Jump to content

TomBi

Members
  • Posts

    3
  • Joined

  • Last visited

Everything posted by TomBi

  1. Here are my logs thus far I did not make it though all the steps listed in instructions, my computer restarted itself before I ccould finish. My problem was that I could not open any exe file and when I tried it asked if I wanted to startup my antivirus. I scanned with MBAM right away but the problem was not fixed after I came here I reinstalled MBAM and began to follow the steps. After running MBAM again once restarted the virus notices stopped but I am not able to get online and my computer is running much slower than normal. Initial Scan with MBAM Malwarebytes' Anti-Malware 1.42 Database version: 3289 Windows 5.1.2600 Service Pack 3 (Safe Mode) Internet Explorer 8.0.6001.18702 12/15/2009 8:28:03 AM mbam-log-2009-12-15 (08-28-03).txt Scan type: Quick Scan Objects scanned: 105302 Time elapsed: 4 minute(s), 41 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 3 Registry Values Infected: 2 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 1 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{8567edfa-408c-43e9-b929-4c25c04f5003} (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{abd42510-9b22-41cd-9dcd-8182a2d07c63} (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\AvScan (Trojan.FakeAlert) -> Quarantined and deleted successfully. Registry Values Infected: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\spsnvytv (Trojan.FakeAlert) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\spsnvytv (Trojan.FakeAlert) -> Quarantined and deleted successfully. Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\Documents and Settings\Owner\Local Settings\Application Data\wgcaha\syrfsysguard.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully. DDS did not run or create any logs. If I have script blockers I have no idea how to disable them. GMER: While running computer automatically restarted itself after approx 10-15 minutes of scanning. Once my computer turned back on I got the following message. "The system has recovered from a serious error." "A log of this error has been created." Error Signature- BCCode: 19 BCP1: 00000020 BCP2: 829F5070 BCP3: 829F5080 BCP4: 0a020006 OSVer: 5_1_2600 sp: 3_0 pRODUCT: 768_1
  2. Sorry my question was is there a way to download a patch rather than updating MBAM? Or is there another way to handle this? I cannot access the internet from either infected computer.
  3. Two of my computers seem to be infected with something please help! I am getting the notices saying that a file is infected do you wish to run your antivirus. I click no or X out of it. When I try to open my browser it takes me to an antivirus website. When I try to run my antivirus "AVG" or MBAM it gives the message "Application cannot be executed. The file mbam.exe is infected. Do you want to activate your antivirus software now?" I have run both AVG and MBAM in safe mode. AVG found nothing and MBAM found 1 key logger but it has not fixed my current problem. I cannot update in safe with networking or normal mode. I read somewhere about changing the file extension to .scr to allow me to run MBAM which I did and it lets me run it but I still cannot update it. Please help let me know if you need anymore info from me. I am at work and trying to get this taken care of between the other things I am working on. Thank you Tom
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.