Jump to content

Bobs_your_uncle

Honorary Members
  • Posts

    29
  • Joined

  • Last visited

Everything posted by Bobs_your_uncle

  1. Ron, I've run into an issue, I get the message "cannot import (path of .reg file): Error accessing the registry." I've also tried right clicking and merging but that gives same message. Should I continuing resetting browsers or wait til reg import is successful? Thanks B
  2. Hi Ron, Sure do appreciate the service you all provide. I've performed the step you had asked, please see attached. BTW host file had a lot of sites pointing to loopback. Thank you Rkill.txt RKreport.txt SystemLook.txt
  3. Hi T.H.E. I re ran an update, and a fresh scan but same booger is there. Please see attached. Thanks for any assistance B 10-18-report.txt
  4. I'm going to scan again tomorrow and post those results.
  5. I just re scanned and sent detected file to quarantine. These are the results of that scan. scanresults.txt
  6. ok I loaded the new version and scan results attached. I didn't select "apply" on the quarantine option for now. Have a good weekend new_mwb.txt
  7. ok I just applied the reg change rebooting now and I'll kick off a scan.
  8. been rather tied up away from the computer, should be able to get you the info this evening. Thanks
  9. crazy thing is back, at least says the scan. Thoughts? Thank you for your time. mb-scan.txt
  10. nope, no proxy file. avast, spybot, MS security essentials(though not getting updates) all don't detect anything. Have also run rogue killer, JRT, Highjackthis in hope to remove. I have not tried combofix
  11. last scan: Malwarebytes Anti-Malwarewww.malwarebytes.org Scan Date: 9/19/2014Scan Time: 8:53:11 PMLogfile: MWB.txtAdministrator: Yes Version: 2.00.2.1012Malware Database: v2014.09.20.01Rootkit Database: v2014.09.19.01License: FreeMalware Protection: DisabledMalicious Website Protection: DisabledSelf-protection: Disabled OS: Windows XP Service Pack 3CPU: x86File System: NTFSUser: support Scan Type: Threat ScanResult: CompletedObjects Scanned: 459040Time Elapsed: 26 min, 11 sec Memory: EnabledStartup: EnabledFilesystem: EnabledArchives: EnabledRootkits: EnabledDeep Rootkit Scan: EnabledHeuristics: EnabledPUP: WarnPUM: Enabled Processes: 0(No malicious items detected) Modules: 0(No malicious items detected) Registry Keys: 0(No malicious items detected) Registry Values: 1PUM.Bad.Proxy, HKU\S-1-5-18-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\MICROSOFT\WINDOWS\CURRENTVERSION\INTERNET SETTINGS|ProxyServer, http=127.0.0.1:5577, Quarantined, [2f56a649eb90eb4b0858d80040c304fc] Registry Data: 0(No malicious items detected) Folders: 0(No malicious items detected) Files: 0(No malicious items detected) Physical Sectors: 0(No malicious items detected) (end)
  12. T.H.E. is it possibly this simple? http://en.wikipedia.org/wiki/PUM.bad.proxy WP is saying basically change the proxy setting in IE. Don't know if I buy into its that simple, what do you think? Thanks
  13. ttt ! Thanks again for the help, its back again; what could we try from here?
  14. I just ran another scan to see if anything popped up and its back Whatcha think? Thx B
  15. More to come, can we let it bake for a couple of days. It used to come back around that time after being "cleaned". Thanks man
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.