Jump to content

TonyKlein

Experts
  • Posts

    1,932
  • Joined

  • Last visited

Everything posted by TonyKlein

  1. That does depend on exactly *how* you searched... I find that a Google search for the issue turns up half a million hits, the majority of them including the solution Note that it's also possible to apply a registry hack to remove/enable the Windows Search Box but my guess is that for you David's tip is indeed the fix
  2. That would depend on exactly *how* you searched... I find that a Google search for the issue turns up half a million hits, the majority of them including that solution
  3. Hello and welcome to the forum. If you suspect you may be infected, please create a new post in the Malware Removal Help forum, so that one of the analysts may come to your assistance. Please make sure you read this first: I'm infected - What do I do now?
  4. Happy Holidays and all the best for 2014 to everyone!
  5. How The Media Will Report The Apocalypse LOL!
  6. You're very welcome. It's a very common issue, usually indeed fixed by setting your default browser, but the article may just have a few more tips.
  7. Have a look here: How to Make Links Work in Outlook Express, Outlook and Any Other Email Programl
  8. It's a CCleaner registry backup file containing the items removed by the application's Registry cleaner... BTW, you can simply open the file in Notepad to view its contents The other symptoms also indicate you must have ran CCleaner. Have a look at the documentation in order to familiarize you with its various options and the effects they have: http://www.piriform.com/docs/ccleaner For any further questions you may have there's of course also their Support Forum
  9. Happy Birthday, Marcin, enjoy your day!
  10. As David already indicated, this is not a False Positive. Also, MBAM is by no means alone in detecting similar PUPs as "Adware.InstallMate" It's just that some AV's choose not to detect it ... Here are three VT reports illustrating this: https://www.virustotal.com/en/file/4668135ad030312fa28aebeb2fe8264ac42992f0f5291d53869741f58d03de8c/analysis/ https://www.virustotal.com/en/file/fc5e0e2b6887dbe2a9ff4163556b2c1251e9fc34fc43f39df83ae0dd06f6089f/analysis/ https://www.virustotal.com/en/file/3d6ddff86008070348686f613e1ea317f5741ba91ff8a6877794ba678edf7233/analysis/+
  11. It usually comes bundled with certain third party freeware, or as part of an adware bundle. A full fledged install will include an IE browser plugin with a random GUID, and multiple semi-random filenames. Variants were/are detected as "Win32/Adware.MultiPlug" or "Adware.MegaSearch". As AdvancedSetup already implied, you can certainly download it from their website too. VirusTotal scan results for their current offering: https://www.virustotal.com/en/file/ec6ab9ce9f933e14f5d99ccd5ab673f739fee2e5032d21840f84a2643dbed140/analysis/1373180854/ In short, it's strongly recommended you create a new post in the Malware Removal forum, so that one of the analysts may come to your assistance Please make sure you read this first: I'm infected - What do I do now?
  12. Thanks Mieke, I should have doublechecked first...
  13. I happened across a FP report in a reputable Korean malware blog. Here's the Google translation: http://translate.google.com/translate?js=n&prev=_t&ie=UTF-8&tl=en&u=http%3A%2F%2Fhummingbird.tistory.com%2F4740 https://www.virustotal.com/en/file/cd8c7eb564a8d48af7151b9ff5c59dedcac2a57a5dc4a1884fc7851e981affc1/analysis/ Files reportedly detected: www.kosaf.go.kr/initech/plugin/down/INIS60.cabwww.kosaf.go.kr/initech/plugin/down/INIS60.exe
  14. Hello and welcome to the forum. These are typically registry keys set by malware, causing it to be launched instead of the applications mentioned (in your case System Restore, SpyBot, HijackThis and Trend Micro Housecall) I therefore suggest you create a new post in the Malware Removal - HijackThis Logs forum, so that one of the analysts may come to your assistance. Please make sure you read this first: I'm infected - What do I do now?
  15. Hello and welcome to the forum. No False Positive: the real svchost.exe is located in the Windows\System32 folder I suggest you create a new post in the Malware Removal - HijackThis Logs forum, so that one of the analysts may come to your assistance. Please make sure you read this first: I'm infected - What do I do now?
  16. Hi, and welcome. We will not verify the safety of keygens and cracks. Also please read the pinned "Piracy" topic in this forum: http://forums.malwarebytes.org/index.php?showtopic=97700
  17. One would need to analyze the contents of your latest minidump file. I suggest you PM screen317, who assisted you in your original post and ask him to re-open that thread.
  18. Possible causes are bad memory, but more frequently a faulty driver, or problematic (often security) software. The minidump file will usually tell you what process crashed and/or what driver was involved. Even if no particular third party driver is named as the culprit, the processes and drivers involved in the crash will often give a good indication of where the problem lies. Did you recently install or update a driver or security software? Removing, reverting to a prior version of, or updating the driver or software in question will often fix the problem; then again, it may simply be a one-off incident, and you could choose to ignore it for a while, and wait for it to reoccur, if it does at all...
  19. Try rebuilding the Icon Cache as described here; that might just do the trick: Rebuild or purge Icon Cache in Windows
  20. Happy Holidays and all the best for 2013 to all!
  21. Maybe you should just wrap your head around the idea that MBAM does detect a lot of malware that some other, even major, vendors don't. Things can really be as simple as that!
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.