif Kharouni

    Loucif Kharouni - 2013-09-23
    • status: pending --> closed
     
  • Loucif Kharouni

    Loucif Kharouni - 2013-09-23

    no updates, case closed.

     

Log in to post a comment.

Get latest updates about Open Source Projects, Conferences and News.

Sign up for the SourceForge newsletter:





No, thanks