Jump to content

TOM-J-LAEL

Members
  • Content Count

    28
  • Joined

  • Last visited

Community Reputation

0 Neutral

About TOM-J-LAEL

  • Rank
    New Member

Profile Information

  • Location
    Indianapolis, IN
  1. Merged two post We look for post with 0 replies, so when you replied to your own topic, we assume you were being helped. Do Not bump your topic. I have a user who is still suffering from Google redirects. MWB comes up clean, Trend Micro WFB reports no infections, SAS comes up clean, TDSS Killer comes up clean, MBR Check came up clean, et cetera, et cetera. HitmanPro intially reported some ZeroAccess stuff which it allegedly removed. Combofix does not delete any files. Yes, I know I'm not supposed to run Combofix without being asked to. Hopefully you all will anoint me for my sins. I just need
  2. How long do I wait for a reply? I emailed suggested email address today at 12:10pm EST. thanks, paul
  3. Hello, MWB reseller here. Have a corporate customer whose computer is suddenly freezing when it boots, and it also blue screened at one point. I analyzed the dump file and it blue screened due to Malwarebytes driver file. Booted into safe mode, no malware detected by MWB w/ latest definitions. Disabled MBAM service and booted into normal mode fine. Already uninstalled using mbam-clean.exe file and reinstalled, re-registered, et cetera. Same problem. They use Trend Micro WFB 6.0 as their corporate Anti-Virus, and I've long had all the mbam related files and services that I know of excluded from
  4. Hello, I was trying to visit my friend's webpage www.toastskateboards.com and I couldn't. Later I come to realize it's because MWB Ip Protection is blocking 207.45.187.58, the server in which his website is hosted. Can I ask what prompted that IP Address to be blocked so that I may present that evidence to my friend? thanks, Tom
  5. Is bettanews.com a legtimate source for downloading MBAM? or is only CNET and majorgeeks ? thanks, TOM-J-LAEL
  6. Here's the log: Malwarebytes' Anti-Malware 1.44 Database version: 3677 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.13 2/2/2010 9:10:42 AM mbam-log-2010-02-02 (09-10-42).txt Scan type: Full Scan (C:\|) Objects scanned: 190096 Time elapsed: 23 minute(s), 31 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 5 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No
  7. it probably pays to know a little bit of Russian in the malware research field too, huh?
  8. yah...my friend's in development and makes about $30k more a year than me...I chose the wrong path =)
  9. This isn't exactly "off topic" but I wasn't sure where else to put it. Let me start about my background. I'm 27, I've been working in IT for about 6 years, I'm an MCSA and do a lot of network admin stuff for small-medium sized businesses/networks. Everything from replacing mice to implementing/managing/maintaing Exchange Servers, Active Directory, backups, etc. etc. Like most, everything I know is self taught and a lot of times it's been"trial by fire". I get great joy from battling and removing a tough piece of malware and rootkits, and I posses a great deal of awe and fascination in the sop
  10. I would finish the install. In fact, it may be necessary to do so in order to receive important operating system updates from Microsoft. I would not foresee this being a problem installing WGA unless you know you have a non-legitimate copy of Windows. good luck
  11. i'm sorry...i actually just read the forum rules and I'm not supposed to help...
  12. Looks like you might be infected with Koobface...are you able to open the task manager? Press CTRL , ALT , and DELETE on your keyboard all at the same time and then release them to open the task manager. or, right click on the taskbar (the bar across the bottom of the screen) and choose "Task manager" If you're able to open the task manager , click the "Processes" Tab, then click the top of the "Image Name" column to sort all processes by name alphabetically. Highlight these processes (if applicable) , one at a time and choose "End Process". After you choose end process, task manager is going
  13. So weird...MWB did it again today...during a normal quick scan (latest updates) it flagged that same file as being a trojan again. However, as soon as I run mbam.exe /developer from the run box, it doesn't flag it. I then reboot, ran the scan again using the /developer switch...nothing. I have no real reason to believe that her computer is infected, I just like to do scans for ease of mind. We do banking and stuff on our computers and she's a myspace/facebook user as well.
  14. well..the logs you posted after AdvancedSetup had you run the last Combofix script look good...he might say otherwise..and he would know more about that then me. It looks like TCP/IP may have been corrupted on your computer... Try following these KB articles to reset WINSOCK and TCP/IP http://support.microsoft.com/kb/811259 http://support.microsoft.com/kb/299357 basically... open Command prompt again type: netsh winsock reset press enter and reboot the computer try to access the internet... if no go... open command prompt again type: netsh int ip resetlog.txt press enter for good measure reboo
  15. Open the command prompt again by clicking start....choose run...type CMD and click ok.... Inside the command prompt and type: IPConfig /all and press enter... paste the results in here...
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.