digitalshui Posted August 3, 2009 ID:105440 Share Posted August 3, 2009 Here is the developers' log file. I didn't try to get rid of them since I have done it 6 times and nothing has happened. Any help getting rid of these is appreciated as it keeps crashing my OSMalwarebytes' Anti-Malware 1.39Database version: 2548Windows 6.0.6002 Service Pack 28/3/2009 1:46:39 PMmbam-log-2009-08-03 (13-46-34).txtScan type: Quick ScanObjects scanned: 85090Time elapsed: 4 minute(s), 34 second(s)Memory Processes Infected: 0Memory Modules Infected: 1Registry Keys Infected: 0Registry Values Infected: 0Registry Data Items Infected: 0Folders Infected: 0Files Infected: 1Memory Processes Infected:(No malicious items detected)Memory Modules Infected:\\?\globalroot\systemroot\System32\geyekrqoqppbri.dll (Trojan.TDSS) -> No action taken. [41345241301723212018226926682618222068682468236719212217666626226824242367]Registry Keys Infected:(No malicious items detected)Registry Values Infected:(No malicious items detected)Registry Data Items Infected:(No malicious items detected)Folders Infected:(No malicious items detected)Files Infected:\\?\globalroot\systemroot\System32\geyekrqoqppbri.dll (Trojan.TDSS) -> No action taken. [41345241301723212018226926682618222068682468236719212217666626226824242367] Link to post Share on other sites More sharing options...
Staff TeMerc Posted August 3, 2009 Staff ID:105447 Share Posted August 3, 2009 Hello and welcome to MalwarebytesYour system is infected with a rootkit, these are not false\positives.Please follow these basic steps first before posting any logs.Our program, Malwarebytes' Anti-Malware can detect and remove most Malware with no further actions required for free.Please download Malwarebytes' Anti-Malware to your desktop.Double-click mbam-setup.exe and follow the prompts to install the program.At the end, be sure a checkmark is placed next to the following:Update Malwarebytes' Anti-Malware Launch Malwarebytes' Anti-Malware[*]Then click Finish.[*]If an update is found, it will download and install the latest version.[*]Once the program has loaded, select Perform quick scan, then click Scan.[*]When the scan is complete, click OK, then Show Results to view the results.[*]Be sure that everything is checked, and click Remove Selected.[*]When completed, a log will open in Notepad and if required the program will ask you to reboot to remove locked files.We hope our application has helped you eradicate this malicious Malware. If your current anti-virus solution let this infection through please consider purchasing the PRO version of Malwarebytes' Anti-Malware for additional protection.Update your current Anti-Virus to the latest definitions and then perform a Full scan of your system.If you don't currently have Anti-Virus please download and install Avira AntiVir PersonalThen update to the latest definitions and perform a Full scan of your system.If you're still experiencing issues after running the above procedures then please follow the instructions below.Scan and Log ProceduresPlease download this program Trend Micro HijackThis to your desktop.Double-click on it to run and install it.Then launch the program and click on Do a system scan and save a logfile. This log file will open in Notepad.Please start a Newtopic here and post the most recent Malwarebytes' Anti-Malware log file and HijackThis log file using Copy/Paste.The Malwarebytes' Anti-Malware log file is located in the Logs tab of the program.Someone will analyze the logs and give you further instructions.Prompt responses to instructions and performing the required fixes as soon as possible is always best.During this scan and cleanup process you should not install any other software unless requested to do so.Logs to reply with: MBAM and HijackThisNOTE: If Malwarebytes won't run or HijackThis won't run please still create a new post in the Malware Removal - HijackThis Logs forum and explain what happens.NOTE: Please DO NOT post back to your post within the first 48 hours. Replying to your own posts changes the post count and will often cause helpers to think that you're already being helped and thus they won't open and look at your post. If no one has replied within 48 hours then please go ahead and either reply to your post or send a private message to a Moderator and let them know that you're still needing assistance.As soon as someone is available they will assist you. Link to post Share on other sites More sharing options...
digitalshui Posted August 3, 2009 Author ID:105558 Share Posted August 3, 2009 I am using the Pro version which I just paid $24.95 for and it is NOT removing the rootkit, this is why I posted in the first place. The software is not removing this Malware. It say it is and it re boots but then I immediately scan and the two problems are still there. Can someone help me other than telling me I need to install software I am already using. ThanksHello and welcome to MalwarebytesYour system is infected with a rootkit, these are not false\positives.Please follow these basic steps first before posting any logs.Our program, Malwarebytes' Anti-Malware can detect and remove most Malware with no further actions required for free.Please download Malwarebytes' Anti-Malware to your desktop.Double-click mbam-setup.exe and follow the prompts to install the program.At the end, be sure a checkmark is placed next to the following:Update Malwarebytes' Anti-Malware Launch Malwarebytes' Anti-Malware[*]Then click Finish.[*]If an update is found, it will download and install the latest version.[*]Once the program has loaded, select Perform quick scan, then click Scan.[*]When the scan is complete, click OK, then Show Results to view the results.[*]Be sure that everything is checked, and click Remove Selected.[*]When completed, a log will open in Notepad and if required the program will ask you to reboot to remove locked files.We hope our application has helped you eradicate this malicious Malware. If your current anti-virus solution let this infection through please consider purchasing the PRO version of Malwarebytes' Anti-Malware for additional protection.Update your current Anti-Virus to the latest definitions and then perform a Full scan of your system.If you don't currently have Anti-Virus please download and install Avira AntiVir PersonalThen update to the latest definitions and perform a Full scan of your system.If you're still experiencing issues after running the above procedures then please follow the instructions below.Scan and Log ProceduresPlease download this program Trend Micro HijackThis to your desktop.Double-click on it to run and install it.Then launch the program and click on Do a system scan and save a logfile. This log file will open in Notepad.Please start a Newtopic here and post the most recent Malwarebytes' Anti-Malware log file and HijackThis log file using Copy/Paste.The Malwarebytes' Anti-Malware log file is located in the Logs tab of the program.Someone will analyze the logs and give you further instructions.Prompt responses to instructions and performing the required fixes as soon as possible is always best.During this scan and cleanup process you should not install any other software unless requested to do so.Logs to reply with: MBAM and HijackThisNOTE: If Malwarebytes won't run or HijackThis won't run please still create a new post in the Malware Removal - HijackThis Logs forum and explain what happens.NOTE: Please DO NOT post back to your post within the first 48 hours. Replying to your own posts changes the post count and will often cause helpers to think that you're already being helped and thus they won't open and look at your post. If no one has replied within 48 hours then please go ahead and either reply to your post or send a private message to a Moderator and let them know that you're still needing assistance.As soon as someone is available they will assist you. Link to post Share on other sites More sharing options...
Staff TeMerc Posted August 3, 2009 Staff ID:105585 Share Posted August 3, 2009 You need to now post a log into the HijackThis forum as ws presented.They'll help you from there.Our software may not be able to remove all components of the rootkit, very few scanners can if any. Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now