Jump to content

Windows update net help msg 2182 and trojans


Recommended Posts

Hi there, I write again about my situation...I reinstalled Windows with safe boot active, but I keep having the windows update error 2182 and ispostback false RC pending updates, can you help me resolve? Windows Defender is up to date (at today database) and it removed the trojan KBOB from attachments folder in windowscommunications. My hard disk health is not so healthy, can this be the problem? Sfc /scannow recovered recently the system files 

Link to post
Share on other sites

Hello @Immanuel and welcome back:

While you are waiting for the next qualified/approved malware removal expert helper to weigh in on your topic, and even though you may have run the following Malwarebytes utility, or its subsets, please carefully follow these instructions:

  1. Download the Malwarebytes Support Tool.
  2. In your Downloads folder, open the mb-support-x.x.x.xxx.exe file.
  3. In the User Account Control (UAC) pop-up window, click Yes to continue the installation.
  4. Run the MBST Support Tool.
  5. In the left navigation pane of the Malwarebytes Support Tool, click Advanced.
  6. In the Advanced Options, click only Gather Logs. A status diagram displays the tool is Getting logs from your computer.  WARNING: Do Not click the Repair System under Advanced unless requested to by a Malwarebytes support agent or authorized helper.
  7. A zip file named mbst-grab-results.zip will be saved to the Public desktop, please attach that file in your next reply to this topic. Please do NOT copy and paste.

For the short time between when you post the diagnostic logs, and when your helper weighs in, please take no further self-directed remedial actions that will invalidate the diagnostic logs you will have posted.

Thank you.

Link to post
Share on other sites

  • Root Admin

Do you own your own router?

 

 

If you own your own router and are not renting it from your Internet Service Provider

Please ensure that you have the user manual for your router. Then perform a factory reset.

How To Reset Your Router
https://setuprouter.com/networking/how-to-reset-your-router/

Depending on one's preferences and the Router's capabilities please consider the following.

  • Disable acceptance of ICMP Pings
  • Change the Default Router password using a Strong Password
  • Use a Strong WiFi password on WPA2 using AES encryption or Enable WPA3 if it is an option.
  • Disable Remote Management
  • Create separate WiFi networks for groups of devices with similar purposes to prevent an entire network of devices from being compromised if a malicious actor is able to gain unauthorized access to one device or network.
    Example: Keep IoT devices on one network and mobile devices on another.
  • Change the network name (SSID).  Do not use your; Name, Postal address or other personal information.  Make it unique or whimsical and known to your family/group.
  • Is the Router Firmware up-to-date ?  Updating the firmware mitigates exploitable vulnerabilities.
  • Specifically set Firewall rules to BLOCK;   TCP and UDP ports 135 ~ 139, 445, 1234, 3389, 5555 and 9034
  • Document passwords created and store them in a safe but accessible location.

 

I would recommend you reset your router above if possible. The do a CLEAN install of Windows following the directions below which includes removing ALL partitions of the drive you're going to install Windows on.

 

Clean Install Windows 10 & 11 (2023)
https://answers.microsoft.com/en-us/windows/forum/all/clean-install-windows-10-11-2023/1c426bdf-79b1-4d42-be93-17378d93e587

Also, please review the following topic

Bypass Microsoft Online Account Creation during installation of Windows 11
https://forums.malwarebytes.com/topic/296613-bypass-microsoft-online-account-creation-during-installation-of-windows-11/

 

 

 

  • Thanks 1
Link to post
Share on other sites

52 minutes ago, AdvancedSetup said:

Do you own your own router?

 

 

If you own your own router and are not renting it from your Internet Service Provider

Please ensure that you have the user manual for your router. Then perform a factory reset.

How To Reset Your Router
https://setuprouter.com/networking/how-to-reset-your-router/

Depending on one's preferences and the Router's capabilities please consider the following.

  • Disable acceptance of ICMP Pings
  • Change the Default Router password using a Strong Password
  • Use a Strong WiFi password on WPA2 using AES encryption or Enable WPA3 if it is an option.
  • Disable Remote Management
  • Create separate WiFi networks for groups of devices with similar purposes to prevent an entire network of devices from being compromised if a malicious actor is able to gain unauthorized access to one device or network.
    Example: Keep IoT devices on one network and mobile devices on another.
  • Change the network name (SSID).  Do not use your; Name, Postal address or other personal information.  Make it unique or whimsical and known to your family/group.
  • Is the Router Firmware up-to-date ?  Updating the firmware mitigates exploitable vulnerabilities.
  • Specifically set Firewall rules to BLOCK;   TCP and UDP ports 135 ~ 139, 445, 1234, 3389, 5555 and 9034
  • Document passwords created and store them in a safe but accessible location.

 

I would recommend you reset your router above if possible. The do a CLEAN install of Windows following the directions below which includes removing ALL partitions of the drive you're going to install Windows on.

 

Clean Install Windows 10 & 11 (2023)
https://answers.microsoft.com/en-us/windows/forum/all/clean-install-windows-10-11-2023/1c426bdf-79b1-4d42-be93-17378d93e587

Also, please review the following topic

Bypass Microsoft Online Account Creation during installation of Windows 11
https://forums.malwarebytes.com/topic/296613-bypass-microsoft-online-account-creation-during-installation-of-windows-11/

 

 

 

Firewall protection medium (recommended) or strong? I can also hide my SSID but it would need a change in settings

Link to post
Share on other sites

  • Root Admin

A router reset would correct any modifications normally. If it's susceptible to attack due to weak coding it's possible that someone could get in and reset thing, but often if done they change the password.

Having many attacks can make it very difficult to update.

But, having a lot of infections can leave leftover damage that would not be easy to fix without a fresh install of Windows

 

  • Thanks 1
Link to post
Share on other sites

It happened in the past that someone would change the password, not now. Anyway I have changed passwords and disabled PING access, I've left only LAN and WLAN access to the modem (http, https and ftp) with a strong password. If tomorrow I find bad things in the log I will change also the SSID. Tomorrow I'll clean install windows. Thanks

Link to post
Share on other sites

I've formatted the disk and reinstalled windows 10, this is what I get 

Protezione risorse di Windows: file danneggiati trovati e ripristinati.
I dettagli per il ripristino online sono inclusi nel file di log CBS disponibile in
windir\Logs\CBS\CBS.log. Ad esempio C:\Windows\Logs\CBS\CBS.log. I dettagli
per il ripristino offline sono inclusi nel file di log specificato dal flag /OFFLOGFILE.

Link to post
Share on other sites

  • Root Admin
16 minutes ago, Immanuel said:

I've formatted the disk and reinstalled windows 10, this is what I get 

 

I'm sorry but you did not follow the directions for a CLEAN install. You do not need to format the drive.

You need to remove ALL partitions. Then allow Windows to do the install and choose the formatting it wants. Not you.

 

Clean Install Windows 10 & 11 (2023)
https://answers.microsoft.com/en-us/windows/forum/all/clean-install-windows-10-11-2023/1c426bdf-79b1-4d42-be93-17378d93e587

Also, please review the following topic

Bypass Microsoft Online Account Creation during installation of Windows 11
https://forums.malwarebytes.com/topic/296613-bypass-microsoft-online-account-creation-during-installation-of-windows-11/

 

 

Link to post
Share on other sites

Anyway before this I didn't say a thing, I used HDD low level format to erase all data and then installed windows 10, so we didn't understand each other. So this is the 2nd time I've done a clean install of win 10 (this time with the method in the guide you posted) but the problem persists

CBS.log

Edited by Immanuel
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.