Jump to content

Driver problem after MBAM scan?


Recommended Posts

Hi,

 

I've just bought a lenovo laptop for university and I've been having a problem with an unknown driver which lenovo solution centre keeps detecting as not installed (see attached screenshot). I first noticed it after numerous windows 8.1 updates for my new laptop, but it went away after I restarted my laptop. Since then I have accidently installed a software to mount an nrg to install some software for uni, however along with that some malware/virus was downloaded along with it as I was extremely silly and didn't double check the source from which I downloaded from. This malware was detected immediately by AVG and I stopped the download. I then decided to carry on and download daemon tools from the official website which I believed was safe, but after the download, it said another threat had been detected (not sure if this one was false positive) but once again the threat was removed. I proceeded to mount the nrg file anyway and install the software I wanted successfully.

 

So just to be safe, I deleted all the suspicious programmes after and ran an AVG scan which detected another threat:(http://www.avgthreatlabs.com/virus-and-malware-information/content/generic-virus/?name=@EID_pe_iscorrupted&utm_source=TDPU&utm_medium=SCAN&CTRY=gb&LNG=us&PRTYPE=AVF&V=2015&AI=0&BE=21199300) AVG has 'secured' it.

And then I downloaded Malwarebytes and ran a scan which detected 5 threats and quarentined it. This is what the report shows.

 

Malwarebytes Anti-Malware
www.malwarebytes.org

Scan Date: 10/09/2014
Scan Time: 03:00:17
Logfile:
Administrator: Yes

Version: 2.00.2.1012
Malware Database: v2014.09.09.07
Rootkit Database: v2014.08.21.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled

OS: Windows 8.1
CPU: x64
File System: NTFS
User: ChingYee

Scan Type: Threat Scan
Result: Completed
Objects Scanned: 307582
Time Elapsed: 21 min, 48 sec

Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled

Processes: 0
(No malicious items detected)

Modules: 0
(No malicious items detected)

Registry Keys: 3
PUP.Optional.ConduitSearchProtect, HKLM\SYSTEM\CURRENTCONTROLSET\SERVICES\CltMngSvc, Quarantined, [0695b03bdd9efb3bf0d9e559c3416b95],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3561778249-3494197450-181313189-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE\1I1T1Q1S, Quarantined, [e6b57378e596e74f77eddb50fd0628d8],
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3561778249-3494197450-181313189-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE, Quarantined, [a6f58a619ae15dd9903090b14bb942be],

Registry Values: 1
PUP.Optional.InstallCore.A, HKU\S-1-5-21-3561778249-3494197450-181313189-1001-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\INSTALLCORE|tb, zr2Y1E2Z1G1J1T1M, Quarantined, [a6f58a619ae15dd9903090b14bb942be]

Registry Data: 0
(No malicious items detected)

Folders: 0
(No malicious items detected)

Files: 1
PUP.Optional.ConduitSearchProtect, C:\Program Files (x86)\LenovoBrowserGuard\Main\bin\CltMngSvc.exe, Delete-on-Reboot, [0695b03bdd9efb3bf0d9e559c3416b95],

Physical Sectors: 0
(No malicious items detected)


(end)

 

 

After the MBAM scan and the quarentine and removal of the malware, the problem with the unknown driver has reoccured despite previously being resolved after the updates. What would you suggest I do? Also, I noticed that AVG 'secured' the threat, is this any different to being quarentined?

 

(Apologies about making you read this whole story haha)

 

Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.