Jump to content

abustraan

Members
  • Content Count

    7
  • Joined

  • Last visited

Community Reputation

0 Neutral

About abustraan

  • Rank
    New Member

Recent Profile Visitors

738 profile views
  1. Whenever I try and run any of the functions such as Shutdown, WOL, Open C$ Via Lansweeper I get an exploit blocked/quarantined warning from Malwarebytes. I tried to create an exclusion, but when I attempt to specify the exclusion for exploit detection, the box is greyed out. Any thoughts?
  2. Yuck, but great. Glad you found a tool to get rid of it.
  3. As an update to this thread... I believe this to be related to poweliks . And what I've done to fully resolve the detection is: in regedit, browse to the corrupted key, take a screen shot of the key values on the right side so you know if they are dwords, strings, etc. double click on each entry and copy out the value to notepad once that's done delete the run key. Windows will automagically re-create the run key. recreate the entries and enter the values you pasted in notepad for each entry. I typically copy and paste the dword name and its value so they're correct. Reboot the syste
  4. I had a system today that Malwarebytes 1.75 (latest definition) stopped and detected Rootkit.Fileless.MTgen. However, the system was still infected with the poweliks.rootkit which interfered with normal browser function. This was determined by a scripting error that appeared on start up displaying a reference to javascript, powershell and the registry entry described below. After researching the scripting error, I determined that it was the poweliks.rootkit. After running ESET's poweliks removal tool, and scanning with Hitman Pro, McAfee and Malware Bytes full scan, I ended up manually d
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.