Jump to content

GlennK

Members
  • Posts

    9
  • Joined

  • Last visited

Posts posted by GlennK

  1. I can't thank you enough for your help. The issue is now resolved and you can close this log. Awesome support man!!!

    Million Thanks,

    Glenn

    Hi,

    Thanks for taking a look at this. I was able to disable all spyware / antivirus but had trouble with AVG. The log is attached as per your requests. Again thanks!

    Regards,

    Glenn

  2. Hi,

    Thanks for taking a look at this. I was able to disable all spyware / antivirus but had trouble with AVG. The log is attached as per your requests. Again thanks!

    Regards,

    Glenn

    Hi,

    The malware you are dealing with locks mbams detection and removal, but next version of mbam should be able to bypass this and deal with this one. In a meanwhile, to deal with it, * Please visit this webpage for instructions for downloading and running ComboFix:

    http://www.bleepingcomputer.com/combofix/how-to-use-combofix

    Post the log from ComboFix in your next reply.

    Please make sure you disable ALL of your Antivirus/Antispyware/Firewall before running ComboFix..This because Security Software may see some components ComboFix uses (prep.com for example) as suspicious and blocks the tool, or even deletes it. Please visit HERE if you don't know how.

    log.txt

  3. This appears to be an old issue that has resurfaced. Any simple way to remove it?

    Malwarebytes' Anti-Malware 1.40

    Database version: 2738

    Windows 5.1.2600 Service Pack 3

    03/09/2009 8:21:03 PM

    mbam-log-2009-09-03 (20-21-03).txt

    Scan type: Quick Scan

    Objects scanned: 103917

    Time elapsed: 11 minute(s), 6 second(s)

    Memory Processes Infected: 0

    Memory Modules Infected: 0

    Registry Keys Infected: 1

    Registry Values Infected: 0

    Registry Data Items Infected: 0

    Folders Infected: 0

    Files Infected: 0

    Memory Processes Infected:

    (No malicious items detected)

    Memory Modules Infected:

    (No malicious items detected)

    Registry Keys Infected:

    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\kbiwkmrnmnenkr (Rootkit.TDSS) -> Quarantined and deleted successfully.

    Registry Values Infected:

    (No malicious items detected)

    Registry Data Items Infected:

    (No malicious items detected)

    Folders Infected:

    (No malicious items detected)

    Files Infected:

    (No malicious items detected)

    Two scans were done. It still shows infected.

    Malwarebytes' Anti-Malware 1.40

    Database version: 2738

    Windows 5.1.2600 Service Pack 3

    03/09/2009 7:52:26 PM

    mbam-log-2009-09-03 (19-52-26).txt

    Scan type: Quick Scan

    Objects scanned: 103859

    Time elapsed: 11 minute(s), 36 second(s)

    Memory Processes Infected: 0

    Memory Modules Infected: 0

    Registry Keys Infected: 1

    Registry Values Infected: 0

    Registry Data Items Infected: 0

    Folders Infected: 0

    Files Infected: 0

    Memory Processes Infected:

    (No malicious items detected)

    Memory Modules Infected:

    (No malicious items detected)

    Registry Keys Infected:

    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\kbiwkmrnmnenkr (Rootkit.TDSS) -> Quarantined and deleted successfully.

    Registry Values Infected:

    (No malicious items detected)

    Registry Data Items Infected:

    (No malicious items detected)

    Folders Infected:

    (No malicious items detected)

    Files Infected:

    (No malicious items detected)

  4. WoW! I have this issue on my computer. It is however not removed and keeps coming back. Is there an easy way to fix this???

    It reports as Rootkit.TDSS

    For the moment it does not appear to be affecting the operation of my system.

    Malwarebytes' Anti-Malware 1.40

    Database version: 2738

    Windows 5.1.2600 Service Pack 3

    03/09/2009 8:21:03 PM

    mbam-log-2009-09-03 (20-21-03).txt

    Scan type: Quick Scan

    Objects scanned: 103917

    Time elapsed: 11 minute(s), 6 second(s)

    Memory Processes Infected: 0

    Memory Modules Infected: 0

    Registry Keys Infected: 1

    Registry Values Infected: 0

    Registry Data Items Infected: 0

    Folders Infected: 0

    Files Infected: 0

    Memory Processes Infected:

    (No malicious items detected)

    Memory Modules Infected:

    (No malicious items detected)

    Registry Keys Infected:

    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\kbiwkmrnmnenkr (Rootkit.TDSS) -> Quarantined and deleted successfully.

    Registry Values Infected:

    (No malicious items detected)

    Registry Data Items Infected:

    (No malicious items detected)

    Folders Infected:

    (No malicious items detected)

    Files Infected:

    (No malicious items detected)

Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.